tosspayments2-rails
English section follows Korean (Scroll down for English usage guide).
Rails 7 & 8용 TossPayments v2 (통합 SDK / 결제위젯) 간편 연동 지원 젬.
- View helper (
tosspayments_script_tag) 로 SDK<script>주입 - 환경설정 (
Tosspayments2::Rails.configure) 으로 client/secret 키 관리 - 서버사이드 결제 승인(confirm) & 취소(cancel) API 래퍼
Tosspayments2::Rails::Client - Controller concern (
Tosspayments2::Rails::ControllerConcern) 으로toss_client제공 - (Placeholder) Webhook 검증 클래스 (향후 사양 반영 예정)
설치 (Installation)
Gemfile:
gem 'tosspayments2-rails'설치 후:
bundle install아직 Rubygems 공개 전이라면 Git 소스 사용:
gem 'tosspayments2-rails', git: 'https://github.com/luciuschoi/tosspayments2-rails'초기 설정 (Configuration)
config/initializers/tosspayments2.rb 생성:
Tosspayments2::Rails.configure do |c|
c.client_key = ENV.fetch('TOSSPAYMENTS_CLIENT_KEY')
c.secret_key = ENV.fetch('TOSSPAYMENTS_SECRET_KEY')
# c.widget_version = 'v2' # 기본값
# c.api_base = 'https://api.tosspayments.com' # 기본값
end또는 config/application.rb 등에서:
config.tosspayments2.client_key = ENV['TOSSPAYMENTS_CLIENT_KEY']
config.tosspayments2.secret_key = ENV['TOSSPAYMENTS_SECRET_KEY']View에서 SDK 스크립트 추가
레이아웃 (app/views/layouts/application.html.erb):
<head>
<%= csrf_meta_tags %>
<%= csp_meta_tag %>
<%= tosspayments_script_tag %>
</head>커스텀 버전/옵션:
<%= tosspayments_script_tag(async: true, defer: true, version: 'v2') %>프론트엔드 예시 (Stimulus / ES module 없이 단순)
<div id="payment-methods"></div>
<div id="agreement"></div>
<button id="pay">결제하기</button>
<script>
document.addEventListener('DOMContentLoaded', async () => {
const clientKey = '<%= ENV['TOSSPAYMENTS_CLIENT_KEY'] %>';
const customerKey = 'customer_123'; // 구매자 식별 값
const tosspayments = TossPayments(clientKey);
const widgets = tosspayments.widgets({ customerKey });
성공 리다이렉트에서 요청 파라미터(`paymentKey`, `orderId`, `amount`)를 저장된 주문과 비교하려면 `CallbackVerifier` 사용:
await widgets.renderPaymentMethods({ selector: '#payment-methods' });
await widgets.renderAgreement({ selector: '#agreement' });
document.getElementById('pay').addEventListener('click', async () => {
try {
await widgets.requestPayment({
orderId: 'ORDER-' + Date.now(),
orderName: '테스트 주문',
customerName: '홍길동',
successUrl: '<%= success_payments_url %>',
failUrl: '<%= fail_payments_url %>'
});
} catch (e) {
console.error(e);
}
});
});
</script>성공/실패 리다이렉트 컨트롤러 예시
class PaymentsController < ApplicationController
include Tosspayments2::Rails::ControllerConcern
def success
# TossPayments에서 쿼리로 전달: paymentKey, orderId, amount
payment_key = params[:paymentKey]
order_id = params[:orderId]
amount = params[:amount].to_i
result = toss_client.confirm(payment_key: payment_key, order_id: order_id, amount: amount)
# 비즈니스 로직 (주문 상태 업데이트 등)
@payment = result
rescue Tosspayments2::Rails::APIError => e
logger.error("Toss confirm error status=#{e.status} code=#{e.code} body=#{e.body.inspect}")
redirect_to root_path, alert: '결제 승인 실패'
end
def fail
# errorCode, errorMessage 등 전달
flash[:alert] = "결제 실패: #{params[:message] || params[:errorMessage]}"
redirect_to root_path
end
end라우팅 (config/routes.rb):
resource :payments, only: [] do
get :success
get :fail
end서버사이드 결제 취소
toss_client.cancel(payment_key: payment.payment_key, cancel_reason: '고객요청')콜백 파라미터 검증 (선택)
verifier = Tosspayments2::Rails::CallbackVerifier.new
verifier.match_amount?(order_id: params[:orderId], amount: params[:amount].to_i) do |order_id|
Order.find_by!(uuid: order_id).amount
end불일치 시 Tosspayments2::Rails::VerificationError 예외 발생.
Webhook 검증
verifier = Tosspayments2::Rails::WebhookVerifier.new
raw_body = request.raw_post
signature = request.headers['X-TossPayments-Signature']
unless verifier.verify?(raw_body, signature)
head :unauthorized and return
end
payload = JSON.parse(raw_body)
# 이벤트 처리Rails Generator
빠른 초기 세팅:
bin/rails generate tosspayments2:install생성물:
config/initializers/tosspayments2.rb- 예시 컨트롤러
app/controllers/payments_controller.rb(옵션, 덮어쓰기 여부 질의) - 안내 주석
RSpec 설정 & 테스트 실행
프로젝트 루트에서(엔진 개발 환경):
bundle exec rspec커버리지 보고서는 coverage/ (SimpleCov) 생성.
YARD 문서 생성
bundle exec yard doc
open doc/index.htmlRBS (타입 시그니처)
sig/ 디렉토리에 기본 시그니처가 포함되어 있습니다. 필요 시 확장하세요.
테스트 / 개발
bin/consoleTosspayments2::Rails.configure { |c| c.secret_key = 'sk_test_xxx' }
client = Tosspayments2::Rails::Client.new(secret_key: 'sk_test_xxx')
# Stub 네트워크 후 confirm 호출 등라이선스
MIT
English
Overview
Helpers & a lightweight engine to integrate TossPayments (Payment Widget v2) with Rails 7 & 8.
Features:
- Script tag helper (
toss_payments_script_tag/ actuallytosspayments_script_tag) - Configuration block (
Tosspayments2::Rails.configure) - Server-side confirm & cancel client
- Controller concern for quick access (
toss_client) - Callback parameter verification (order id & amount)
- Webhook HMAC (SHA256 + Base64) verification helper
Installation
gem 'tosspayments2-rails'bundle installConfiguration
Tosspayments2::Rails.configure do |c|
c.client_key = ENV['TOSSPAYMENTS_CLIENT_KEY']
c.secret_key = ENV['TOSSPAYMENTS_SECRET_KEY']
endScript Tag
In layout head:
<%= tosspayments_script_tag %>Success Redirect Controller
class PaymentsController < ApplicationController
include Tosspayments2::Rails::ControllerConcern
def success
result = toss_client.confirm(payment_key: params[:paymentKey], order_id: params[:orderId], amount: params[:amount].to_i)
@payment = result
rescue Tosspayments2::Rails::APIError => e
Rails.logger.error("Confirm error status=#{e.status} code=#{e.code}")
redirect_to root_path, alert: 'Payment confirm failed'
end
endCallback Verification
Tosspayments2::Rails::CallbackVerifier.new.match_amount?(order_id: params[:orderId], amount: params[:amount].to_i) do |oid|
Order.find_by!(uuid: oid).amount
endWebhook Verification
verifier = Tosspayments2::Rails::WebhookVerifier.new
if verifier.verify?(request.raw_post, request.headers['X-TossPayments-Signature'])
# process JSON.parse(request.raw_post)
else
head :unauthorized
endCancel
toss_client.cancel(payment_key: 'pay_123', cancel_reason: 'customer request')Tests
Run RSpec: bundle exec rspec
License
MIT
기여
PR / 이슈 환영: https://github.com/luciuschoi/tosspayments2-rails