Welcome! This document will explain how to integrate with Konduto's anti-fraud service so you can begin to spot fraud on your e-commerce website.
This document covers Konduto PHP SDK integration library that facilitates the integration with the Orders API in your PHP application. For more information about the service, other APIs and other integration details check out Konduto documentation.
- PHP 5.4 or later
- cURL extension
{
"require": {
"konduto/sdk": "v2.4.0"
}
}
For older versions of this library check the releases section. We strongly recommend using the latest version possible.
When a customer makes a purchase on your e-commerce you should input the order information into Konduto's Orders API so it can be analyzed for fraud risk. The analysis happens in real-time and will return you a recommendation of what to do next and a score, a numeric confidence level about that order's risk.
While most of the parameters are optional we recommend you send most you can, because every data point matters for the analysis. The billing address and credit card information are specially important, though we understand there are cases where you don't have that information.
Import the following Namespaces:
use Konduto\Core\Konduto;
use Konduto\Models;
Konduto
provides methods for using Konduto services, such as sending an order for analysis (POST), querying (GET) or updating an existent order (PUT):
// Send order for analysis
$analyzedOrder = Konduto::analyze($order);
// Query a previously analyzed order
$order = Konduto::getOrder($orderId);
// Update the status of a previously analyzed order
Konduto::updateOrderStatus($orderId, $status, $comments);
Before using Konduto
methods you need first to set your Konduto API key using the setApiKey()
method. Check the official Konduto docs for how to obtain your API key:
Konduto::setApiKey("...YOUR_KONDUTO_PRIVATE_API_KEY...");
Sending an order for analysis is as easy as calling the analyze
method from Konduto core class for an Order
object, as the snippet below shows. Use $order->getRecommendention()
to see the recommendation for this order and $order->getScore()
to know the score representing the order's risk that Konduto calculated for it.
try {
$order = Konduto::analyze($order);
echo "\nKonduto recommends you to {$order->getRecommendation()} this order.\n";
}
catch (Exception $e) {
echo "\nKonduto wasn't able to return a recommendation: {$e->getMessage()}";
}
Every call performed with Konduto
can throw an exception in case something goes wrong. Check the exception's message to see what went wrong. An example of what can go wrong is that a mandatory field wasn't provided, or a field was provided in the wrong format. Example:
{
"status": "error",
"message": {
"where": "\/",
"why": {
"expected": "Authorized credentials",
"found": "Missing or unauthorized credentials"
}
}
}
You can create an Order
object (or any other model from Konduto SDK) in two ways: by providing an associative array with the allowed fields to the model's constructor or using the methods such as setters and getters.
Check the official Konduto documentation for reference to all fields accepted in the Konduto Orders API. Some fields are mandatory, like the order id and total amount, but most are optional.
You can provide order informatino using an associative array, like this:
$order = new Models\Order(array(
"id" => uniqid(),
"visitor" => "4738d516f09cab3a2c1ee973bec88a5a367a59e4",
"total_amount" => 100.10,
"shipping_amount" => 20.00,
"tax_amount" => 3.45,
"currency" => "USD",
"installments" => 1,
"ip" => "170.149.100.10",
"purchased_at" => "2015-04-25T22:29:14Z",
"customer" => array(
"id" => "28372",
"name" => "Júlia da Silva",
"tax_id" => "12345678909",
"dob" => "1970-12-25",
"phone1" => "11-1234-5678",
"phone2" => "21-2143-6578",
"email" => "jsilva@exemplo.com.br",
"created_at" => "2010-12-25",
"new" => false,
"vip" => false
)
)));
Or using the methods provided by each model, like this:
$order = new Models\Order();
$order->setId(uniqid());
$order->setVisitor("4738d516f09cab3a2c1ee973bec88a5a367a59e4");
$order->setTotalAmount(100.10);
$order->setShippingAmount(20.00);
$order->setCurrency("USD");
$customer = new Models\Customer();
$customer->setName("Júlia da Silva");
$customer->setTaxId("12345678909");
$customer->setEmail("jsilva@exemplo.com.br");
$order->setCustomer($customer);
You can check all the possible models in src/Models/
folder.
This library automatically converts dates to the required API format. If it is convenient for you, you can directly provide a DateTime
object to the fields that require dates.
$now = new \DateTime();
$customer->setCreatedAt($now);
After you decide what to do with the order you asked for analysis (e.g. approve, decline, fraud, cancel, not authorized) it is very important that you inform Konduto service about it. So the machine learning algorithm can learn better about your orders and improve itself. For this, you have to use the Konduto::updateOrderStatus()
method.
Konduto::updateOrderStatus("ORD1237163", "approved", "Comments about this order");
Konduto::updateOrderStatus($orderId, $status, $comments);
Parameter | Description |
---|---|
orderId | (required) The id for the order |
status | (required) String of one of the possible order status, check the available status. |
comments | (required) Reason or comments about the status update. |
$orderId = "ORD1237163";
$order = Konduto::getOrder($orderId);
Please click here for the Currency and Category reference tables.
Feel free to contact our support team if you have any questions or suggestions!
Found a bug or missing feature? This is an open-source project, so a Pull Request will be more than welcome. Just make sure following the guidelines:
- Respect the established naming conventions.
- Don't introduce external dependencies.
- Always add tests for covering new pieces of code.
- Respect the minimum requirements. I.e. avoid using PHP libs and features that might require changing them. We want to provide this library to the broadest audience possible.
This project uses PHPUnit as its testing framework. Before running any test, make sure you install it. To install all project's dependencies using Composer run a composer install first:
// This command might change depending on your Composer installation.
composer install
There are two types of test:
- Unit tests: Just test the logic of the code. They are located at
tests/unit/
.
You can run the unit tests with the command:
vendor/bin/phpunit tests/unit
- Integration tests: Make actual calls to Konduto's sandbox API to check the integration. They are located at
tests/integration/
.
Before running the integration tests you will need to provide a working sandbox API key as an environment variable KONDUTO_SANDBOX_API_KEY
. If you don't do this all integration tests will fail.
export KONDUTO_SANDBOX_API_KEY=your_api_key
Now you can run the integration tests:
vendor/bin/phpunit tests/integration