Skip to content

Latest commit

 

History

History
496 lines (391 loc) · 30.4 KB

README.md

File metadata and controls

496 lines (391 loc) · 30.4 KB

Plaid

Latest Version on Packagist Software License Total Downloads

Laravel5 specific wrapper to interface with Plaid.

Install

Via Composer

$ composer require travoltron/plaid

In app/config.php add the following line to the alias array

'Plaid' => Travoltron\Plaid\Plaid::class,

In app/config.php add the following line to the providers array

Travoltron\Plaid\PlaidServiceProvider::class,

Publish configuration file

php artisan vendor:publish --provider="Travoltron\Plaid\PlaidServiceProvider" --tag="config"

Usage

Add the following line to any file you will be using this library in.

use Plaid;

Auth

Auth allows you to collect a user's bank account and routing number, along with basic account data and balances. The product performs two crucial functions—it translates bank access credentials (username & password) into an accurate account and routing number. No input of account or routing number is necessary. Secondly it validates that this is the owner of this account number, in a NACHA compliant manner. No need for micro-deposits or any other secondary authentication.

First, add the user:

Plaid::addAuthUser(username, password, pin, type);

username, password, and type are mandatory fields, and will return an error if not set. pin is ONLY for USAA accounts, otherwise set to null. An up to date list can be found here.

Example request:

$authUser = Plaid::addAuthUser('plaid_test', 'plaid_good', null, 'chase');

If the institution does not require MFA (multi-factor authentication), and the configuration for Auth login_only is false, you will get this, along with a status code of 200:

{
  "accounts": [
    {
      "_id": "mjj9jp92z2fD1mLlpQYZI1gAd4q4LwTKmBNLz",
      "_item": "aWWVW4VqGqIdaP495QyOSVLN1nzjLwhXaPDJJ",
      "_user": "bkkVkMVwQwfYmBMy9jzqHQob9O1KwpFaEyLOE",
      "balance": {
        "available": 1203.42,
        "current": 1274.93
      },
      "meta": {
        "name": "Plaid Savings",
        "number": "9606"
      },
      "numbers": {
        "routing": "021000021",
        "account": "9900009606",
        "wireRouting": "021000021"
      },
      "institution_type": "fake_institution",
      "type": "depository"
    },
  ...],
  "access_token": "xxxxx"
}

Make note of the access_token, you will use this to identify this user for all further requests with this account. Laravel's one-to-many relationships from User to PlaidLinks would work great here, but I don't want to impose my designs onto your flow, I'm just sharing what works well for me.

Note: if you set login_only to false, webhooks will be ignored. If this is the case, you will need to poll periodically for fresh data from Plaid.

If the institution does require MFA, your response will be on a 201 status code. This is very important to watch for: in the case that there are multiple questions needed, you will resubmit the MFA request UNTIL you get a 200.

In this instance, your response will look like this:

{
  "type": "questions",
  "mfa": [{"question":"What was the name of your first pet?"}],
  "access_token": "xxxxx"
}

Note: For question type responses use: again (for multiple questions), tomato (for final response) For code-based: 1234 For selections: tomato (when available), ketchup (when available)

Plaid::authMfa(mfa, plaid_token, method);

mfa is the supplied answer to the challenge question. plaid_token is the access_token we received in the last request, it is how Plaid knows what user to test the challenge question for. method is only used if the configuration list option is set to true. By default, this is false. Read more about it here.

Example request:

$authMfa = Plaid::authMfa('1234', 'test_chase');

You will repeat this cycle until you get a 200 response code, after which, if login_only is set to false you will get this:

{
  "accounts": [
    {object},
    {object}
  ],
  "access_token": "xxxxx"
}

At this point someone is fully set up and ready to go! To recall auth info whenever, just call:

$getAuthData = Plaid::getAuthData($plaid_token);

If someone changes their credentials at their banking institution, you will need to update them within Plaid.

This is exactly the same request as Plaid::addAuthUser above, except now you will be passing along the access token.

Example request:

$updateAuthUser = Plaid::updateAuthUser($username, $password, $pin = null, $plaid_token);

There may be a requirement for MFA, same as when you added the user initially, so follow those same steps.

To delete a user from Plaid, Plaid::deleteAuthUser should be called. This only requires the plaid_token to be passed.

Example request:

$deleteAuthUser = Plaid::deleteAuthUser($plaid_token);

On success will return this:

{
   "message": "Successfully removed from your account"
}

That is the core workflow for all of the Plaid services. The other services include:

Connect

Connect allows developers to receive user-authorized transaction and account data. Data is contained in a set of transaction and account objects, one for each respective entry. Transaction data is standardized across financial institutions, and in most cases transactions are linked to a clean name, entity type, location, and category. Similarly, account data is standardized and returned with a clean name, number, balance, and other meta information where available.

A successful request to Connect looks like this:

"accounts": [
  {
    "_id": "YzzrzBrO9OSzo6BXwAvVuL5dmMKMqkhOoEqeo",
    "_item": "aWWVW4VqGqIdaP495QyOSVLN1nzjLwhXaPDJJ",
    "_user": "bkkVkMVwQwfYmBMy9jzqHQob9O1KwpFaEyLOE",
    "balance": {
      "available": 7205.23,
      "current": 7255.23
    },
    "institution_type": "fake_institution",
    "meta": {
      "name": "Plaid Credit Card",
      "number": "3002"
    },
    "type": "depository",
    "subtype": "checking"
  },
  {
    "_id": "pJPM4LMBNQFrOwp0jqEyTwyxJQrQbgU6kq37k",
    "_item": "aWWVW4VqGqIdaP495QyOSVLN1nzjLwhXaPDJJ",
    "_user": "bkkVkMVwQwfYmBMy9jzqHQob9O1KwpFaEyLOE",
    "balance": {
      "available": 9930,
      "current": 2275.58
    },
    "institution_type": "fake_institution",
    "meta": {
      "limit": 12500,
      "name": "Plaid Credit Card",
      "number": "3002"
    },
    "type": "credit"
  }
...],
"transactions": [
  {
    "_account": "YzzrzBrO9OSzo6BXwAvVuL5dmMKMqkhOoEqeo",
    "_id": "600r0LrVvViXjq96lBpdtyOWboBvzmsaZoeaV",
    "amount": 12.74,
    "date": "2016-03-12",
    "name": "Golden Crepes",
    "meta": {
      "location": {
        "address": "262 W 15th St"
        "city": "New York",
        "state": "NY",
        "zip": "10011",
        "coordinates": {
          "lat": 40.740352,
          "lon": -74.001761
        }
      }
    },
    "pending": false,
    "type": {
      "primary": "place"
    },
    "category": [
      "Food and Drink",
      "Restaurants"
    ],
    "category_id": "13005000",
    "score": {
      "location": {
        "address": 1,
        "city": 1,
        "state": 1
      },
      "name": 0.9
    },
  },
...],
"access_token": "xxxxx"

Connect requests also have have additional params that are set in the configuration file: start_date and end_date, which default to 30 and 0 respectively.

This values, used in conjuction with Carbon set the date range that Plaid will return data for. It is always in terms of days ago, as in return data from 30 days ago to 0 days ago, ie today.

These can be set at request time as well, by passing a date string into the request:

$getConnectData = Plaid::getConnectData($plaid_token, 2015-01-01, 2016-03-15);

Note: The default data from Plaid in their sandbox is dated from 2014 and will not show up with this type of search. Change the start_date value from 30 to 999 if you'd like to make sure you see a response.

I have also included two additional methods that get the accounts and transactions separately. They are:

Plaid::getConnectAccounts($plaid_token), this does not require a time window.

Plaid::getConnectTransactions($plaid_token, $start_date = null, $end_date = null), this will only contain transactions for you to use.

Info Info allows you to retrieve various account holder information on file with the financial institution, including names, emails, phone numbers, and addresses.

Risk Risk allows you to retrieve various information pertaining to a user's calculated risk. Risk profiles are generated for each underlying account and include an overall score, a breakdown of the score by various contributing parameters, and the extent of data available for analysis.

Plaid’s risk algorithm detects abnormal behavior by comparing new bank accounts to an internal database. While directly detecting risky behavior is challenging, we use our large dataset to identify normal patterns. Once an account is found to deviate from our definition of normal in our carefully chosen parameter space it is flagged as abnormal.

Balance Balance returns the real-time balance of a user's accounts. It may be used for existing users that were added via any of Plaid's products. The Current Balance is the total amount of funds in the account. The Available Balance is the Current Balance less any outstanding holds or debits that have not yet posted to the account. Note that not all institutions calculate the Available Balance. In the case that Available Balance is unavailable from the institution, Plaid will either return an Available Balance value of null or only return a Current Balance.

Example request:

$balances = Plaid::getBalances($plaid_token);

This will return

{
  "accounts": [
    {
      "_id": "mjj9jp92z2fD1mLlpQYZI1gAd4q4LwTKmBNLz",
      "_item": "aWWVW4VqGqIdaP495QyOSVLN1nzjLwhXaPDJJ",
      "_user": "bkkVkMVwQwfYmBMy9jzqHQob9O1KwpFaEyLOE",
      "balance": {
        "available": 1203.42,
        "current": 1274.93
      },
      "meta": {
        "name": "Plaid Savings",
        "number": "9606"
      },
      "institution_type": "fake_institution",
      "type": "depository"
    },
  ...],
  "access_token": "xxxxx"
}

Upgrade For an existing user that has been added via any of Plaid's products (Connect, Auth, Income, Info, or Risk), you can upgrade that user to have functionality with other products.

Example request:

$upgradeUser = Plaid::upgrade($plaid_token, $upgrade_to, $webhook = null);

$upgrade_to must be one of the following ['auth', 'connect', 'income', 'info', 'risk'].

Note: You will find it easiest if you take users through the Auth onboarding process first in order to avoid additional MFA requests. Use of a webhook is highly recommended here.

Search Institutions You can search all institutions (including longtail (you HAVE to request access to this from Plaid directly)). It will return the authentication params and in many cases a base64 encoded logo to use.

Example request:

$search = Plaid::search('bank of america');
[
  {
    "name": "Bank of America",
    "id": "bofa",
    "logo": "",
    "fields": [
      {
        "name": "username",
        "label": "Online ID",
        "type": "text"
      },
      {
        "name": "password",
        "label": "Password",
        "type": "password"
      }
    ]
  },
...]

product options are the same as the viable options for upgrade_to, however you most likely will never use this option. id is if you already know the id you're searching for, handy if you want to get a logo or additional data, but still highly unlikely to be used with any frequency.

Categories Most transactions fall under a category. This is extremely useful with targeting spending or isolating patterns for a user. For a full list, click here.

To search categories, you can get all from this:

$getCategories = Plaid::categories($id = null);
[
  {
    "id": "10000000",
    "hierarchy": [
      "Bank Fees"
    ],
    "type": "special"
  },
  {
    "id": "10001000",
    "hierarchy": [
      "Bank Fees",
      "Overdraft"
    ],
    "type": "special"
  },
  {
    "id": "10002000",
    "hierarchy": [
      "Bank Fees",
      "ATM"
    ],
    "type": "special"
  },
  {
    "id": "10003000",
    "hierarchy": [
      "Bank Fees",
      "Late Payment"
    ],
    "type": "special"
  },
  {
    "id": "10004000",
    "hierarchy": [
      "Bank Fees",
      "Fraud Dispute"
    ],
    "type": "special"
  },
  {
    "id": "10005000",
    "hierarchy": [
      "Bank Fees",
      "Foreign Transaction"
    ],
    "type": "special"
  },
  {
    "id": "10006000",
    "hierarchy": [
      "Bank Fees",
      "Wire Transfer"
    ],
    "type": "special"
  },
  {
    "id": "10007000",
    "hierarchy": [
      "Bank Fees",
      "Insufficient Funds"
    ],
    "type": "special"
  },
...]

Send it empty to retrieve all categories, or send an ID for detailed information.

$getCategoryDetail = Plaid::categories('17001013');
{
  "type": "place",
  "hierarchy": [
    "Recreation",
    "Arts & Entertainment",
    "Circuses and Carnivals"
  ],
  "id": "17001013"
}

Link

For those who are using Link, you'll need to exchange your public_token for a plaid_token.

Example request:

$plaid_token = Plaid::exchangeToken($public_token);

Change log

Please see CHANGELOG for more information what has changed recently.

Contributing

Please see CONTRIBUTING and CONDUCT for details.

Credits

License

The MIT License (MIT). Please see License File for more information.