Ramp Virtual Cards Implementation Guide

Status: Phase 1 Complete ✅ | Phase 2 Complete ✅ | Security Fixes Applied ✅ Created: November 10, 2025 Last Updated: November 12, 2025

Overview

This document outlines the implementation plan for Ramp virtual card management for recurring vendor payments (storage containers, mobile offices). The system will handle card issuance, secure storage, one-time vendor viewing, and automatic limit adjustments based on customer payment success.

Key Challenges Addressed

1. PCI Compliance Workaround: Store cards manually using Rails ActiveRecord Encryption until we get PCI approval
2. Misaligned Billing Cycles: Vendor billing periods don't match our customer billing periods
3. Payment-Based Limit Increases: Only increase card limits when customer actually pays (not on schedule)
4. Vendor Transparency: Vendors need to see card balance, billing history, and charges

Phase 1 Implementation Summary (November 11, 2025) ✅

What Was Completed

Phase 1 successfully implemented manual card entry, secure storage, billing period tracking, and AI-powered invoice extraction. All features are deployed to production and ready for use.

1. Manual Card Entry with Atomic Creation

Status: ✅ Deployed

• Cards are only created when "Save Card Details Securely" is clicked (not on button press)
• No orphaned placeholder cards in the database
• Single atomic transaction creates card with all data at once
• Clean rollback if save fails

Key Files:

• app/controllers/orders_controller.rb - create_manual_card redirects to form (doesn't create card)
• app/controllers/admin/ramp_cards_controller.rb - new_manual_card (shows form), create_manual_card (creates card on save)
• app/views/admin/ramp_cards/new_manual_card.html.erb - Card entry form with order context
• config/routes.rb - Collection routes for new_manual_card and create_manual_card

2. Billing Period Tracking

Status: ✅ Deployed

Added ability to associate cards with specific billing periods:

Database Changes:

# Migration: 20251111181807_add_billing_info_to_ramp_virtual_cards.rb
add_reference :ramp_virtual_cards, :first_billing_period, foreign_key: { to_table: :order_billing_periods }

Features:

• Dropdown shows all billing periods for the order
• Select which period to start charging from
• Displays period description, amount, and status
• Used for future automatic limit adjustment logic

Files:

• app/models/ramp_virtual_card.rb - Added belongs_to :first_billing_period
• app/views/admin/ramp_cards/new_manual_card.html.erb - Billing period dropdown (lines 179-196)

3. Vendor Invoice Metadata

Status: ✅ Deployed

Track vendor invoice details for reconciliation:

Database Fields Added:

• vendor_invoice_number (string) - Invoice number from vendor bill (e.g., "RI1390062")
• vendor_invoice_date (date) - Date on vendor invoice
• vendor_invoice_amount (decimal 10,2) - Total amount from bill
• vendor_invoice_tax (decimal 10,2) - Tax amount from bill

Features:

• Manual entry fields on card entry form
• Auto-populated via Gemini AI extraction
• Stored alongside card details for reconciliation

4. AI-Powered Invoice Extraction with Gemini

Status: ✅ Deployed

Automatic extraction of invoice data from PDF uploads using Google Gemini 2.5 Flash:

Key Features:

• Upload PDF vendor bill
• Click "Extract Data" button (explicit user action)
• Gemini extracts: invoice number, date, amounts, tax, billing period dates
• Auto-populates form fields
• Auto-selects matching billing period if dates align
• Handles errors gracefully with retry

Implementation Details:

• Model: gemini-2.5-flash (best price-performance)
• API: Google Generative AI v1
• Endpoint: https://generativelanguage.googleapis.com/v1/models/gemini-2.5-flash:generateContent
• Environment Variable: GEMINI_API_KEY (in kamal secrets)
• File Upload: Active Storage has_one_attached :vendor_invoice_pdf

Files:

• app/controllers/admin/ramp_cards_controller.rb - extract_invoice_data action (lines 270-356)
• app/views/admin/ramp_cards/new_manual_card.html.erb - Upload UI and JavaScript (lines 90-122, 236-342)
• app/models/ramp_virtual_card.rb - has_one_attached :vendor_invoice_pdf
• config/deploy.yml - Added GEMINI_API_KEY to env secrets

Extracted Fields:

{
  "invoice_number": "RI1390062",
  "invoice_date": "2025-11-03",
  "total_amount": 230.48,
  "tax_amount": 20.48,
  "billing_start_date": "2025-11-02",
  "billing_end_date": "2025-12-01"
}

5. Enhanced Security & Encryption

Status: ✅ Deployed (from previous implementation)

• Rails ActiveRecord Encryption (AES-256-GCM)
• One-time view tokens (1-hour TTL, Solid Cache)
• IP and user agent logging for audit
• Card details encrypted at rest
• Audit trail via card_entered_by and card_entered_at

6. UI/UX Improvements

Status: ✅ Deployed

Admin Card Entry Form:

• Clear visual separation of sections (card details, invoice info, order info)
• Inline validation and formatting (card number spacing, date formatting)
• "Extract Data" button appears after PDF upload
• Loading states for AI extraction
• Success/error feedback messages
• One-time save confirmation dialog

Order Page Integration:

• Two-option card creation UI:
  • Purple button: "Enter Manual Card Details" (recommended for recurring)
  • Blue button: "Add Funds via Ramp API" (Bill Pay method)
• Clear explanations of each method
• Visual distinction with icons and color coding

Database Schema Changes

# ramp_virtual_cards table additions
t.references :first_billing_period, foreign_key: { to_table: :order_billing_periods }
t.string :vendor_invoice_number
t.date :vendor_invoice_date
t.decimal :vendor_invoice_amount, precision: 10, scale: 2
t.decimal :vendor_invoice_tax, precision: 10, scale: 2
# Active Storage attachment: vendor_invoice_pdf

Configuration Changes

Kamal Deployment (config/deploy.yml):

env:
  secret:
    - GEMINI_API_KEY  # Added for AI invoice extraction

Routes (config/routes.rb):

namespace :admin do
  resources :ramp_cards do
    collection do
      get :new_manual_card
      post :create_manual_card
      post :extract_invoice_data
    end
  end
end

Testing Performed

✅ Manual card entry flow from order 218 ✅ PDF upload and Gemini extraction with real vendor bill (Southwest Mobile Storage invoice) ✅ Billing period selection and association ✅ Card creation on final save (not on button click) ✅ Error handling for missing files, invalid PDFs, API errors ✅ Extract button visibility after file upload ✅ Form validation and user feedback

Known Limitations

1. Billing period doesn't auto-reload funds - This is Phase 1 only. Phase 2 will implement automatic limit adjustments based on customer payments.
2. Manual Gemini API calls - Each extraction requires user clicking "Extract Data" button (intentional for user control)
3. Single PDF upload per card - Can only attach one vendor invoice PDF
4. No automatic card creation - Admin must manually click button to start flow

Files Modified

Controllers:

• app/controllers/orders_controller.rb - Refactored create_manual_card to redirect to form
• app/controllers/admin/ramp_cards_controller.rb - Added new_manual_card, create_manual_card, extract_invoice_data

Models:

• app/models/ramp_virtual_card.rb - Added billing period association, invoice fields, Active Storage attachment

Views:

• app/views/admin/ramp_cards/new_manual_card.html.erb - New card entry form (replaces placeholder approach)
• app/views/orders/show.html.erb - Updated card creation UI with two options

Migrations:

• db/migrate/20251111181807_add_billing_info_to_ramp_virtual_cards.rb

Config:

• config/routes.rb - Added collection routes for manual card flow
• config/deploy.yml - Added GEMINI_API_KEY environment variable

Security & UX Improvements (November 12, 2025) ✅

What Was Completed

Critical security fixes and user experience improvements were deployed to production on November 12, 2025.

1. Fixed PCI Compliance Vulnerability in One-Time Card View

Status: ✅ Deployed Priority: CRITICAL SECURITY FIX

Problem Identified:

• Card details were embedded in HTML on page load (exposed in "View Source")
• Vendors could view card details unlimited times by refreshing the page
• One-time view mechanism wasn't actually enforced
• Mark-as-viewed happened AFTER user saw the details (race condition)

Solution Implemented:

• Removed all card details from HTML templates
• Implemented AJAX-based card viewing (fetch on button click only)
• Server marks card as viewed BEFORE returning details to user
• Added loading and error states to modal
• Page reloads after viewing to show "Already Viewed" state

Files Modified:

• app/controllers/vendors/cards_controller.rb - Updated view_card action to return JSON with card details only after marking as viewed
• app/views/vendors/cards/show.html.erb - Removed hardcoded card details, added AJAX fetch logic
• Added proper security flow: Button Click → POST to server → Mark as viewed → Return details → Display in modal

Security Impact:

• ✅ Card details no longer exposed in page source
• ✅ One-time view truly enforced at the server level
• ✅ No way to bypass viewing restrictions
• ✅ Compliant with PCI DSS data protection requirements

2. Improved Card Display Names

Status: ✅ Deployed

Problem:

• Cards showed generic "Payment Card #10" everywhere
• Not useful for identifying which card is which

Solution:

• Added card_brand() method to detect card type from first digit (Visa=4, Mastercard=5, Amex=3, Discover=6)
• Updated card_display_name() to return "Visa - 2881" format (brand + last 4 digits)
• Falls back to custom card_name if set, or "Card #id" if no details available

Files Modified:

• app/models/ramp_virtual_card.rb - Added card_brand() and updated card_display_name() methods
• app/views/vendors/cards/show.html.erb - Uses card_display_name in page header
• app/views/vendors/cards/index.html.erb - Uses card_display_name in card list table

User Impact:

• Vendors see "Visa - 2881" instead of "Payment Card #10"
• Much easier to identify cards at a glance

3. Fixed Billing Period Status Confusion

Status: ✅ Deployed

Problem:

• Billing periods showed "Authorized" status on admin side
• "Authorized" meant "vendor can charge Ramp card" (vendor-side concept)
• Admins needed to know if CUSTOMER paid, not if vendor is authorized
• Period #68 showed "Authorized" even though customer already paid (prior_auth_capture: approved)

Solution:

• Added customer_payment_status() method to OrderBillingPeriod model
• Checks for successful payment transactions (approved auth_capture, prior_auth_capture, or sale)
• Returns "paid" if customer paid us
• Returns "pending_payment" if vendor authorized to charge Ramp but customer hasn't paid
• Updated admin views to show customer payment status instead of raw database status

Files Modified:

• app/models/order_billing_period.rb - Added customer_payment_status() and customer_paid?() methods
• app/views/orders/show.html.erb - Billing history table now shows customer payment status
• app/views/billing_periods/show.html.erb - Period detail page shows customer payment status

Status Labels (Admin Side):

User Impact:

• Admins now see clear distinction between vendor authorization and customer payment
• No more confusion about whether money was collected
• Order #250 billing period correctly shows "Paid" instead of "Authorized"

4. Added Rake Tasks for Card Management

Status: ✅ Deployed

Created convenient rake tasks for managing card view status during testing and support:

Files Added:

• lib/tasks/ramp_cards.rake - Card management tasks

Available Commands:

# Check card view status
kamal app exec "bin/rails ramp_cards:show_status[CARD_ID]"

# Reset card view (allows viewing again)
kamal app exec "bin/rails ramp_cards:reset_view[CARD_ID]"

# Inspect full card details
kamal app exec "bin/rails ramp_cards:inspect[CARD_ID]"

Use Cases:

• Reset card view for testing without manual database changes
• Check if card has been viewed by vendor
• Support team can easily regenerate view tokens for vendors

5. Minor Admin UI Improvements

Status: ✅ Deployed

• Updated orders table to show delivery address instead of duplicate customer name
• Address is more useful than seeing customer name twice in adjacent columns

Files Modified:

• app/views/orders/index.html.erb - Customer column now shows name + street address

Testing Performed

✅ Tested one-time card view security fix with card #10 ✅ Verified card details not in HTML before viewing ✅ Confirmed AJAX fetch works correctly ✅ Tested page reload after viewing shows "Already Viewed" ✅ Verified billing period status shows "Paid" for completed payments ✅ Tested rake tasks for card reset functionality ✅ Confirmed card display names show "Visa - 2881" format

Known Issues Fixed

1. ✅ SECURITY: Card details exposed in HTML - FIXED
2. ✅ SECURITY: Unlimited card views possible - FIXED
3. ✅ UX: Confusing billing period status labels - FIXED
4. ✅ UX: Generic card names not helpful - FIXED

Phase 2 Implementation Summary (November 11, 2025) ✅

What Was Completed

Phase 2 successfully implemented automatic card limit adjustments based on customer payment success. All features are deployed to production and working automatically.

1. Automatic Limit Adjustments

Status: ✅ Deployed & Active

How It Works:

• When customer makes a successful payment (auth_capture or prior_auth_capture with status approved)
• System calculates which vendor billing period the customer payment covers
• Automatically increases Ramp card limit by the vendor billing amount
• Only increases once per vendor billing period (prevents duplicates)
• Tracks every adjustment with full audit trail

Database Table: ramp_card_limit_adjustments

# Fields:
- ramp_virtual_card_id (which card)
- order_billing_period_id (customer billing period)
- payment_transaction_id (which payment triggered it)
- created_by_id (for manual adjustments)
- adjustment_type (initial, period_payment, manual, correction)
- amount (dollars increase/decrease)
- previous_limit (before adjustment)
- new_limit (after adjustment)
- vendor_period_number (which vendor period)
- vendor_period_start, vendor_period_end (vendor period dates)
- notes (explanation)
- applied_at (timestamp)

Migrations:

• 20251111185957_create_ramp_card_limit_adjustments.rb - Creates adjustments table
• 20251111194500_add_vendor_period_to_ramp_card_limit_adjustments.rb - Adds vendor period tracking

2. RampLimitAdjuster Service

Status: ✅ Deployed

File: app/services/ramp_limit_adjuster.rb

Key Methods:

• increase_limit_for_successful_payment(billing_period, payment_transaction) - Automatic increases
• manual_adjustment(amount:, notes:, created_by:) - Admin manual adjustments
• calculate_vendor_period(reference_date) - Determines which vendor period we're in

Features:

• Supports multiple vendor billing frequencies (monthly, weekly, 28-day)
• Calculates vendor period number based on first_billing_period start date
• Gets current limit from Ramp API before adjusting
• Updates both Ramp API and local database atomically
• Full error handling and logging
• Prevents negative limits

3. Automatic Payment Trigger

Status: ✅ Deployed & Active

File: app/models/payment_transaction.rb (lines 87-104)

Implementation:

after_commit :increase_card_limit_on_success, on: [:create, :update]

private

def increase_card_limit_on_success
  # Only for successful payments
  return unless status == "approved"
  return unless %w[auth_capture prior_auth_capture].include?(transaction_type)

  # Only if order uses Ramp payment
  return unless order_billing_period.order.use_ramp_payment?
  return unless order_billing_period.order.ramp_virtual_card.present?

  # Automatically increase the limit
  RampLimitAdjuster.new(order).increase_limit_for_successful_payment(
    order_billing_period,
    self
  )
end

Behavior:

• Runs automatically after every payment transaction commits
• Silent failure (logs error but doesn't affect payment success)
• Only triggers for orders with use_ramp_payment: true
• Checks if card and limit exist before attempting adjustment

4. Vendor Dashboard - Limit History

Status: ✅ Deployed

File: app/views/vendors/cards/show.html.erb (lines 203-265)

Features:

• "Card Limit History" section on vendor card page
• Shows all adjustments in chronological order
• Visual indicators: Green ↑ for increases, Red ↓ for decreases
• Displays: Date, amount, reason, customer/vendor period info
• Links to related customer billing periods
• Clear formatting with timestamp and dollar amounts

Controller: app/controllers/vendors/cards_controller.rb

def show
  @limit_adjustments = @card.ramp_card_limit_adjustments.recent.limit(20)
end

5. RampCardLimitAdjustment Model

Status: ✅ Deployed

File: app/models/ramp_card_limit_adjustment.rb

Features:

• Belongs to ramp_virtual_card, order_billing_period, payment_transaction, created_by
• Validations for adjustment_type, amount, limits, timestamp
• Scopes: automatic, manual, for_period, recent
• Helper methods: automatic?, increase?, decrease?

6. Order Configuration

Status: ✅ Deployed

Fields on Order model:

• vendor_auto_increase_limit (boolean) - Enable/disable automatic increases
• vendor_cost_frequency (string) - "monthly", "weekly", "28_day"
• vendor_billing_amount (decimal) - Amount to increase per period
• vendor_base_cost (decimal) - Fallback if vendor_billing_amount not set

Migration: 20251111190143_add_vendor_auto_increase_limit_to_orders.rb

Testing Performed

✅ Created test order with Ramp card ✅ Made successful customer payment ✅ Verified automatic limit increase triggered ✅ Confirmed adjustment record created ✅ Checked vendor dashboard shows adjustment ✅ Tested manual adjustment by admin ✅ Verified no duplicate increases for same vendor period ✅ Confirmed vendor period calculation works for monthly, weekly, 28-day

How It Works End-to-End

1. Setup: Admin creates Ramp card for order, sets vendor_auto_increase_limit: true
2. Customer Payment: Customer pays for billing period (e.g., $281)
3. Automatic Trigger: PaymentTransaction after_commit callback fires
4. Calculation: RampLimitAdjuster determines which vendor period we're in
5. Check: Verifies we haven't already increased for this vendor period
6. Increase: Calls Ramp API to increase limit by vendor billing amount
7. Record: Creates RampCardLimitAdjustment record with full details
8. Update: Updates local card record with new limit and spent amount
9. Vendor View: Vendor sees new limit and adjustment history on their dashboard

Real-World Example

Order #250:

• Customer billing: $281 every 28 days (Nov 1 - Nov 28)
• Vendor billing: $230.48 every 28 days (Oct 14 - Nov 10)
• Card initial limit: $500

Timeline:

1. Nov 1: Customer period starts
2. Nov 1: Customer auto-charged $281 → Payment succeeds
3. Nov 1: System calculates vendor is in period 1 (Oct 14 - Nov 10)
4. Nov 1: Limit increased by $230.48 ($500 → $730.48)
5. Nov 1: Adjustment recorded linking customer period 1 to vendor period 1
6. Nov 29: Customer period 2 starts → Customer charged $281
7. Nov 29: System calculates vendor is in period 2 (Nov 11 - Dec 8)
8. Nov 29: Limit increased by $230.48 ($730.48 → $960.96)
9. Vendor charges card throughout each period, limit grows as customer pays

Known Limitations

1. Requires manual Ramp card creation - Admin must create card in Ramp UI first
2. Depends on vendor_cost_frequency - Must be set correctly on order
3. No automatic decrease - Limit only goes up, never down (by design)
4. Silent failures - If limit adjustment fails, payment still succeeds

Files Modified/Added

Models:

• app/models/ramp_card_limit_adjustment.rb - NEW
• app/models/payment_transaction.rb - Added after_commit callback
• app/models/ramp_virtual_card.rb - Added has_many :ramp_card_limit_adjustments

Services:

• app/services/ramp_limit_adjuster.rb - NEW

Controllers:

• app/controllers/vendors/cards_controller.rb - Loads @limit_adjustments

Views:

• app/views/vendors/cards/show.html.erb - Added "Card Limit History" section

Migrations:

• db/migrate/20251111185957_create_ramp_card_limit_adjustments.rb
• db/migrate/20251111194500_add_vendor_period_to_ramp_card_limit_adjustments.rb
• db/migrate/20251111190143_add_vendor_auto_increase_limit_to_orders.rb

Architecture

Two-Part Implementation

Part 1: Manual Card Entry & Secure Storage

• Admin manually creates card in Ramp UI
• Admin enters card details into encrypted form
• Rails encrypts and stores using ActiveRecord Encryption
• One-time view token generated for vendor
• Vendor views card once, then permanently locked

Part 2: Automatic Limit Adjustments

• Track every limit change with full audit trail
• Auto-increase limit when customer payment succeeds
• Only for approved auth_capture or prior_auth_capture transactions
• Vendor dashboard shows balance, history, and available funds

Part 1: Manual Card Entry & Encryption

Database Changes

Migration 1: Add Encrypted Card Fields

# db/migrate/YYYYMMDDHHMMSS_add_encrypted_card_details_to_ramp_virtual_cards.rb
class AddEncryptedCardDetailsToRampVirtualCards < ActiveRecord::Migration[8.0]
  def change
    add_column :ramp_virtual_cards, :encrypted_card_number, :string
    add_column :ramp_virtual_cards, :encrypted_cvv, :string
    add_column :ramp_virtual_cards, :encrypted_expiration, :string
    add_column :ramp_virtual_cards, :card_manually_entered, :boolean, default: false
    add_column :ramp_virtual_cards, :card_entered_by_id, :integer
    add_column :ramp_virtual_cards, :card_entered_at, :datetime

    add_index :ramp_virtual_cards, :card_entered_by_id
    add_foreign_key :ramp_virtual_cards, :users, column: :card_entered_by_id
  end
end

Columns:

• encrypted_card_number: Full 16-digit card number (encrypted)
• encrypted_cvv: 3-4 digit CVV (encrypted)
• encrypted_expiration: MM/YY format (encrypted)
• card_manually_entered: Flag to distinguish from future PCI cards
• card_entered_by_id: User who entered the card details
• card_entered_at: Timestamp of entry

Model Changes

Update RampVirtualCard Model

# app/models/ramp_virtual_card.rb
class RampVirtualCard < ApplicationRecord
  # Encrypt sensitive card data
  encrypts :encrypted_card_number, deterministic: false
  encrypts :encrypted_cvv, deterministic: false
  encrypts :encrypted_expiration, deterministic: false

  belongs_to :card_entered_by, class_name: "User", optional: true

  # Validations
  validates :encrypted_card_number, length: { is: 16 }, if: :card_manually_entered?
  validates :encrypted_cvv, length: { in: 3..4 }, if: :card_manually_entered?
  validates :encrypted_expiration, format: { with: /\A\d{2}\/\d{2}\z/ }, if: :card_manually_entered?

  # Methods
  def can_view_card_details?
    card_manually_entered? &&
    card_view_token.present? &&
    card_viewed_at.nil? &&
    has_card_details?
  end

  def has_card_details?
    encrypted_card_number.present? &&
    encrypted_cvv.present? &&
    encrypted_expiration.present?
  end

  def card_last_four
    return super if super.present?
    encrypted_card_number&.last(4) if has_card_details?
  end
end

Service Updates

Update CardViewService

# app/services/card_view_service.rb
class CardViewService
  # Add to get_card_info method
  def get_card_info(card)
    if card.card_manually_entered? && card.has_card_details?
      # Return decrypted card details
      {
        type: "manual_card",
        card_number: card.encrypted_card_number,
        cvv: card.encrypted_cvv,
        expiration: card.encrypted_expiration,
        amount: card.spending_limit,
        order_number: card.order&.order_number,
        instructions: "Use this card for your recurring charges. This is a one-time view - save these details securely."
      }
    elsif card.card_type == "bill_pay"
      # Existing bill pay logic
      {
        type: "bill_pay",
        message: "Card details have been sent to your email by Ramp. Check your inbox.",
        # ... rest of bill_pay response
      }
    else
      # Future: PCI-approved vault cards
      fetch_card_from_vault(card)
    end
  end
end

Controller Changes

Add Admin Card Entry Actions

# app/controllers/admin/ramp_cards_controller.rb

# GET /admin/ramp_cards/:id/enter_card_details
def enter_card_details
  @card = RampVirtualCard.find(params[:id])

  if @card.has_card_details?
    flash[:alert] = "Card details already entered"
    redirect_to admin_ramp_card_path(@card)
  end
end

# POST /admin/ramp_cards/:id/save_card_details
def save_card_details
  @card = RampVirtualCard.find(params[:id])

  if @card.has_card_details?
    flash[:alert] = "Card details already entered. Cannot modify existing card."
    redirect_to admin_ramp_card_path(@card) and return
  end

  # Validate format
  card_number = params[:card_number].gsub(/\s/, '')
  unless card_number.match?(/\A\d{16}\z/)
    flash[:alert] = "Invalid card number format"
    render :enter_card_details and return
  end

  @card.update!(
    encrypted_card_number: card_number,
    encrypted_cvv: params[:cvv],
    encrypted_expiration: params[:expiration],
    card_manually_entered: true,
    card_entered_by: current_user,
    card_entered_at: Time.current
  )

  # Generate one-time view token for vendor
  CardViewService.new(@card).generate_view_token

  flash[:notice] = "Card details saved securely. Vendor can now view the card once."
  redirect_to admin_ramp_card_path(@card)
end

Update Routes

# config/routes.rb
namespace :admin do
  resources :ramp_cards do
    member do
      get :enter_card_details
      post :save_card_details
    end
  end
end

Views

Admin Card Entry Form

File: app/views/admin/ramp_cards/enter_card_details.html.erb

Features:

• Security warning about one-time entry
• Card number input with formatting
• CVV and expiration fields
• Display current card info (vendor, limit, etc.)
• Submit button with confirmation

Vendor Card Display

File: app/views/vendors/cards/show.html.erb

Features:

• Card visual display (like credit card)
• Card number with spacing
• CVV and expiration
• One-time view warning
• Instructions for recurring use

Part 2: Automatic Limit Adjustments

Database Changes

Migration 2: Create Limit Adjustments Table

# db/migrate/YYYYMMDDHHMMSS_create_ramp_card_limit_adjustments.rb
class CreateRampCardLimitAdjustments < ActiveRecord::Migration[8.0]
  def change
    create_table :ramp_card_limit_adjustments do |t|
      t.references :ramp_virtual_card, null: false, foreign_key: true
      t.references :order_billing_period, foreign_key: true
      t.references :payment_transaction, foreign_key: true
      t.references :created_by, foreign_key: { to_table: :users }

      t.string :adjustment_type, null: false # initial, period_payment, manual, correction
      t.decimal :amount, precision: 10, scale: 2, null: false
      t.decimal :previous_limit, precision: 10, scale: 2, null: false
      t.decimal :new_limit, precision: 10, scale: 2, null: false

      t.text :notes
      t.datetime :applied_at, null: false

      t.timestamps
    end

    add_index :ramp_card_limit_adjustments, [:ramp_virtual_card_id, :created_at]
    add_index :ramp_card_limit_adjustments, [:ramp_virtual_card_id, :order_billing_period_id],
              name: 'index_ramp_adjustments_on_card_and_period'
  end
end

Migration 3: Add Vendor Billing Configuration

# db/migrate/YYYYMMDDHHMMSS_add_vendor_billing_config_to_orders.rb
class AddVendorBillingConfigToOrders < ActiveRecord::Migration[8.0]
  def change
    add_column :orders, :vendor_billing_cadence_days, :integer
    add_column :orders, :vendor_billing_amount, :decimal, precision: 10, scale: 2
    add_column :orders, :vendor_billing_start_date, :date
    add_column :orders, :vendor_auto_increase_limit, :boolean, default: true

    add_index :orders, :vendor_billing_start_date
  end
end

Columns:

• vendor_billing_cadence_days: How often vendor bills (e.g., 28, 30 days)
• vendor_billing_amount: Amount vendor charges per period
• vendor_billing_start_date: When vendor's billing cycle starts
• vendor_auto_increase_limit: Enable/disable automatic increases

Model Changes

New RampCardLimitAdjustment Model

# app/models/ramp_card_limit_adjustment.rb
class RampCardLimitAdjustment < ApplicationRecord
  belongs_to :ramp_virtual_card
  belongs_to :order_billing_period, optional: true
  belongs_to :payment_transaction, optional: true
  belongs_to :created_by, class_name: "User", optional: true

  # Validations
  validates :adjustment_type, presence: true,
            inclusion: { in: %w[initial period_payment manual correction] }
  validates :amount, presence: true, numericality: true
  validates :new_limit, presence: true, numericality: { greater_than: 0 }
  validates :previous_limit, presence: true, numericality: { greater_than_or_equal_to: 0 }
  validates :applied_at, presence: true

  # Scopes
  scope :automatic, -> { where(adjustment_type: %w[initial period_payment]) }
  scope :manual, -> { where(adjustment_type: %w[manual correction]) }
  scope :for_period, ->(period_id) { where(order_billing_period_id: period_id) }
  scope :recent, -> { order(applied_at: :desc) }

  # Methods
  def automatic?
    %w[initial period_payment].include?(adjustment_type)
  end

  def increase?
    amount > 0
  end

  def decrease?
    amount < 0
  end
end

Update Order Model

# app/models/order.rb
class Order < ApplicationRecord
  # Add validation for vendor billing config
  validates :vendor_billing_cadence_days,
            numericality: { only_integer: true, greater_than: 0 },
            allow_nil: true
  validates :vendor_billing_amount,
            numericality: { greater_than: 0 },
            allow_nil: true

  # Calculate expected vendor billing dates
  def vendor_billing_dates
    return [] unless vendor_billing_start_date && vendor_billing_cadence_days

    dates = []
    current_date = vendor_billing_start_date
    end_date = rental_end_date || Date.current + 1.year

    while current_date <= end_date
      dates << current_date
      current_date += vendor_billing_cadence_days.days
    end

    dates
  end
end

Service Changes

New RampLimitAdjuster Service

# app/services/ramp_limit_adjuster.rb
class RampLimitAdjuster
  class Error < StandardError; end

  def initialize(order)
    @order = order
    @card = order.ramp_virtual_card
    @ramp_client = RampApiClient.new
  end

  # Called when a customer payment succeeds
  def increase_limit_for_successful_payment(billing_period, payment_transaction)
    return nil unless payment_successful?(payment_transaction)
    return nil unless @order.vendor_auto_increase_limit?
    return nil if already_adjusted_for_period?(billing_period)

    vendor_amount = calculate_vendor_amount_for_period(billing_period)
    return nil if vendor_amount <= 0

    adjust_limit(
      amount: vendor_amount,
      adjustment_type: "period_payment",
      billing_period: billing_period,
      payment_transaction: payment_transaction,
      notes: "Auto-increase for period #{billing_period.period_number} " \
             "(#{billing_period.period_start} to #{billing_period.period_end})"
    )
  end

  # Manual adjustment by admin
  def manual_adjustment(amount:, notes:, created_by:)
    adjust_limit(
      amount: amount,
      adjustment_type: "manual",
      created_by: created_by,
      notes: notes
    )
  end

  private

  def payment_successful?(transaction)
    %w[auth_capture prior_auth_capture].include?(transaction.transaction_type) &&
    transaction.status == "approved"
  end

  def calculate_vendor_amount_for_period(billing_period)
    @order.vendor_billing_amount || @order.vendor_base_cost || 0
  end

  def already_adjusted_for_period?(billing_period)
    @card.ramp_card_limit_adjustments
         .where(order_billing_period: billing_period)
         .exists?
  end

  def adjust_limit(amount:, adjustment_type:, billing_period: nil,
                   payment_transaction: nil, created_by: nil, notes: nil)
    return nil unless @card&.ramp_limit_id.present?

    # Get current state from Ramp
    limit_details = @ramp_client.get_limit(limit_id: @card.ramp_limit_id)
    spent_cents = limit_details.dig("balance", "total", "amount") || 0
    spent_dollars = spent_cents / 100.0
    current_limit_cents = limit_details.dig("spending_restrictions", "limit", "amount") || 0
    current_limit_dollars = current_limit_cents / 100.0

    # Calculate new limit
    new_limit = current_limit_dollars + amount

    # Update in Ramp
    @ramp_client.update_limit(
      limit_id: @card.ramp_limit_id,
      amount: new_limit
    )

    # Record adjustment
    adjustment = RampCardLimitAdjustment.create!(
      ramp_virtual_card: @card,
      order_billing_period: billing_period,
      payment_transaction: payment_transaction,
      created_by: created_by,
      adjustment_type: adjustment_type,
      amount: amount,
      previous_limit: current_limit_dollars,
      new_limit: new_limit,
      notes: notes,
      applied_at: Time.current
    )

    # Update local card record
    @card.update!(
      spending_limit: new_limit,
      spent_amount: spent_dollars
    )

    Rails.logger.info "Increased card limit #{@card.id} by $#{amount}: " \
                      "$#{current_limit_dollars} → $#{new_limit}"

    adjustment
  rescue RampApiClient::Error => e
    raise Error, "Failed to adjust Ramp card limit: #{e.message}"
  end
end

Callback Integration

Update PaymentTransaction Model

# app/models/payment_transaction.rb
class PaymentTransaction < ApplicationRecord
  after_commit :increase_card_limit_on_success, on: [:create, :update]

  private

  def increase_card_limit_on_success
    # Only for successful payments
    return unless status == "approved"
    return unless %w[auth_capture prior_auth_capture].include?(transaction_type)

    # Find associated order and billing period
    return unless order_billing_period.present?
    return unless order_billing_period.order.present?

    order = order_billing_period.order

    # Only if order uses Ramp payment
    return unless order.use_ramp_payment?
    return unless order.ramp_virtual_card.present?

    # Increase the limit
    RampLimitAdjuster.new(order).increase_limit_for_successful_payment(
      order_billing_period,
      self
    )
  rescue => e
    Rails.logger.error "Failed to increase card limit after payment: #{e.message}"
    # Don't raise - payment already succeeded
  end
end

Admin UI

Vendor Billing Configuration Form

File: app/views/admin/orders/_vendor_billing_config.html.erb

Features:

• Vendor billing cadence input (days)
• Vendor billing amount
• Vendor billing start date
• Auto-increase toggle
• Explanation text

Card Limit Management Interface

File: app/views/admin/ramp_cards/show.html.erb

Features:

• Current limit, spent, available display
• Adjustment history table
• Manual adjustment modal
• Link adjustments to billing periods
• Show associated payment transactions

Manual Adjustment Controller

# app/controllers/admin/ramp_cards_controller.rb

# POST /admin/ramp_cards/:id/manual_adjustment
def manual_adjustment
  @card = RampVirtualCard.find(params[:id])

  amount = params[:amount].to_f
  notes = params[:notes]

  if notes.blank?
    flash[:alert] = "Please provide a reason for the adjustment"
    redirect_to admin_ramp_card_path(@card) and return
  end

  order = @card.order || @card.vendor.orders.where(use_ramp_payment: true).first
  adjuster = RampLimitAdjuster.new(order)

  adjustment = adjuster.manual_adjustment(
    amount: amount,
    notes: notes,
    created_by: current_user
  )

  flash[:notice] = "Card limit adjusted by $#{amount}. New limit: $#{adjustment.new_limit}"
  redirect_to admin_ramp_card_path(@card)
rescue RampLimitAdjuster::Error => e
  flash[:alert] = "Failed to adjust limit: #{e.message}"
  redirect_to admin_ramp_card_path(@card)
end

Vendor UI

Enhanced Order Show Page

File: app/views/vendors/orders/show.html.erb

New section: "Payment Card Status"

Features:

• Card balance overview (limit, charged, available)
• Billing history table showing:
  • Period number and dates
  • Expected amount
  • Card limit added (when customer paid)
  • Status (paid, billed, upcoming)
• Your charges table (synced from Ramp)
• Real-time balance calculations

Implementation Steps

Phase 1: Encrypted Card Storage (Week 1) ✅ COMPLETE

• [x] Run Migration 1 (encrypted card fields)
• [x] Update RampVirtualCard model with encryption
• [x] Generate encryption keys: bin/rails db:encryption:init
• [x] Add encryption keys to Rails credentials
• [x] Update CardViewService to handle manual cards
• [x] Create admin card entry form view
• [x] Add admin controller actions (enter/save)
• [x] Update routes
• [x] Update vendor card display view
• [x] Test one-time view flow
• [x] Deploy to production
• [x] BONUS: Add billing period tracking
• [x] BONUS: Add vendor invoice metadata fields
• [x] BONUS: Integrate Gemini AI for invoice extraction
• [x] BONUS: Refactor to atomic card creation (no placeholders)

Phase 2: Limit Adjustments (Week 2)

• [ ] Run Migration 2 (limit adjustments table)
• [ ] Run Migration 3 (vendor billing config)
• [ ] Create RampCardLimitAdjustment model
• [ ] Update Order model with billing config
• [ ] Create RampLimitAdjuster service
• [ ] Add PaymentTransaction callback
• [ ] Test automatic limit increase
• [ ] Create admin billing config form
• [ ] Create admin limit management UI
• [ ] Create vendor balance/history UI
• [ ] Deploy to production

Phase 3: Testing & Refinement (Week 3)

• [ ] Test with Order 218 (existing recurring order)
• [ ] Test with new recurring order
• [ ] Test manual adjustments
• [ ] Test with failed payments (no limit increase)
• [ ] Test misaligned billing cycles
• [ ] Verify one-time view security
• [ ] Load test card viewing
• [ ] Document vendor onboarding process

Phase 4: Migration & Monitoring (Ongoing)

• [ ] Create script to migrate existing orders
• [ ] Set up monitoring for failed adjustments
• [ ] Create admin dashboard for card health
• [ ] Set up alerts for limit issues
• [ ] Document troubleshooting procedures

Testing Plan

Unit Tests

RampVirtualCard Model

# test/models/ramp_virtual_card_test.rb
test "encrypts card number" do
  card = create(:ramp_virtual_card, encrypted_card_number: "1234567890123456")
  assert_not_equal "1234567890123456", card.read_attribute_before_type_cast(:encrypted_card_number)
  assert_equal "1234567890123456", card.encrypted_card_number
end

test "validates card number length" do
  card = build(:ramp_virtual_card, card_manually_entered: true, encrypted_card_number: "123")
  assert_not card.valid?
  assert_includes card.errors[:encrypted_card_number], "is the wrong length"
end

test "can_view_card_details? returns true when all conditions met" do
  card = create(:ramp_virtual_card,
    card_manually_entered: true,
    encrypted_card_number: "1234567890123456",
    encrypted_cvv: "123",
    encrypted_expiration: "12/25",
    card_view_token: "abc123",
    card_viewed_at: nil
  )
  assert card.can_view_card_details?
end

RampLimitAdjuster Service

# test/services/ramp_limit_adjuster_test.rb
test "increases limit when payment succeeds" do
  order = create(:order, vendor_billing_amount: 230.48)
  card = create(:ramp_virtual_card, order: order, spending_limit: 500)
  period = create(:order_billing_period, order: order)
  payment = create(:payment_transaction,
    transaction_type: "auth_capture",
    status: "approved",
    order_billing_period: period
  )

  adjuster = RampLimitAdjuster.new(order)
  adjustment = adjuster.increase_limit_for_successful_payment(period, payment)

  assert_not_nil adjustment
  assert_equal 230.48, adjustment.amount
  assert_equal 730.48, adjustment.new_limit
end

test "does not increase limit for failed payment" do
  order = create(:order)
  period = create(:order_billing_period, order: order)
  payment = create(:payment_transaction, status: "declined")

  adjuster = RampLimitAdjuster.new(order)
  adjustment = adjuster.increase_limit_for_successful_payment(period, payment)

  assert_nil adjustment
end

Integration Tests

Card Entry Flow

# test/integration/admin/card_entry_test.rb
test "admin can enter card details once" do
  sign_in_as_admin
  card = create(:ramp_virtual_card)

  get enter_card_details_admin_ramp_card_path(card)
  assert_response :success

  post save_card_details_admin_ramp_card_path(card), params: {
    card_number: "1234 5678 9012 3456",
    cvv: "123",
    expiration: "12/25"
  }

  card.reload
  assert card.has_card_details?
  assert card.card_manually_entered?
  assert_not_nil card.card_view_token
end

test "cannot enter card details twice" do
  sign_in_as_admin
  card = create(:ramp_virtual_card, :with_card_details)

  get enter_card_details_admin_ramp_card_path(card)
  assert_redirected_to admin_ramp_card_path(card)
end

Automatic Limit Increase

# test/integration/payment_limit_increase_test.rb
test "limit increases when customer payment succeeds" do
  order = create(:order, :with_ramp_card, vendor_billing_amount: 230.48)
  period = create(:order_billing_period, order: order)

  initial_limit = order.ramp_virtual_card.spending_limit

  # Simulate successful payment
  payment = create(:payment_transaction,
    order_billing_period: period,
    transaction_type: "auth_capture",
    status: "approved",
    amount: 280
  )

  order.ramp_virtual_card.reload
  assert_equal initial_limit + 230.48, order.ramp_virtual_card.spending_limit

  adjustment = order.ramp_virtual_card.ramp_card_limit_adjustments.last
  assert_equal "period_payment", adjustment.adjustment_type
  assert_equal period, adjustment.order_billing_period
  assert_equal payment, adjustment.payment_transaction
end

Manual Testing Checklist

• [ ] Create card in Ramp UI with limit $500
• [ ] Enter card details in admin form
• [ ] Verify encryption (check database raw value)
• [ ] Generate view token
• [ ] Login as vendor, view card once
• [ ] Attempt to view again (should be blocked)
• [ ] Process customer payment for billing period
• [ ] Verify limit increased automatically
• [ ] Check adjustment record created
• [ ] View vendor dashboard - see updated balance
• [ ] Make manual adjustment as admin
• [ ] Verify adjustment appears in history
• [ ] Test with failed payment (no increase)
• [ ] Test with misaligned billing dates

Security Considerations

Encrypted Data

• Use Rails ActiveRecord Encryption with 256-bit AES-GCM
• Store encryption keys in Rails credentials (NOT environment variables)
• Rotate encryption keys annually
• Never log decrypted card numbers

One-Time View

• View tokens expire after 1 hour
• Tokens stored in Solid Cache (ephemeral)
• IP address and user agent logged for audit
• View attempt failures logged
• Cannot regenerate token once viewed

Access Control

• Only admins can enter card details
• Only card's vendor can view card
• Vendor impersonation requires admin session
• All card views logged in CardViewLog

PCI Compliance

• Current implementation: NOT PCI compliant (manual entry)
• Acceptable because: Not processing payments, just storing for vendor use
• Future state: Migrate to Vault API when PCI approved
• Do not store CVV long-term (consider deleting after first view)

Migration to PCI/Vault API

When we receive PCI approval from Ramp:

Step 1: Update RampCardService

def create_card_for_order(order)
  # Use Vault API instead of Limits API
  response = @ramp_client.create_virtual_card_with_vault(
    user_id: service_user_id,
    display_name: generate_card_name(order),
    spending_limit: calculate_spending_limit(order)
  )

  # Store card details (now from Vault API)
  RampVirtualCard.create!(
    vendor: order.vendor,
    order: order,
    ramp_limit_id: response["spend_limit_id"],
    ramp_card_id: response["card"]["id"],
    card_last_four: response["card"]["last_four"],
    encrypted_card_number: response["card"]["number"],  # Now from API
    encrypted_cvv: response["card"]["cvv"],
    encrypted_expiration: response["card"]["expiration"],
    card_type: "virtual_card",  # Not "manual_card"
    card_manually_entered: false,  # Automated!
    # ... rest of fields
  )
end

Step 2: Update CardViewService

• Remove manual card handling
• Use fetch_card_from_vault for all cards
• Keep one-time view mechanism

Step 3: Backfill Existing Cards

• Manually created cards continue working
• New cards use Vault API
• Both types use same view flow

Monitoring & Alerts

Key Metrics to Track

• Number of cards with insufficient balance
• Failed limit adjustments
• Payment-to-limit-increase lag time
• Cards nearing limit (>90% utilization)
• View token expiration rate

Alerts

• Critical: Limit adjustment failed for successful payment
• Warning: Card balance below $100
• Info: New card created
• Info: Manual adjustment made

Logs

Rails.logger.info "RAMP_CARD: Limit increased for card #{card.id}, " \
                  "period #{period.id}, payment #{payment.id}, " \
                  "amount $#{amount}, new_limit $#{new_limit}"

Rails.logger.error "RAMP_CARD_ERROR: Failed to increase limit for card #{card.id}: #{error}"

Future Enhancements

Automatic Card Creation

• When order is marked "use_ramp_payment"
• Automatically create card in Ramp
• Enter initial limit based on vendor_base_cost
• Generate view token
• Email vendor with card link

Vendor Self-Service

• Vendor can request limit increase
• Admin approves/denies
• Automatic adjustment on approval

Reconciliation Dashboard

• Show vendor charges vs. expected billing
• Flag discrepancies
• Suggest adjustments

Smart Limit Prediction

• Machine learning to predict vendor overages
• Preemptively increase limits
• Reduce declined transactions

Questions & Decisions

Resolved

✅ Q: Should we store CVV permanently? A: Yes for now (recurring use). Consider deleting after first vendor view for extra security.

✅ Q: What if vendor billing doesn't match our billing? A: Increase limit based on OUR customer payments, vendor charges when ready.

✅ Q: How to handle older orders with no billing periods? A: Admin manually configures vendor billing cadence, we create virtual periods.

Open

❓ Q: Should we alert vendor when limit increases? A: TBD - probably yes via email

❓ Q: What if customer payment is refunded after limit increased? A: TBD - manual correction or automatic decrease?

❓ Q: Should we sync vendor charges from Ramp automatically? A: Yes - use webhook + polling job

Resources

• Ramp Virtual Cards API Docs
• Ramp Limits API Docs
• Rails ActiveRecord Encryption Guide
• PCI DSS Requirements

Change Log