├── .github
    ├── CODEOWNERS
    └── ISSUE_TEMPLATE
    │   ├── bug_report.md
    │   ├── config.yml
    │   ├── feature_request.md
    │   └── general_api_question.md
├── README.md
└── guides
    └── giving_donations_integration.md


/.github/CODEOWNERS:
--------------------------------------------------------------------------------
1 | * @planningcenter/api
2 | 


--------------------------------------------------------------------------------
/.github/ISSUE_TEMPLATE/bug_report.md:
--------------------------------------------------------------------------------
 1 | ---
 2 | name: Bug report
 3 | about: Create a report to help us improve
 4 | 
 5 | ---
 6 | 
 7 | **Affected Product**
 8 | Which product does this bug affect?
 9 | <!-- Pick one: Check-Ins, Giving, Groups, People, Services, Resources, Webhooks -->
10 | 
11 | <!-- PLEASE DO NOT INCLUDE YOUR CLIENT ID, APPLICATION ID, OR SECRET IN THIS ISSUE. WE WILL REVOKE YOUR TOKEN IF YOU DO. -->
12 | 
13 | **Describe the bug**
14 | <!--  Provide a clear and concise description of the bug. If it is something that was previously working and suddenly broke your application, please let us know. -->
15 | 
16 | 
17 | **To Reproduce**
18 | <!-- Steps to reproduce the behavior:
19 | 1. Create a '....'
20 | 2. Send this cURL request: '...'
21 | 3. Look at this page '....'
22 | -->
23 | 
24 | **Expected behavior**
25 | <!-- A clear and concise description of what you expected to happen. -->
26 | 
27 | **Screenshots**
28 | <!-- If applicable, add screenshots to help explain your problem. -->
29 | 
30 | **Additional Context:**
31 | <!-- (please complete the following information) -->
32 | - Endpoint: [e.g. API endpoint I'm using]
33 | - Language: [e.g. Programming language I'm using]
34 | - Authentication: [e.g. OAuth 2, Personal Access Token, Browser Session (Cookie)]
35 | 
36 | **Additional context**
37 | <!-- Add any other context about the problem here. -->
38 | 
39 | ## I have..
40 | 
41 | - [ ] Reviewed the documentation found at https://developer.planning.center/docs
42 | - [ ] Searched for previous issues reporting this bug
43 | - [ ] Removed all private information from this issue (credentials, tokens, emails, phone numbers, etc.)
44 | - [x] Reviewed my issue for completeness


--------------------------------------------------------------------------------
/.github/ISSUE_TEMPLATE/config.yml:
--------------------------------------------------------------------------------
1 | blank_issues_enabled: false
2 | contact_links:
3 |   - name: Report a Security Vulnerability
4 |     url: https://www.planningcenter.com/security
5 |     about: Please do not post security vulnerabilities here. To securely report a vulnerability, please follow the steps on our security page. Thank you!
6 |   - name: Planning Center Support
7 |     url: https://support.planningcenter.com
8 |     about: Not an API specific question? Get general Planning Center help from our support team.
9 | 


--------------------------------------------------------------------------------
/.github/ISSUE_TEMPLATE/feature_request.md:
--------------------------------------------------------------------------------
 1 | ---
 2 | name: Feature request
 3 | about: Suggest an idea for our API
 4 | 
 5 | ---
 6 | 
 7 | **Related Product**
 8 | Which product is this feature related to?
 9 | <!-- Pick one: Check-Ins, Giving, Groups, People, Services, Resources, Webhooks -->
10 | 
11 | <!-- PLEASE DO NOT INCLUDE YOUR CLIENT ID, APPLICATION ID, OR SECRET IN THIS ISSUE. WE WILL REVOKE YOUR TOKEN IF YOU DO. -->
12 | 
13 | **Is your feature request related to a problem? Please describe.**
14 | <!-- A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] -->
15 | 
16 | **Describe the solution you'd like**
17 | <!-- A clear and concise description of what you want to happen. -->
18 | 
19 | **Describe alternatives you've considered**
20 | <!-- A clear and concise description of any alternative solutions or features you've considered. -->
21 | 
22 | **Additional context**
23 | <!-- Add any other context or screenshots about the feature request here. -->
24 | 
25 | ## I have..
26 | 
27 | - [ ] Reviewed the documentation found at https://developer.planning.center/docs
28 | - [ ] Searched for previous issues asking for this feature request
29 | - [ ] Removed all private information from this issue (credentials, tokens, emails, phone numbers, etc.)
30 | - [x] Reviewed my issue for completeness


--------------------------------------------------------------------------------
/.github/ISSUE_TEMPLATE/general_api_question.md:
--------------------------------------------------------------------------------
 1 | ---
 2 | name: General API Question
 3 | about: Ask a question about using our API
 4 | 
 5 | ---
 6 | 
 7 | **Related Product**
 8 | Which product is this question related to?
 9 | <!-- Pick one: Check-Ins, Giving, Groups, People, Services, Resources, Webhooks -->
10 | 
11 | <!-- PLEASE DO NOT INCLUDE YOUR CLIENT ID, APPLICATION ID, OR SECRET IN THIS ISSUE. WE WILL REVOKE YOUR TOKEN IF YOU DO. -->
12 | 
13 | **Describe the question**
14 | <!-- Replace this line with your question. Including information like the API endpoint you're trying to access will greatly improve our ability to give you a helpful answer. -->
15 | 
16 | **What have you tried that worked?**
17 | 
18 | 
19 | **What have you tried that didn't work?**
20 | 
21 | 
22 | **Additional context**
23 | <!-- Add any other context or screenshots about the feature request here. -->
24 | 
25 | 
26 | ## I have..
27 | 
28 | - [ ] Reviewed the documentation found at https://developer.planning.center/docs
29 | - [ ] Searched for previous issues answering this question
30 | - [ ] Removed all private information from this issue (credentials, tokens, emails, phone numbers, etc.)
31 | - [x] Reviewed my issue for completeness
32 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # PCO API Developer Support
 2 | 
 3 | Planning Center has an API that allows you to access most of the information in your account, across multiple apps. Documentation on the available API endpoints is [available here](https://developer.planning.center/docs/).
 4 | 
 5 | ## Authentication
 6 | 
 7 | ### Single User Authentication
 8 | 
 9 | If your app only needs access to your own data, this is the easiest method for authentication. This is typically how apps that sync data to your ChMS work.
10 | 
11 | You can get 'Personal Access Tokens' [here](https://api.planningcenteronline.com/oauth/applications).  You can then use HTTP basic auth to access the API.
12 | 
13 | ```bash
14 | curl -u application_id:secret https://api.planningcenteronline.com/services/v2/
15 | ```
16 | 
17 | ### Multi User Authentication
18 | 
19 | If you are building an application that will need to log in on behalf of other PCO users, you will use [OAuth 2](http://oauth.net/2/) to authenticate users in your application.
20 | 
21 | You can register your application and get your Client ID and Secret [here](https://api.planningcenteronline.com/oauth/applications).
22 | 
23 | We have a [Ruby example for authenticating with OAuth 2](https://github.com/planningcenter/pco_api_oauth_example).
24 | 
25 | ## Working with the API
26 | 
27 | All data is returned according to the [JSONAPI 1.0 spec](http://jsonapi.org).
28 | 
29 | If you're creating a Ruby application we have the [pco_api gem](https://github.com/planningcenter/pco_api_ruby) to get you started.
30 | 
31 | ## Support
32 | 
33 | If you have any questions or feature requests, post an [issue](https://github.com/ministrycentered/developers/issues). We'll take a look and get back to you asap.
34 | 


--------------------------------------------------------------------------------
/guides/giving_donations_integration.md:
--------------------------------------------------------------------------------
  1 | # Building A Giving Integration
  2 | 
  3 | So you're looking to build a Giving integration? Great! This guide will give you all the info you need to get up and running. To start with, let's go over the two ways your integration can interact with Giving: the Giving API and Webhooks.
  4 | 
  5 | ## Giving API
  6 | 
  7 | Our API (Application Programming Interface) gives you read and write access to all the essential models (`Donation`s, `Donor`s, `Fund`s, etc.) used in Giving. It allows you to automate tasks that would typically be performed via the web UI or export data from Giving into your own application. Be sure to check out Planning Center's full [API Documentation](https://developer.planning.center/docs/#/introduction).
  8 | 
  9 | ## Webhooks
 10 | 
 11 | In addition to performing actions via the API, your integration may want to keep track of changes made to the Giving database. As of April 2021, Giving offers webhook events so that you can be immediately notified anytime a record is created, updated, or destroyed, and take some action in response. We'll go over webhooks in [more detail down below](#all-about-webhooks), and we also recommend taking a look at Planning Center's full [Webhooks Documentation](https://developer.planning.center/docs/#/overview/webhooks).
 12 | 
 13 | ## Which should I use?
 14 | 
 15 | These tools are meant to be used in tandem by your integration. For example, you may want to offer a complete list of donations for a given Church/Organization. To do this, you would start with a full export of `Donation`s using the API, and then subscribe to `Donation` webhook events to keep in sync with any new donations made. In short, the API should be used to **perform actions** or **view historical data**. Webhooks should be used to **keep your data in sync** with Giving.
 16 | 
 17 | ## Responsible API Usage
 18 | 
 19 | We offer a flexible API designed to empower you to build amazing tools for Giving, and in return, we expect this power to not be abused, specifically when working with very large datasets. You should be crafting your queries in such a way that the number of results returned by the API do not get into the range of tens of thousands. Paginating through this many results can be very resource intensive and potentially even degrade performance for other users.
 20 | 
 21 | The easiest way to avoid this is by applying a date range filter to your queries, when applicable. You can read more about this in our general API documentation [here](https://developer.planning.center/docs/#/overview/dates-times).
 22 | 
 23 | # Getting to know Giving data models
 24 | 
 25 | Because of the way that Planning Center products are structured in relation to each other and how Giving itself is built, there are a few concepts that are particularly helpful to know when building any sort of API integration that creates Donation records in Giving, especially on an ongoing basis.
 26 | 
 27 | ## Donation Essentials
 28 | 
 29 | ### `Donation`
 30 | 
 31 | Most of the information you'll need about `Donation`s can be found in the [API docs](https://developer.planning.center/docs/#/apps/giving/2018-08-01/vertices/donation), and the general concept should be pretty clear.  This is the object that corresponds to a gift given to an organization at a particular point in time.  It ties the money given to the person who gave the money, how the money should be designated to one or more funds, and what means they used to give the gift (e.g. system originating the transaction, method of funding the transaction, etc.).
 32 | 
 33 | ### `Fund`
 34 | 
 35 | Each organization will have a set of one or more `Fund`s in their account that serve as buckets that donor's can effectively put money into and that the churches can use to organize their incoming gifts, set budgets, etc. All organizations will at least have a default `Fund`, usually named something like "General" or "Tithe".
 36 | 
 37 | If you need that default fund for your app, you can query for it based on the `default` param:
 38 | 
 39 | ```
 40 | GET https://api.planningcenteronline.com/giving/v2/funds?where[default]=true
 41 | ```
 42 | 
 43 | ### `Designation`
 44 | 
 45 | Each `Donation` can have one or more `Designations`.  The main purpose of a designation is to say how much of a `Donation`'s money is going to a given `Fund`.  If all of a `Donation` is going to a single `Fund`, then you'll only need the one designation, but because a single `Donation` can be split between multiple funds, you'll always need to include details about a `Donation`'s `Designation`s when creating the `Donation` (more details in the [docs](https://developer.planning.center/docs/#/apps/giving/2018-08-01/vertices/donation#permissions)).
 46 | 
 47 | ### `PaymentSource`
 48 | 
 49 | Every `Donation` must be associated with a `PaymentSource`. This tells Giving (and the Giving admins) what "system" originally accepted the `Donation`. You'll want to create a `PaymentSource` for your system and associate every `Donation` record with this `PaymentSource`. This Giving admins understand which donations in their Giving database were added by your system, via the API.
 50 | 
 51 | ### `Batch`
 52 | 
 53 | A `Batch` is a grouping of `Donation`s. You're free to determine how to group the `Donation` records you're creating, as are each organization's administrators when creating `Batch`es in the web UI. This is the same mechanism that those admins will use to input check and cash donations manually.
 54 | 
 55 | When creating `Donation`'s via the API, you're required to put them in a `Batch`.
 56 | 
 57 | The main thing to know with `Batch`es is the idea of a "committed" `Batch`. You can start adding `Donation`s to a `Batch` right after you've created it. Donations in an "uncommitted" `Batch` are considered to be "in progress." They won't show up in a donor's donation history online, they won't appear in any donor statements issued by the Giving admin, and changes to these donations are not flagged in the system log. Think of it as a staging area for donations.
 58 | 
 59 | When a `Batch` is committed, all of the `Donation`'s within it are also marked as "committed". At that point, they're visible to donors in their online history and any further edits made to those `Donation`s are logged and visible to Giving admins.
 60 | 
 61 | With all of that in mind, you can use `Batch`es in one of two ways:
 62 | 
 63 | 1. Create an uncommitted `Batch`, add `Donation`s to it, then commit the `Batch`.
 64 | 2. Create a `Batch` with a least one donation, commit it, then add more `Donation`s to it.
 65 | 
 66 | In both cases, the end result is the same. The main difference is that option #2 does not provide you/other admins the opportunity to fix any mistakes before changes are logged and `Donation`s are made visible to donors. Any `Donation`s added to a committed `Batch` will automatically be committed as well. Note, batches can't be committed until they have at least one donation.
 67 | 
 68 | Whichever route you decide to take, it's helpful to make use of the `Batch`'s `description` to help differentiate these groupings from each other and from other `Batch`es that the Giving admins might be creating on their own.
 69 | 
 70 | ## Donors
 71 | 
 72 | The way that donors are associated to `Donation`s is fairly straightforward, but the process of linking and keeping track of donors in your system with those in an organization's Planning Center account, and understanding the implications of why our system is setup the way it is, will likely be one of the more challenging part of your integration. But getting this right will go a long way to making your integration work well for your customers.
 73 | 
 74 | ### `Person`
 75 | 
 76 | The `Person` object in Planning Center is so crucial that we have an entire app dedicated to managing, keeping track of, editing, and creating these records and metadata around them. Because of that, you'll need to get familiar with a few key endpoints in the [Planning Center People API](https://developer.planning.center/docs/#/apps/people) and the concepts about how we view and handle these records.
 77 | 
 78 | #### Searching
 79 | 
 80 | When you have a donation in your system (whether completed or in-process) that you want to import into Planning Center Giving, you'll likely have some understanding of who gave the gift.  Maybe you have a number of details about them, such as their name, email address, phone number, or even mailing address.  Or you may only have more limited information like the account holder's name and bank information from a scanned check. In any instance, you'll want to start by searching for a person with those same details in Planning Center People.
 81 | 
 82 | You can search by first and last name separately:
 83 | ```
 84 | GET https://api.planningcenteronline.com/people/v2/people?where[first_name]=Gene&where[last_name]=Parm
 85 | ```
 86 | 
 87 | As a full name:
 88 | ```
 89 | GET https://api.planningcenteronline.com/people/v2/people?where[search_name]=Gene%20Parm
 90 | ```
 91 | 
 92 | By email:
 93 | ```
 94 | GET https://api.planningcenteronline.com/people/v2/people?include=emails&where[search_name_or_email]=gene@example.com
 95 | ```
 96 | 
 97 | 
 98 | Or you can simply look them up by their `id`:
 99 | ```
100 | GET https://api.planningcenteronline.com/people/v2/people/52665741
101 | ```
102 | 
103 | NOTE: In the case where you already have the `Person.id` (more on getting and saving that next), you could simply use that when creating the `Donation` record, but because of a number of things that can happen to those `Person` records that are outside of your control, we highly recommend always looking up the `Person` first as a natural place to respond to the situations we'll detail below.
104 | 
105 | #### Picking a `Person`
106 | 
107 | We have a number of large organizations that use Planning Center, so there's a good chance that you'll come across a scenario where searching for a person based on first and last name will return multiple `Person` records. In this case, it's important that, unless you have a sophisticated way of further narrowing down and choosing among a list of 5 different "Peter Jones" records with a high degree of confidence, you give your user the ability to manually choose from the returned matches. We've found (in our own products and in 3rd party integrations) that nearly any "simple" approach that lets a program make these decisions can easily result in problematic situations like one donor seeing another donor's contributions.
108 | 
109 | Within this process, it's also possible that a donor from your system won't exist yet in Planning Center. In that case, you'll need to create a new `Person` record, which can be done [via the API](https://developer.planning.center/docs/#/apps/people/2019-01-14/vertices/person#permissions), as well.
110 | 
111 | Because these `Person` records appear in all of our Planning Center products that these organizations use every day, it's also important to avoid "creating a new person" as the default when searching returns multiple matches. While that would be a safe option in some sense, the proliferation of new (and likely duplicate) profiles almost always creates a significant amount of extra work for each organization's administrator(s). While we give them means for sorting out those duplicates, it's much better to avoid the added burden altogether.
112 | 
113 | #### Tracking in your app
114 | 
115 | Once you've matched a donor in your system with a `Person` in Planning Center, you'll want to save the `id` of that `Person` in your own app. If you have your own database of people within your app, that could be as simple as adding a `planning_center_id` field for storing that value.  Or you may simply be saving it as a key-value store that links a line of MICR data with the `id` from Planning Center. Either way, you'll want to save that `id` to make future searches much quicker and less error-prone.
116 | 
117 | #### Person merges
118 | 
119 | The most common issue that you'll likely run into with `Person` records is that they may appear to have disappeared. One day, you'll search for a `Person`, find them, and save their `id`. And the next day, you'll try to search for them by that `id` and you'll get back a 404 in response. This could happen for one of two reasons:
120 | 
121 | 1. The `Person` was deleted. If they have `Donation`s associated with them, this isn't very likely, but it is possible. In this case, you'll want to delete this `id` from your system and step back to searching for or creating the `Person` from the details you have in your system.
122 | 2. The `Person` was merged into another `Person`. This is by far the more likely case. Our People app gives administrators a means for detecting duplicate records and merging one into the other. When this happens, we keep track of the merges that have happened and give you a way to follow that trail and update your app with the new information.
123 | 
124 | At the point when you get a 404, you won't be sure whether you've hit #1 or #2. The first thing to do is to check whether this `Person` (in this case, with `id` 14994497) was merged away:
125 | 
126 | ```
127 | GET https://api.planningcenteronline.com/people/v2/person_mergers?where[person_to_remove_id]=14994497
128 | ```
129 | 
130 | If that query comes back empty, your `Person` was deleted (#1).
131 | 
132 | Example empty response:
133 | 
134 | ```json
135 | {
136 |   "links": {
137 |     "self": "https://api.planningcenteronline.com/people/v2/person_mergers?where[person_to_remove_id]=14994497"
138 |   },
139 |   "data": [],
140 |   "included": [],
141 |   "meta": {
142 |     "total_count": 0,
143 |     "count": 0,
144 |     "can_order_by": [
145 |       "created_at"
146 |     ],
147 |     "can_query_by": [
148 |       "created_at",
149 |       "person_to_keep_id",
150 |       "person_to_remove_id"
151 |     ],
152 |     "parent": {
153 |       "id": "127",
154 |       "type": "Organization"
155 |     }
156 |   }
157 | }
158 | ```
159 | 
160 | If it does return a record, then they were merged, and we can see which record they were merged into.
161 | 
162 | Example response when `Person` has been merged:
163 | 
164 | ```json
165 | {
166 |   "links": {
167 |     "self": "https://api.planningcenteronline.com/people/v2/person_mergers?where[person_to_remove_id]=14994497"
168 |   },
169 |   "data": [
170 |     {
171 |       "type": "PersonMerger",
172 |       "id": "3518",
173 |       "attributes": {
174 |         "created_at": "2016-06-15T16:07:33Z",
175 |         "person_to_keep_id": 7504309,
176 |         "person_to_remove_id": 14994497
177 |       },
178 |       "relationships": {
179 |         "person_to_keep": {
180 |           "data": {
181 |             "type": "Person",
182 |             "id": "7504309"
183 |           }
184 |         },
185 |         "person_to_remove": {
186 |           "data": {
187 |             "type": "Person",
188 |             "id": "14994497"
189 |           }
190 |         }
191 |       },
192 |       "links": {
193 |         "self": "https://api.planningcenteronline.com/people/v2/person_mergers/3518"
194 |       }
195 |     }
196 |   ],
197 |   "included": [],
198 |   "meta": {
199 |     "total_count": 1,
200 |     "count": 1,
201 |     "can_order_by": [
202 |       "created_at"
203 |     ],
204 |     "can_query_by": [
205 |       "created_at",
206 |       "person_to_keep_id",
207 |       "person_to_remove_id"
208 |     ],
209 |     "parent": {
210 |       "id": "127",
211 |       "type": "Organization"
212 |     }
213 |   }
214 | }
215 | ```
216 | 
217 | In this case, `Person` 14994497 (`person_to_remove`) was merged into 7504309 (`person_to_keep`). That's great! You can update any references in your system from 14994497 to 7504309 and continue making API calls as you otherwise would. In fact, in the process of creating this `Donation` that was supposed to be associated with 14994497 you can safely associate it with 7504309 now. The result from the `PersonMerge`s endpoint says that an admin in this organization determined that 14994497 and 7504309 were the same person, so your app can simply follow suit.
218 | 
219 | #### Anonymous gifts
220 | 
221 | If the gifts as received in your system don't have any donor data at all, it's also possible to omit the `Person` relationship from the `Donation` record, which will have the effect in Planning Center Giving of showing that `Donation`'s donor as "Anonymous Donor".
222 | 
223 | # All about Webhooks
224 | 
225 | As mentioned above, webhooks are the ideal way of keeping your data in sync with Giving. Instead of having to repeatedly reach out to Giving to check for any updates, webhooks notify you of changes as soon as they happen. The typical lifecycle of a webhook might look something like this:
226 | 
227 | - Someone makes a new donation
228 | - Giving dispatches a webhook event containing a data payload for this donation
229 | - Your integration's app/server receives the webhook (at a URL you've specified), and takes some appropriate action (perhaps storing this new donation in your database)
230 | 
231 | ## Setting up Webhooks
232 | 
233 | To start using webhooks, you'll want to head over to the [Webhooks Dashboard](https://api.planningcenteronline.com/webhooks#/). From there you can add a new Subscription URL and select which events to subscribe to. That's it! You can have one Subscription URL that handles many events, or use separate Subscription URLs for each event, it's entirely up to you.
234 | 
235 | **Note:** Since webhooks are created under your specific user account, they only return data you have permission to see within Planning Center. For Giving, that means that only users with the role of **Admin** and **Bookkeeper** are able to fully utilize all webhooks.
236 | 
237 | ## Best Practices
238 | 
239 | When building out your integration's webhook handlers, there are a few things you'll want to keep in mind.
240 | 
241 | ### Duplicate Events
242 | 
243 | It's possible you'll receive the same webhook event more than once. This is especially true of `updated` events, but can happen for `created` and `destroyed` as well. We recommend making your event processing [idempotent](https://en.wikipedia.org/wiki/Idempotence) to ensure that you can handle duplicate events. For example, you could log the events you've processed and skip the processing of an already-logged event.
244 | 
245 | ### Event Order
246 | 
247 | We can't guarantee that you'll receive webhook events in the order they occurred, and you'll want to account for this in your event processing. As an example, it's possible you could receive a `donation.created` event before the corresponding `profile.created` event for a first time donor. In these cases, we recommend using our API to fetch any missing data you need (ie. making a request to the `/people/:id` endpoint to get details on the person who just donated).
248 | 
249 | ### First Time Donor Webhooks
250 | 
251 | Many integrations will want to take some action when someone gives their first donation, whether it's sending a thank you email or just recording the date a person became a donor.
252 | 
253 | For these purposes, the `profile.created` webhook might feel like the obvious choice. However, it’s important to note that in Planning Center Giving, donor profiles can be created for all kinds of reasons – not just when someone donates. In fact, it’s very possible for people to have a donor profile with a completely empty donation history. This webhook just tells you that a profile was created.
254 | 
255 | To find out when a person actually gave their first donation, you’ll want to use the `profile.first_donated` webhook. This webhook is sent out any time a donation is processed for a person with no existing donations. It’s worth noting that since Giving admins can reassign or delete donations, it’s possible you will receive this webhook more than once for the same person if their underlying donation history changes.
256 | 
257 | # Conclusion
258 | 
259 | We hope you found this guide helpful, and that it empowers you to make some amazing Giving integrations! If you run in to any trouble, feel free to open a [new issue](https://github.com/planningcenter/developers/issues/new/choose) in this repo.
260 | 


--------------------------------------------------------------------------------