Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

ls129

Archived
  • Posts

    21
  • Joined

  • Last visited

Profile Information

ls129's Achievements

  1. Do you guys know if this means our online store is not able to accept any UK Mastercard or only UK "maestro" cards? Cardinal have sent us this contribution code only on 2nd week of January but also claimed that NO merchant was able to successfully install it on a live modded shop. I'm wondering how many osc UK store owners know they are loosing money (not many judging by the number of views on this thread).
  2. In the meantime i managed to get the paypal API working again so i'm not using this mod any more. but if i recall, this mod was keeping the card details in the database. FYI: I just received a notification from another merchant account bank that VISA is forbidding to keep any credit card details unencrypted anywhere on a server. 5000EUR penalty. https://www.pcisecuritystandards.org/securi...ss_download.htm The Payment Card Industry Security Standards Council (PCI SSC), a committee concerned with data protection in the card business, already prohibited the storage of confidential authentification data in its obligatory data security standard, the Payment Card Industry Data Security Standard (PCI DSS), which was released in September 2006. Visa Europe has now decided that all merchants have to implement this prohibition by 31 December 2008. This means that confidential authentification data may not be stored any more after this date – be it in an encrypted or in a non-encrypted form. Any merchant who stores confidential authentification data after this date will be fined EUR 5,000. Any such fines will be passed on to the relevant merchants or partners during the clearing procedure.
  3. There doesn't seem to be Risk-Controls or Fraud-Management-Filters in my account! see this link for paypal's dubious for-a-fee risk control merchant tools: http://www.paypaldeveloper.com/pdn/board/m...;thread.id=7277 Found a small error in the module.. the following string doesnt exist in the english strings file: MODULE_PAYMENT_PAYPAL_PAYFLOW_PRO_TEXT_ERROR_INCORRECT_BILLING_STREET Also, there should be a way to choose between TRXTYPE = S or A due to the over permissive payflow gateway (without the risk-control policy option etc.). this way the card can be authorized pending manual approval.
  4. Hi Brian, I would really love to have this thing working because i'm at my wits end with the 10001 errors i've started getting recently with the paypal API 2.0 interface (i posted about this in your paypal pro uk contribution thread) I looked at your code a bit and had some questions/comments: 1) is is possible to add the INVNUM in the request? it would help a lot in tax reports to have the oscommerce transaction id as the invoice number recorded with paypal history logs. 2) what is this mystery variable $fraud ? where is it set ? 3) why do you copy the credit-card number and details in $order ? where does this information end up and is that secure ? 4) can all the returned codes be stored in the transaction history so that I can later cancel the transaction if it was "approved" although none of the fields match ? thanks for your great contributions!
  5. USER[9]=secret1&VENDOR[9]=secret2&PARTNER[8]=PayPalUK&PWD[9]=secret3&TENDER[1]=C&TRXTYPE[1]=S&ACCT[16]=5473xxxxxxxxxx53&CVV2[3]=999&EXPDATE[4]=0111&FREIGHTAMT[4]=2.27&TAXAMT[4]=0.52&AMT[4]=3.49&CURRENCY[3]=GBP&FIRSTNAME[2]=Jo&LASTNAME[4]=Blow&STREET[12]=12 my street&CITY[6]=Slough&STATE[0]=&ZIP[6]=w3 e89&COUNTRY[3]=GBR&SHIPTOFIRSTNAME[2]=Jo&SHIPTOLASTNAME[4]=Blow&SHIPTOSTREET[12]=12 my street&SHIPTOCITY[6]=Slough&SHIPTOSTATE[0]=&SHIPTOZIP[6]=w3 e89&EMAIL[20][email protected]&CUSTIP[13]=82.155.211.76&COMMENT1[0]=&INVNUM[0]=&ORDERDESC[0]=&VERBOSITY[6]=MEDIUM HTTP/1.1 200 OK Connection: close Server: VPS-3.033.00 Date: Fri, 17 Oct 2008 12:12:54 GMT Content-type: text/namevalue Content-length: 171 RESULT=0&PNREF=EUJP2ED45F59&RESPMSG=Approved&AUTHCODE=111111&AVSADDR=N&AVSZIP=N&CVV2MATCH=Y&PPREF=2L3394479U647950P&CORRELATIONID=eb817159e5631&PROCAVS=N&PROCCVV2=M&IAVS=N the transaction went through and is listed on paypal history. the postcode, country, and name are all wrong (Jo Blow from 12 my street in Slough UK). I would expect this transaction to fail!
  6. I installed and made 2 live transactions. (I have a UK paypal merchant account) Transaction1: provided a real mastercard number with right CVV2 but wrong name, address, post code, country. Result1: Error message saying the postcode (zip) was bad. Hoever, the money was collected from the card and is listed in paypal history. Transaction2: provided a real mastercard number with right CVV2 and right zip postcode but wrong name, address and country Result2: Got to the "success" page but the transaction is not listed in the paypal history 3 bad things about this: 1) In case of Transaction1 the user would give his card again resulting in 2 payments 2) a criminal who stole the card number and CVV can basically type in any arbitrary name, zip, country and paypal would authorize the card?! 3) someone who completed a transaction would get a false positive result that all went well when actually paypal will not have taken money from his card
  7. I manage to isolate a small example of a TransactionSearchRequest that fails. Any ideas will be appreciated. the following was used to invoke the SOAP request: curl -d @reqfile.xml https://api.paypal.com/2.0/ --cert-type PEM --cert paypal_live_cert.pem > ansfile.xml Here is the SOAP request (reqfile.xml): ------------------------ <?xml version="1.0" encoding="utf-8"?> <SOAP-ENV:Envelope xmlns:xsi="http://www.w3.org/1999/XMLSchema-instance" xmlns:SOAP-ENC="http://schemas.xmlsoap.org/soap/encoding/" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/1999/XMLSchema" SOAP-ENV:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/"> <SOAP-ENV:Header> <RequesterCredentials xmlns="urn:ebay:api:PayPalAPI"> <Credentials xmlns="urn:ebay:apis:eBLBaseComponents"> <Username>ebay_api1.robosavvy.com</Username> <Password>XXXXXXXXXXXXXXXX</Password> <Subject/> </Credentials> </RequesterCredentials> </SOAP-ENV:Header> <SOAP-ENV:Body> <TransactionSearchReq xmlns="urn:ebay:api:PayPalAPI"> <TransactionSearchRequest> <Version xmlns="urn:ebay:apis:eBLBaseComponents">2.0</Version> <StartDate>2008-10-15T00:00:00Z</StartDate> <EndDate>2008-10-16T00:00:00Z</EndDate> <Payer>[email protected]</Payer> <Amount currencyID="USD">1.00</Amount> </TransactionSearchRequest> </TransactionSearchReq> </SOAP-ENV:Body> </SOAP-ENV:Envelope> Here is the response (ansfile.xml): <?xml version="1.0" encoding="UTF-8"?> <SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:SOAP-ENC="http://schemas.xmlsoap.org/soap/encoding/" xmlns:xsi="http://www.w3.org/1999/XMLSchema-instance" xmlns:xsd="http://www.w3.org/1999/XMLSchema" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:cc="urn:ebay:apis:CoreComponentTypes" xmlns:wsu="http://schemas.xmlsoap.org/ws/2002/07/utility" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/12/secext" xmlns:ebl="urn:ebay:apis:eBLBaseComponents" xmlns:ns="urn:ebay:api:PayPalAPI"> <SOAP-ENV:Header> <Security xmlns="http://schemas.xmlsoap.org/ws/2002/12/secext" xsi:type="wsse:SecurityType"></Security> <RequesterCredentials xmlns="urn:ebay:api:PayPalAPI" xsi:type="ebl:CustomSecurityHeaderType"> <Credentials xmlns="urn:ebay:apis:eBLBaseComponents" xsi:type="ebl:UserIdPasswordType"> <Username xsi:type="xs:string"></Username> <Password xsi:type="xs:string"></Password> <Subject xsi:type="xs:string"></Subject> </Credentials> </RequesterCredentials> </SOAP-ENV:Header> <SOAP-ENV:Body id="_0"> <TransactionSearchResponse xmlns="urn:ebay:api:PayPalAPI"> <Timestamp xmlns="urn:ebay:apis:eBLBaseComponents">2008-10-16T13:53:16Z</Timestamp> <Ack xmlns="urn:ebay:apis:eBLBaseComponents">Failure</Ack> <CorrelationID xmlns="urn:ebay:apis:eBLBaseComponents">3aed8da6814bc</CorrelationID> <Errors xmlns="urn:ebay:apis:eBLBaseComponents" xsi:type="ebl:ErrorType"> <ShortMessage xsi:type="xs:string">Internal Error</ShortMessage> <LongMessage xsi:type="xs:string">Internal Error</LongMessage> <ErrorCode xsi:type="xs:token">10001</ErrorCode> <SeverityCode xmlns="urn:ebay:apis:eBLBaseComponents">Error</SeverityCode> </Errors> <Version xmlns="urn:ebay:apis:eBLBaseComponents">2.0</Version> <Build xmlns="urn:ebay:apis:eBLBaseComponents">718216</Build> </TransactionSearchResponse> </SOAP-ENV:Body> </SOAP-ENV:Envelope>
  8. wpp_diagnostics.php reports the following : Did PayPal respond without errors? (If not, errors are below) No Internal Error (10001) Internal Error almost any attempt to pay via direct paypal pro uk interface fails. this worked perfectly until 2 months ago. please help
  9. We have been using the 1.0.2 module successfully. charging cards via the uk pro account for over a year. suddenly in the last 3 weeks, 4 of every 5 transactions fail with 10001 internal error so we have been taking payments through CCNOW when this happens and we'll switch over to moneybookers if no solution is found taking the cards from the failed transactions and placing them in virtual terminal usually works ok. wpp_diagnotics.php reports all YES except for the last line "Did paypal respond without errors?" - NO Internal Error (10001) Internal Error I left many messages at the integration support line 08003587911 but obviously no one called back I submitted a ticket but obviously no response so far any help will be appreciated
  10. Have you found any solution to this question ?
  11. Another problem is that on once i test order somthing through 2checkout, it appears as an incomplete PayPal order in the database!! please help
  12. I have been using the PayPal module so far and it works great, but some of my customers dont seem to like paypal especially because non-verified customers cant pay over 1000$ with their credit card using paypal! hence i want to add 2checkout as a payment option I understand that the default module that comes with OC2.2 is no longer valid since V2 of 2checkout (mandated 31March05) tried the latest pm2checkout and the no-cookie fix i'm having trouble with both. 1) how come the currency is not transfered in the URL? 2) do i have to replicate the catalog into 2co ? why? 3) i havent managed so far on 2 computers to modify my IE security to allow cookies!! why are they necessary? I've never seen this requirement in any online store!?!?!? 4) is there a new 2checkout module in the making ? tnx!
  13. Great contribution! I had the printing problem too and solved it with the above help. this should go into the install file IMHO. The other thing i had to change was the header and footer in "File->Page Setup.." and basically remove them; otherwise the URL and page number shows up by default. Thanks! *Advertising links
  14. So does anyone know about this or experienced a similar thing ?
×
×
  • Create New...