Flyer5 Posted May 11, 2005 Share Posted May 11, 2005 Have you changed the production mode from T to P and are you creating the hash with the new mode as well? <{POST_SNAPBACK}> How do I create the hash with the new mode? Quote Link to comment Share on other sites More sharing options...
Weirfire Posted May 11, 2005 Share Posted May 11, 2005 How do I create the hash with the new mode? <{POST_SNAPBACK}> If you are using the oscommerce MOD and you've changed the mode to P in the Admin section you won't need to check this. A lot of people not using the oscommerce MOD also use this thread as there isn't anywhere else that supports the HSBC ePayments system. Quote Link to comment Share on other sites More sharing options...
♥Vger Posted May 11, 2005 Share Posted May 11, 2005 You say you have changed it from Test to Production mode - but it's not enough to do this with the contribution you also have to Telephone/Fax HSBC e-Secure and get them to change it over at their end of things. It then takes up to 24 hrs for this to be done. Did you contact them? Vger Quote Link to comment Share on other sites More sharing options...
Flyer5 Posted May 11, 2005 Share Posted May 11, 2005 You say you have changed it from Test to Production mode - but it's not enough to do this with the contribution you also have to Telephone/Fax HSBC e-Secure and get them to change it over at their end of things. It then takes up to 24 hrs for this to be done. Did you contact them? Vger <{POST_SNAPBACK}> Hi vger Yes, the client contacted them on Monday so i'm guessing (without checking of course) that it has been done. Im hoping it hasn't yet, and that there really is no problem. ! I'll speak to the client again tommorow. Cheers F5 Quote Link to comment Share on other sites More sharing options...
acarty Posted May 12, 2005 Share Posted May 12, 2005 Hi Guys, I'm having the old "Storefront configured incorrectly" problem. Cant seem to find a solution... Any ideas?! I also dont have any of the files that need to go into the cgi-bin. Thanks in advance. Andy Quote Link to comment Share on other sites More sharing options...
♥Vger Posted May 12, 2005 Share Posted May 12, 2005 The files that need to go into the cgi-bin are contained on the HSBC CD Rom. Open it in Windows Explorer and you'll be able to navigate to them. If you just launch it as an interactive CD Rom you'll never find them. Vger Quote Link to comment Share on other sites More sharing options...
acarty Posted May 16, 2005 Share Posted May 16, 2005 The files that need to go into the cgi-bin are contained on the HSBC CD Rom. Open it in Windows Explorer and you'll be able to navigate to them. If you just launch it as an interactive CD Rom you'll never find them. Vger <{POST_SNAPBACK}> Thats brilliant. I will have a look at that. Thanks! Quote Link to comment Share on other sites More sharing options...
BarryG Posted May 23, 2005 Share Posted May 23, 2005 Hi Trying to install the module by Kostuk Nikolas do you need to change anything? EG Line 824: function SecCrypto() { $s = "XXXXXXXXXXXXXXXXXXXXXXXXXXXXX"; $s1 = "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"; $s2 = "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"; $this->a =chr(98).chr(84).chr(120).chr(114).chr(66).chr(87) .chr(80).chr(112); $this->_fldif = $this->initKey($s, $s1, $s2); $this->_fldif=substr($this->_fldif,0,44); } Do I need to change the XXXXXXX from the included ones or anything else as it doesn't appear to work code 10 returned? Quote Link to comment Share on other sites More sharing options...
♥Vger Posted May 23, 2005 Share Posted May 23, 2005 There's no need to alter any of the files provided by HSBC (the ones that go into the CGI-Bin), which is where I think that reference comes from. Vger Quote Link to comment Share on other sites More sharing options...
ribs Posted May 23, 2005 Share Posted May 23, 2005 Barry, I'm not sure why you've X'd out all the values, but what was there was correct eg: function SecCrypto() { $s = "KmJTwzVPwjoxQdWJb1BxbuhBSa2RuM05+/aUdgYoGdFWWf04CKIQTxtxLeKCp+5J"; $s1 = "y8YhmjsAoMUW9RxfXBSos0A6LwGd+5pXv/MRAKCYFLG"; $s2 = "BqRkPAG8DFFAdeN5SMAArktCYuUGXi2q88EDoOs3Ykw0k"; $this->a =chr(98).chr(84).chr(120).chr(114).chr(66).chr(87).chr(80).chr(112); $this->_fldif = $this->initKey($s, $s1, $s2); $this->_fldif=substr($this->_fldif,0,44); } If your getting a error 10 from HSBC then there is something wrong with the data you are sending. You should check the form fields on the checkout_confirmation.php page to see if the orderhash value is set. Neil Westlake DJBox.co.uk Quote Link to comment Share on other sites More sharing options...
BarryG Posted May 23, 2005 Share Posted May 23, 2005 Hi thanks for that. I was wondering if you had to replace them with your hash code or not. This is the form on the checkout_confirmation.php page... <form name="checkout_confirmation" action="https://www.cpi.hsbc.com/servlet" method="post"> <input type="hidden" name="CpiDirectResultUrl" value="https://www.themusicroom-online.co.uk/checkout_payment.php"> <input type="hidden" name="CpiReturnUrl" value="https://www.themusicroom-online.co.uk/checkout_process.php"> <input type="hidden" name="Mode" value="T"> <input type="hidden" name="OrderDesc" value="Item Description"> <input type="hidden" name="OrderId" value="2-20050523051208"> <input type="hidden" name="PurchaseAmount" value="3999"> <input type="hidden" name="PurchaseCurrency" value="826"> <input type="hidden" name="StorefrontId" value="UKXXXXXXGBP"> <input type="hidden" name="TimeStamp" value="1116861128000"> <input type="hidden" name="TransactionType" value="Auth"> <input type="hidden" name="UserId" value="2"> <input type="hidden" name="BillingAddress1" value="BillingAddress1"> <input type="hidden" name="BillingCity" value="Bradford"> <input type="hidden" name="BillingCountry" value="826"> <input type="hidden" name="BillingCounty" value="West"> <input type="hidden" name="BillingFirstName" value="Barry"> <input type="hidden" name="BillingLastName" value="Gambles"> <input type="hidden" name="BillingPostal" value="BD13 1js"> <input type="hidden" name="ShopperEmail" value="bgambles@XXXXXXXX"> <input type="hidden" name="ShippingAddress1" value="ShippingAddress1"> <input type="hidden" name="ShippingCity" value="Bradford"> <input type="hidden" name="ShippingCountry" value="826"> <input type="hidden" name="ShippingFirstName" value="Barry"> <input type="hidden" name="ShippingLastName" value="Gambles"> <input type="hidden" name="ShippingPostal" value="BD13 1js"> <input type="hidden" name="OrderHash" value="t8i5IdRsR9pIDcwkpIKX18xNEuA="> <input type="image" src="includes/languages/english/images/buttons/button_confirm_order.gif" border="0" alt="Confirm Order" title=" Confirm Order "></form> Quote Link to comment Share on other sites More sharing options...
esperos Posted May 23, 2005 Share Posted May 23, 2005 My goodness, going through 22 pages in this thread was fun!! The only problem I have is that every time someone got near giving an answer to my problem, the subject seemed to change. I am having the old "Hacking attempt" issue. I seem to have an Order Hash but no Hash. I have installed the latest HSBC Payment module (2.0) and I have an SSL cert. The files in HSBC's CD-ROM have been installed in the cgi-bin directory and the path points to them. I am not running PHP in safe mode. I have seen people write that "Everything works like a dream". HOW??? Any thoughts would be greatly appreciated Nick Quote Link to comment Share on other sites More sharing options...
♥Vger Posted May 23, 2005 Share Posted May 23, 2005 Do you have 'Force Cookie Use' set to true in Configuration --> Sessions in your osCommerce admin panel? If so, set it to false. For HSBC e-Secure to work you must pass them a session id generated by your site. If you do not then they (HSBC) will generate a session id which gets passed back to your site, is not recognised by your site (because it did not generate it), and that results in errors. Vger My goodness, going through 22 pages in this thread was fun!! The only problem I have is that every time someone got near giving an answer to my problem, the subject seemed to change. I am having the old "Hacking attempt" issue. I seem to have an Order Hash but no Hash. I have installed the latest HSBC Payment module (2.0) and I have an SSL cert. The files in HSBC's CD-ROM have been installed in the cgi-bin directory and the path points to them. I am not running PHP in safe mode. I have seen people write that "Everything works like a dream". HOW??? Any thoughts would be greatly appreciated Nick <{POST_SNAPBACK}> Quote Link to comment Share on other sites More sharing options...
esperos Posted May 24, 2005 Share Posted May 24, 2005 Thanks vger, "Force kookie use" = false. Anything else I should be looking for? Nick Quote Link to comment Share on other sites More sharing options...
♥Vger Posted May 24, 2005 Share Posted May 24, 2005 (edited) Once you've arrived on the checkout_confirmation page use View Source and look at the code in that page. You should see what is being passed to HSBC, along with a session id. Recently we installed a javascript drop down menu on one site and that broke the insertion of the session id into the code being sent to HSBC. Vger Edited May 24, 2005 by Vger Quote Link to comment Share on other sites More sharing options...
esperos Posted May 24, 2005 Share Posted May 24, 2005 Thanks again Vger, The form contains <form name="checkout_confirmation" action="https://www.cpi.hsbc.com/servlet" method="post" onsubmit="return check_agree(this);"> <input type="hidden" name="osCsid" value="2ec9a29422cfa5e59c695ce47fa61bd2" /> <input type="hidden" name="CpiDirectResultUrl" value="https://alle.co.uk/checkout_process.php"> <input type="hidden" name="CpiReturnUrl" value="https://alle.co.uk/hsbc_return.php"> <input type="hidden" name="OrderDesc" value="alle order"> <input type="hidden" name="OrderId" value="Order 05143-014640"> <input type="hidden" name="PurchaseAmount" value="13523"> <input type="hidden" name="PurchaseCurrency" value="826"> <input type="hidden" name="StorefrontId" value="UKxxxxxxGBP"> <input type="hidden" name="TimeStamp" value="1116938800000"> <input type="hidden" name="TransactionType" value="Auth"> <input type="hidden" name="MerchantData" value="2ec9a29422cfa5e59c695ce47fa61bd2"> <input type="hidden" name="BillingAddress1" value="8 Evelyn Drive"> <input type="hidden" name="BillingCity" value="Pinner"> <input type="hidden" name="BillingCountry" value="826"> <input type="hidden" name="BillingCounty"> <input type="hidden" name="BillingFirstName" value="Nick"> <input type="hidden" name="BillingLastName" value="Paradiso"> <input type="hidden" name="BillingPostal" value="HA5 4RX"> <input type="hidden" name="ShopperEmail" value="[email protected]"> <input type="hidden" name="ShippingAddress1" value="8 Evelyn Drive"> <input type="hidden" name="ShippingCity" value="Pinner"> <input type="hidden" name="ShippingCountry" value="826"> <input type="hidden" name="ShippingCounty"> <input type="hidden" name="ShippingFirstName" value="Nick"> <input type="hidden" name="ShippingLastName" value="Paradiso"> <input type="hidden" name="ShippingPostal" value="HA5 4RX"> <input type="hidden" name="Mode" value="T"> <input type="hidden" name="OrderHash"> Nick Quote Link to comment Share on other sites More sharing options...
♥Vger Posted May 24, 2005 Share Posted May 24, 2005 Okay, your site is not generating the order hash value, as in (example): <input type="hidden" name="OrderHash" value="abCdEf+hiJkLmnop+rtsUVWxx="> Vger Quote Link to comment Share on other sites More sharing options...
esperos Posted May 24, 2005 Share Posted May 24, 2005 Thanks again, Vger Does that signify an ssl problem or just sheer incompetence on my part? Nick Quote Link to comment Share on other sites More sharing options...
esperos Posted May 25, 2005 Share Posted May 25, 2005 OK, I give up!! Can anyone suggest a developer who could install the HSBC module for me? Nick Quote Link to comment Share on other sites More sharing options...
ppollock Posted May 25, 2005 Share Posted May 25, 2005 OK, I give up!! Can anyone suggest a developer who could install the HSBC module for me? Nick <{POST_SNAPBACK}> Yes, ribs is an excellent guy. His real name is Neil Westlake. Drop me a line if you want his email address. He installed it for me in seconds! Regards, Peter Quote Link to comment Share on other sites More sharing options...
adam1987 Posted June 3, 2005 Share Posted June 3, 2005 Yes, ribs is an excellent guy. His real name is Neil Westlake. Drop me a line if you want his email address. He installed it for me in seconds! Regards, Peter <{POST_SNAPBACK}> Hi, could you please put me in contact with him :) Quote Link to comment Share on other sites More sharing options...
♥Vger Posted June 3, 2005 Share Posted June 3, 2005 Just look on the page before this one and you'll see his last post. Vger Quote Link to comment Share on other sites More sharing options...
acarty Posted June 6, 2005 Share Posted June 6, 2005 Hi guys, having looked over my checkout_confirmation.php page, I notice I haven't generated a HASH either. I don't have an SSL certificate, and looking over the previous posts, I presume I need one? Any other help would be brilliant, as I cant HASH and I know I need that! Thanks Quote Link to comment Share on other sites More sharing options...
♥Vger Posted June 6, 2005 Share Posted June 6, 2005 It's down in the HSBC CPI Integration Guide CD Rom that HSBC won't connect to you on an http connection - so yes, you need ssl. Vger Quote Link to comment Share on other sites More sharing options...
ribs Posted June 6, 2005 Share Posted June 6, 2005 Andrew, As Vger said you do need a SSL server to use HSBC, but you sould still be able to generate a HASH key without one. Regards Neil Westlake Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.