This project is read-only.

Anybody used authorize.net with C4U

Feb 9, 2011 at 12:01 AM

I think I saw a provider for authorize.net in the code anybody been using that? I will try to get it running in the coming month if everything goes well and we don't change plans.

Will also implement functionality for recurring payments. In the DB schema I can see that one order can have many transactions so it should work I'll hope. Anybody have knowledge in this matter?

Feb 9, 2011 at 12:09 AM

Jesper -

Have a look in \dashCommerce.Net\Services\PaymentProvider\AuthorizeNetPaymentProvider.cs and also at the CyberSource provider in the original project.

 

-Paul

Feb 9, 2011 at 12:16 AM

Paul,

Thank you, will do.

I checked it briefly some days ago and the functions seems to work so that the customers enters credit card info on the domain of the web site and is stored in the Umbraco database. 

I think from a security view its better to let customer enter info on authorize.net page and just reccord the response in Umbraco db. I am sure it can be customized. Just some thoughts from my side.

/Jesper

Feb 9, 2011 at 12:23 AM

Jesper -

I hope that's not the case!  The providers should have no way to "save" a credit card number, only pass it to the processor (Authorize.net, Cybersource, PayPal) via the SOAP web service call per the processor's API spec.  If its otherwise I'd be surprised as the DB schema has no place for such data anyhow.

-Paul

Feb 9, 2011 at 12:56 AM
Edited Feb 9, 2011 at 12:57 AM

You are right there is no database field for storing card number which is good.

Think I was looking at the \dashcommerce.net\Store\Order.cs  and was confused when I saw properties for, CreditCardNumber, CreditCardExpireYear, CreditCardExpireMonth, CreditCardSecurityNumber and CreditCardType.

But I now understand that these are not persistant to the db and only used if you want to have the customer enter cardnumber on our own checkout.

I can how ever not see any metod for just forwarding to authorize.net and let them enter card info on their domain. But that must be rather easy to fix in thee provider: http://commerce4umbraco.codeplex.com/SourceControl/changeset/view/55361#1112729

Also need to implement method for getting the respons after customers have entered card info on the hosted autorize.net page. And another one for reccurring payments.

Will have a look into this. Don't want customers to enter any card info on our checkout domain,

Feb 10, 2011 at 9:35 PM

FYI, we have been using the Authorize.net provider for our C4U sites and it works fine.