AuthorizeNet auto recurring payment

1 year 9 months ago #329665 by fdinkler
Replied by fdinkler on topic AuthorizeNet auto recurring payment
Hi
Can you re-login and check i see the IPN IPN notification invalid hash / Fraud attempt in today's attempt as its ARB today and payment deducted, Due to security reasons not sharing a screenshot here. IN CB notification can see the entry.

Thank you

Please Log in to join the conversation.

1 year 9 months ago #329669 by krileon
Replied by krileon on topic AuthorizeNet auto recurring payment
Both x_MD5_Hash and x_SHA2_Hash are empty in the Silent POST sent to CBSubs from Authorize.net. This means we can't verify the signature or even fallback to verifying MD5. Below is a 6 page topic with over 50 replies on their forums about this very issue.

community.developer.cybersource.com/t5/Integration-and-Testing/no-data-in-x-SHA2-Hash-when-using-Silent-Post/td-p/66218

The issue is entirely on Authorize.net end of things as we again can't process data that does not exist.

I get that they want to discontinue AIM and Silent Post, but this isn't some API for rendering funny pictures. We're dealing with transactions here. They need to have life-long fallback behavior or they cripple sites processing payments through them. It is unreasonable for developers to have spend hours and thousands of dollars to rewrite payment integrations because that payment processor doesn't want to have proper API B/C. I do not have the time nor do we have the funding to rewrite Authorize.net from the ground up into their new API. In short if Authorize.net wants us to rewrite to the newer API either them or someone else will have to sponsor the development. My recommendation is move to Stripe and rid yourself of terrible payment processor headaches.


Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.

Please Log in to join the conversation.

1 year 9 months ago #329676 by fdinkler
Replied by fdinkler on topic AuthorizeNet auto recurring payment
Hi
i had again words with Authorize support and according to them, it's sent to the website.
Can you share the file path where in CB the silent posts fetch, is there a possible option to get the Silent post URL outside CB just to check whether its sent by AuthorizNet or blocked
AuthorizeNet also shared this link : support.authorize.net/knowledgebase/Knowledgearticle/?code=000001399
x_SHA2_Hash is supported not MD5

Thank you

Please Log in to join the conversation.

1 year 9 months ago #329679 by krileon
Replied by krileon on topic AuthorizeNet auto recurring payment
You can see exactly what was sent to CBSubs in your notification. It's a raw export of $_POST. x_SHA2_Hash is empty in $_POST so there's nothing for us to verify against.

All I can suggest at this point is turn off Silent Post verification. To do this within your Authorize.net gateway in CBSubs empty "Authorize.net MD5 Hash" and "Authorize.net Signature Key".


Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.

Please Log in to join the conversation.

1 year 8 months ago - 1 year 8 months ago #329952 by fdinkler
Replied by fdinkler on topic AuthorizeNet auto recurring payment
Hi
i tried Stripe on test mode user got activate for a 1 week plan.
On date of expiration it not expired in CB but it does not got new log of activate
still it is showing 2 days back date for expiration prntscr.com/iKWzxmwrIJXG
On Stripe the account show activate for another week that is fine but no status update on CB.
prntscr.com/ff84b4sUmKTu
I selected all events on Stripe so nothing can be missed. still CB not updated for ARB.

Any suggestions to fix?

Please Log in to join the conversation.

1 year 8 months ago #329965 by krileon
Replied by krileon on topic AuthorizeNet auto recurring payment
Stipe requires usage of Webhooks for recurring payments. Ensure you've correctly configured webhooks. You can even check your webhook log directly at Stripe to be sure it reached your site and if it did it will be logged in CBSubs > Notifications. We also have deep event logging for Stripe so any changes during a Stripe payment relevant to CBSubs will be logged to CBSubs > History Log. Sounds like you don't have webhooks configured if a renewal was not sent to your site; see the "Stripe Webhook Credentials" section in your Stripe gateway.


Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.

Please Log in to join the conversation.

Moderators: beatnantkrileon
Time to create page: 0.242 seconds

Facebook Twitter LinkedIn