Download Problem with PayPal IPN using COWOA

[Steven300]

I had a friend test my new downloadable product by ordering it through PayPal IPN. On returning from PayPal, she said she received a "Whoops! Your session has expired" warning.. so she couldn't download it. I guess she took a while at PayPal, but she says she was "only there for 5 minutes at the most". What makes this worse is she chose the COWOA route so she can't login to her account and download from there. I'm not sure what to do to stop this happening again. Should I put a warning saying not to checkout without an account if ordering a download? I'd prefer a better fix than that. Could this be a hosting issue? A PayPal issue? Can I increase the session expiration time?

[Steven300]

I should add she wasn't totally sure what the error message said. She originally told me it said "Whoops, your time has expired". I couldn't find this using the Developer's Tool Kit so I'm assuming she meant "your session".

[Steven300]

Some more details:

The order has been created in admin as normal.
Using Zen Cart 1.3.8a with Shared SSL.
All previous orders (for tangible products) have worked fine.

[DrByte]

If PayPal's server took awhile to notify your site of the completed payment (ie: longer than it took her to click back to your site), then I'm not surprised that she would have nothing to see upon her return if there's no account for her to access. Then again, I'm not intimately acquainted with inner workings of the various COWOA mods floating around. Can't help much without removing that option and repeating the problem.

[Steven300]

Interesting. My understanding of the COWOA mod is that the customer still gets logged in normally with a session and a created account, but because they don’t enter a password at sign-up, there’s no way for them to login again once that session expires. During this “login”, various links are hidden such as ‘logout’ and ‘my account’. More importantly, and this has only just occurred to me, I believe the customer is automatically logged off on returning to the checkout success page, thus quite a problem.

In that case, I would like to use an ‘if’ statement on tpl_login_default.php to not display the COWOA option if a download is in the cart.

This is the code which displays the COWOA option:

PHP Code:

<?php
  if ($_SESSION['cart']->count_contents() > 0) { ?>
    <fieldset>
    <legend>Checkout Without Account</legend>
    <?php echo TEXT_RATHER_COWOA; ?>
    <div class="buttonRow forward">
    <?php echo "<a href=\"" . zen_href_link(FILENAME_NO_ACCOUNT, '', 'SSL') . "\">"; ?>
    <?php echo zen_image_button(BUTTON_IMAGE_CONTINUE, BUTTON_CONTINUE_ALT); ?></a></div>
    <br class="clearBoth" />
    </fieldset>
<?php } ?>

The product ID of my download is 191. So could I wrap something like this around it:

PHP Code:

<?php
$products = $_SESSION['cart']->get_products();
$founddownload = false;
for ($i=0; $i<sizeof($products); $i++) {
if ( $products[$i]['id'] == 191 ) {
$founddownload = true;
}
}

if ( $founddownload == false ) {

  if ($_SESSION['cart']->count_contents() > 0) { ?>
    <fieldset>
    <legend>Checkout Without Account</legend>
    <?php echo TEXT_RATHER_COWOA; ?>
    <div class="buttonRow forward">
    <?php echo "<a href=\"" . zen_href_link(FILENAME_NO_ACCOUNT, '', 'SSL') . "\">"; ?>
    <?php echo zen_image_button(BUTTON_IMAGE_CONTINUE, BUTTON_CONTINUE_ALT); ?></a></div>
    <br class="clearBoth" />
    </fieldset>
<?php }

}
?>

[Steven300]

I can confirm the code above works

Later I'll have her test it again but with a normal account

[Steven300]

The download has been tested using a normal account. There was a small problem with the redirect method.

You don't have permission to access
/pub/.kznudvzndbscywrdid/Tips_MS_Word.zip on this server.

Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.

I fixed this by turning redirects off and streaming on.

All works