PayPal IPN issue

Locked
Results 1 to 6 of 6
This thread is locked. New replies are disabled.
02 Jan 2010, 15:57
#1
jack28 avatar

jack28

New Zenner

Join Date:
Dec 2009
Posts:
14
Plugin Contributions:
0

PayPal IPN issue

I get this message when I do a test product and we move to PayPal site:

"The seller accepts encrypted website payments only. You cannot pay the seller through un-encrypted buttons. Please contact your seller for more details."

I am in HTTPS mode when I click to go to paypal?

What am I doing wrong?'

Zen 1.3.8a
Thjanks
02 Jan 2010, 16:05
#2
drbyte avatar

drbyte

Sensei

Join Date:
Jan 2004
Posts:
63,506
Plugin Contributions:
173

Re: PayPal IPN issue

If you're going to use PayPal Website Payments Standard/IPN module, you'll need to turn off "Encrypted Payments Only" in your PayPal account profile's settings.

Or, you can Remove the Standard/IPN module, and use Express Checkout instead.

Express is simpler and more reliable.
02 Jan 2010, 17:16
#3
jack28 avatar

jack28

New Zenner

Join Date:
Dec 2009
Posts:
14
Plugin Contributions:
0

Re: PayPal IPN issue

Which is better? Or do both?
02 Jan 2010, 17:28
#4
kim avatar

kim

Obaa-san

Join Date:
Jun 2003
Posts:
26,564
Plugin Contributions:
0

Re: PayPal IPN issue

You only need one OR the other, not both.
27 Jan 2010, 20:44
#5
sjmills93 avatar

sjmills93

New Zenner

Join Date:
Jan 2010
Posts:
37
Plugin Contributions:
0

Re: PayPal IPN issue

Had similar issue, here's my experience which hopefully will make someone else's life easier.

I was installing Zen Cart's (1.3.8) PayPal IPN module and following directions provided in the Zen Cart book (available from cucumbermedia.com).

During that process you are directed to edit the "Website Payment Preferences" located in Profile at PayPal (see copy/pasted stuff below). There is not a lot of direction anywhere as to which of the preferences you should edit relative to the exact PayPal processing method being used.

One of the Website Payment Preferences asks to turn off or on PayPal's Encrypted Website Payments. I thought this was an odd option, since ALL financial transactions must be encrypted for security purposes and changed this option to "ON" from "OFF".

As a result, the move to PayPal from the final shopping cart step in Zen Cart is not encrypted (no financial information has yet been provided by the shopper) and due to the Encrypted Website Payments blocking non-encrypted "entry" to PayPal's environment, generating a blocked message.

This led me to believe that I needed to have a dedicated IP and certificate our end of things.

Solution: As per recommendations in this stream - DO NOT BLOCK non-encrypted "payments" - mine were not payments at all, just a transfer to the PayPal site to BEGIN payment process on their secure servers.

However, I AM having an issue about PayPal customized payment process pages and my client's unsecured logo causing a browser security warning.

Any suggestions on how to resolve that issue?


Encrypted Website Payments

Using encryption enhances the security of website payments by decreasing the possibility that a 3rd party could manipulate the data in your button code. If you plan on only using encrypted buttons you can block payments from non-encrypted ones.

Learn more about Encrypted Website Payments

Note: If you enable Encrypted Website Payments, all of your Buy Now, Donations, and Subscriptions buttons must be encrypted via one of the following methods:

·Using the Button Factory with the security settings enabled.

·Using your own code, you encrypt all website payments before sending them to PayPal.

By enabling this feature, any Buy Now, Donation, or Subscription button that is not encrypted will be rejected by PayPal.


Block Non-encrypted Website Payment:
On
Off
27 Jan 2010, 20:53
#6
drbyte avatar

drbyte

Sensei

Join Date:
Jan 2004
Posts:
63,506
Plugin Contributions:
173

Re: PayPal IPN issue

sjmills93:

One of the Website Payment Preferences asks to turn off or on PayPal's Encrypted Website Payments. I thought this was an odd option, since ALL financial transactions must be encrypted for security purposes and changed this option to "ON" from "OFF".
The extended version of configuration and troubleshooting instructions specifically says not to do that:
http://www.zen-cart.com/wiki/index.php/PayPal

sjmills93:


As a result, the move to PayPal from the final shopping cart step in Zen Cart is not encrypted (no financial information has yet been provided by the shopper)
...
This led me to believe that I needed to have a dedicated IP and certificate our end of things.
You're misunderstanding the matter of "encryption" in this context.
The thing that's "not encrypted" is simply the hidden "button" HTML that is used to transfer the customer to the PayPal website.
If you think PayPal should be more clear on the matter, log a ticket with them at: www.paypal.com/mts

The use of a "hidden button" is an archaic technology, and is not really designed for advanced shopping carts like Zen Cart. It's more suitable for eBay or stores that only have a single product and want just a "buy now" button on a static HTML page. Zen Cart is way more than that, and thus using the PayPal Express Checkout method is *way more appropriate* as an ecommerce payment solution.

sjmills93:


However, I AM having an issue about PayPal customized payment process pages and my client's unsecured logo causing a browser security warning.

Your client will need to either provide a secured URL to their logo, or opt not to use a logo at all.
But, that's completely off-topic for this discussion.