WARNING: Security hash problem. Please contact store-owner immediately. Your order ha

[kjharrison]

After making a test transaction with Authorize.net on the chat, I got this message:

WARNING: Security hash problem. Please contact store-owner immediately. Your order has *not* been fully authorized.

I was told that it's my shopping cart and not the gateway. We did make a new key and tried again, but the same thing happened.

What concerns me most is that the SSL never cicked in during the transaction. I'm also running in maintenance mode. Is this message coming up because the SSL is not being used for some reason?

Ken.

[stevesh]

If you search the forum for "hash problem" you'll find several threads that addresss your problem.

[kjharrison]

I re-installed my Authnet_AIM account, tried to pake the it work and I still got the message. I'm still concerned about the SSL not coming up.

[stevesh]

Sounds like you may not have SSL enabled properly in your configure.php files.

[kjharrison]

Sounds like you may not have SSL enabled properly in your configure.php files.

That's what I was th inking. Right now I have to head out, so I'll have to get to it in the morning or later tonight. I'll let you know if it works.

[kjharrison]

The SSL problem was that I forgot to enable SSL for the shopping cart in the config.php file. Oops.

The hash problem was because I didn't use the MD5 Hash, which means I had to clear out all the text that is in that field by default. I will set it up with the MD5 Hash for the extra security now that I know for sure that everything is working fine.

Thank you for pointing me in the right direction!
Ken.

[spiralmedia]

You don't need to use the MD5-Hash. I had that same issue and spoke with Authorize.net and it is just an added security feature, but everytime you log in to the admin and make any change, the MD%-Hash will change so it will always cause that message. It is an optional element, so just eliminate the message from popping up on the Zen Cart screen and you'll be all set.

[DrByte]

... but everytime you log in to the admin and make any change, the MD%-Hash will change ...

Um, I'm not sure who told you that ... but ... if you're referring to the MD5 Hash "keyphrase" which you enter in your Authnet profile settings and in your Zen Cart admin settings, you're mistaken ... because that keyphrase does NOT change with every admin login.
(The MD5 hash generated for each transaction using the keyphrase as a "base" will naturally change with each transaction, but the keyphrase in the admin areas does NOT change with every admin login.)