Results 1 to 9 of 9
  1. #1
    Join Date
    Nov 2014
    Location
    United States
    Posts
    9
    Plugin Contributions
    0

    Default Authorize.net SIM module - Whoops! Your session has expired error

    Using PHP 5.4.20, MySQL 5.1.56-log

    Recently needed to upgrade from an old version of Zen Cart (1.3.8) because my host forced an upgrade to PHP 5.4.

    Installed Zen Cart using 1-click install on Dreamhost servers and then connected to the old database and upgraded it. Did a WinMerge comparison on my copy of the site files and the clean Zen Cart 1.3.8 files in order to replicate customizations (turned out these weren't edits to core files so much as templates and language directories).

    Applied the POODLE fix.

    Still got an error trying to make a purchase. It was the Authorize.net Error 99.

    Applied this fix: http://www.zen-cart.com/showthread.p..._currency_code

    That got me one step further -- was able to connect to Authorize.net's page where you enter the credit card info.

    But after entering credit card and clicking "Pay now", it immediately showed my site without a stylesheet and displayed the error:

    "Whoops! Your session has expired."

    I've reviewed the SIM setup page (http://www.zen-cart.com/content.php?...payment-module), though it's possible I've overlooked some detail, since I'm not exactly a developer (just a designer with a basic understanding of programming languages).

    I've searched through the forums on related threads for 3-4 hours this morning, examining issues and trying fixes if they seemed to apply. But most of them seemed slightly different than mine.

    One that seems a possibility is this, simply because I am using an older template (Cold Steel) that I got when we first installed back in 2009:
    http://www.zen-cart.com/showthread.p...on-has-expired

    However, when I changed my template to the Classic Contemporary Green (which I assume is fresh from the new install), I still got the Whoops error. That leads me to think it's not related to the template, after all.

    Oh, and one more detail: After getting the "session has expired" error, I am still at the URL https://secure.authorize.net/gateway/transact.dll - one time I tried hitting F5 and then got Error (13) The merchant login ID or password is invalid or the account is inactive.

    Did that happen because I pressed F5 without actually filling out the whole form properly? Or is that something useful, like a real error that might be the culprit of the expired session issue?

    I'm just not sure what to look for next, how to diagnose what's really happening.

    Below is the debug log from my latest attempt (with some name/phone/addy data changed to obscure personal info):

    Code:
    Nov-13-2014 11:06:26
    =================================
    
    Sent to Authorizenet: Array
    (
        [x_login] => *******
        [x_amount] => 8.00
        [x_currency_code] => USD
        [x_version] => 3.1
        [x_method] => CC
        [x_type] => AUTH_CAPTURE
        [x_cust_ID] => 10
        [x_email_customer] => FALSE
        [x_company] => 
        [x_first_name] => Teddi
        [x_last_name] => Deppner
        [x_address] => 1234 Main St
        [x_city] => Sacramento
        [x_state] => California
        [x_zip] => 95123
        [x_country] => United States
        [x_phone] => 916-123-1234
        [x_fax] => 
        [x_email] => [email protected]
        [x_ship_to_company] => 
        [x_ship_to_first_name] => 
        [x_ship_to_last_name] => 
        [x_ship_to_address] => 
        [x_ship_to_city] => 
        [x_ship_to_state] => 
        [x_ship_to_zip] => 
        [x_ship_to_country] => 
        [x_Customer_IP] => 64.30.101.78
        [x_relay_response] => TRUE
        [x_relay_URL] => http://www.faithalive################/store/index.php?main_page=checkout_process&action=confirm
        [x_invoice_num] => 
        [x_duplicate_window] => 120
        [x_allow_partial_Auth] => FALSE
        [x_description] => Website Purchase from Faith Alive 365
        [x_fp_sequence] => 477
        [x_fp_timestamp] => 1415905586
        [x_fp_hash] => 83f649fa3f8dd8e51f1e993eecbd6230
        [x_show_form] => PAYMENT_FORM
        [x_receipt_link_method] => POST
        [x_receipt_link_text] => Click here to complete your order.
        [x_receipt_link_url] => http://www.faithalive################/store/index.php?main_page=checkout_process
        [zenid] => laV6cpKoNg,DciZW5O-Zl1
        [url] => https://secure.authorize.net/gateway/transact.dll
    I've been impressed with the responses to other threads (especially by the prolific and knowledgable DrByte), and thank you all in advance for any help you can offer!

  2. #2
    Join Date
    Jan 2004
    Posts
    66,364
    Blog Entries
    7
    Plugin Contributions
    274

    Default Re: Authorize.net SIM module - Whoops! Your session has expired error

    You will be redirected to the timeout page if you hit the checkout_process script 3 times without completing an actual payment. This is to protect against credit card thieves using your site to test their stolen card numbers.
    Log out and then do your test again.

    Does using this module solve your problem? http://www.zen-cart.com/showthread.p...64#post1263564
    .

    Zen Cart - putting the dream of business ownership within reach of anyone!
    Donate to: DrByte directly or to the Zen Cart team as a whole

    Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
    Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.

  3. #3
    Join Date
    Nov 2014
    Location
    United States
    Posts
    9
    Plugin Contributions
    0

    Default Re: Authorize.net SIM module - Whoops! Your session has expired error

    I saw that post and was very excited. I uploaded the new file... and then realized it's for AIM, not SIM. We don't have an SSL cert, and my understanding is that the AIM module requires it. Is my understanding correct?

  4. #4
    Join Date
    Nov 2014
    Location
    United States
    Posts
    9
    Plugin Contributions
    0

    Default Re: Authorize.net SIM module - Whoops! Your session has expired error

    UPDATE: It is working now. I did not change anything in the files. Here's what I did:

    I opened an incognito window in Chrome and tried the purchase process there. And it worked!

    Also, just got confirmation that it worked for someone else, too.

    So.... I'm guessing (and it's just a guess!) the currency issue was the only real problem and then after that... Maybe the session trouble was because I was logged in to the admin area at the same time as logging in under a different user to make the purchase (all in the same browser). Is that a reasonable guess?

  5. #5
    Join Date
    Jan 2004
    Posts
    66,364
    Blog Entries
    7
    Plugin Contributions
    274

    Default Re: Authorize.net SIM module - Whoops! Your session has expired error

    You probably had an invalid session cookie in your browser, and that was failing the login. Closing the browser usually solves that, or telling your browser to clear its cache and cookies.
    .

    Zen Cart - putting the dream of business ownership within reach of anyone!
    Donate to: DrByte directly or to the Zen Cart team as a whole

    Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
    Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.

  6. #6
    Join Date
    Nov 2014
    Location
    United States
    Posts
    9
    Plugin Contributions
    0

    Default Re: Authorize.net SIM module - Whoops! Your session has expired error

    More people have been using the store since I last posted. When using Internet Explorer it works fine. But when using Chrome, they are getting the Session Expired message. The payment goes through Authorize (and if they try several times, they get charged several times), but Zen Cart never records their order. All we can do is refund them and then try to contact them to help them order.

    This is happening with new customers who have never ordered from us, so that rules out cache and cookies as the problem, wouldn't it? It leads me to wonder what other differences there are between an incognito window and a regular one. Incognito seems to work every time. Regular Chrome window doesn't.

    Any other possibilities? Any ideas for tests I can run to diagnose it further?

  7. #7
    Join Date
    Jan 2004
    Posts
    66,364
    Blog Entries
    7
    Plugin Contributions
    274

    Default Re: Authorize.net SIM module - Whoops! Your session has expired error

    It makes me wonder whether you've got certain plugins installed in Chrome that are triggering multiple submissions. Incognito mode often disables plugins unless you've specifically asked it to enable them in Incognito mode. That could explain the difference you're experiencing.

    If it's not you and only your customers who are having the problem, then poll them to find out a complete list of all their browser plugins, and then review the list for similarities and trends.

    I also wonder if there are certain addons you've put onto your store/site that might be getting triggered in some peculiar way by certain browsers.
    It's curious why there aren't hundreds of others reporting identical symptoms ... thus the suspicion that it's something unique to your own site.
    .

    Zen Cart - putting the dream of business ownership within reach of anyone!
    Donate to: DrByte directly or to the Zen Cart team as a whole

    Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
    Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.

  8. #8
    Join Date
    Jan 2004
    Posts
    66,364
    Blog Entries
    7
    Plugin Contributions
    274

    Default Re: Authorize.net SIM module - Whoops! Your session has expired error

    Quote Originally Posted by tmdeppner View Post
    Using PHP 5.4.20, MySQL 5.1.56-log

    on Dreamhost servers

    "Whoops! Your session has expired."

    Check this PHP configuration setting:
    1. Admin->Tools->Server Info ... Press CTRL+F to "search the page" and search for session.hash_bits_per_character
    2. If session.hash_bits_per_character is set to 6, then you'll need to apply this fix: http://www.zen-cart.com/showthread.p...02#post1270902
    .

    Zen Cart - putting the dream of business ownership within reach of anyone!
    Donate to: DrByte directly or to the Zen Cart team as a whole

    Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
    Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.

  9. #9
    Join Date
    Nov 2014
    Location
    United States
    Posts
    9
    Plugin Contributions
    0

    Default Re: Authorize.net SIM module - Whoops! Your session has expired error

    Yes, the session.hash_bits_per_character is set to 6. I applied the fix and went through the purchase process, and it appears to have worked! I notified my client so he could give it a try on some other browsers and confirm things.

    THANK YOU for your help and for following up. Much appreciated.

 

 

Similar Threads

  1. v151 Whoops Your Session Has Expired when using eProcessing Network SIM emulator
    By firstcapitalfirearms in forum General Questions
    Replies: 0
    Last Post: 22 Feb 2013, 07:23 PM
  2. "Your session has expired" with Authorize.net SIM
    By HDG in forum Managing Customers and Orders
    Replies: 2
    Last Post: 12 Oct 2010, 01:48 AM
  3. Authorize.net SIM Module - There has been an error processing your credit card. Pleas
    By anita in forum Built-in Shipping and Payment Modules
    Replies: 71
    Last Post: 1 Jul 2010, 06:41 PM
  4. Authorize.net SIM module returns with "Your session has expired" and doesn't complete
    By rumoraz in forum Built-in Shipping and Payment Modules
    Replies: 0
    Last Post: 24 Sep 2008, 10:16 PM
  5. Whoops! Your session has expired. - Returning from Authorize.net
    By flash in forum Installing on a Linux/Unix Server
    Replies: 4
    Last Post: 17 Jul 2008, 06:18 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
disjunctive-egg
Zen-Cart, Internet Selling Services, Klamath Falls, OR