The customers I have contacted who have this issue are receiving messages about the credit card billing address is not correct.
Any help would be great.
Z
The customers I have contacted who have this issue are receiving messages about the credit card billing address is not correct.
Any help would be great.
Z
I can say that I was getting this error related to an incorrect Address (zip) validation as well. Is there any way to intercept the error from paypal and display a little bit nicer error message? I know that if I was buying something and got some random paypal message on a site that doesn't even appear to be using paypal, I would be gone. Where can I intercept and restate the error?
This change in error handling has worked for me. Caution, it may break other things.
IN FILE:
includes\modules\payment\paypaldp.php
Near Lines 1455
REPLACE or REMARK:
if ($basicError ||
(isset($_SESSION['paypal_ec_token']) && $_SESSION['paypal_ec_token'] != urldecode($response['TOKEN'])) ) {
WITH:
if ($basicError) {
Stagebrace, you're correct -- the $response[TOKEN] isn't always set in the data that comes back from PayPal. So much for consistency in their APIs. Your approach should be fine. Nevertheless ...
I think the following is slightly more efficient from a security standpoint:
Replace this:with this:Code:if ($basicError || (isset($_SESSION['paypal_ec_token']) && $_SESSION['paypal_ec_token'] != urldecode($response['TOKEN'])) ) {Code:if ($basicError || ((isset($_SESSION['paypal_ec_token']) && isset($response['TOKEN'])) && $_SESSION['paypal_ec_token'] != urldecode($response['TOKEN'])) ) {
.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
Thanks for your diligence in resolving this issue.
Will the code change eliminate the errors with PayPal Website Payments Pro module? Would love to use the integrated payment processing, but can't afford to lose any sales...
The code suggested has elemiated the ALERT: PayPal Direct Payment Error ( <!-- -->) for me.Will the code change eliminate the errors with PayPal Website Payments Pro module?
me too.
Does this change need to be made in paypalwpp.php too?
Thanks
Duncan
No, just the file name mentioned in post #24
I too am getting the error.. so I will try the fix as well. I'll let you all know if there are issues.
~ jasmel : My Store Using Contributions: Wallet Theme | Simple Google | Quantity Discounts | Godaddy | FAQ's | Confirm Email Address Entry | Admin login as customer | Newsletter Subscribe | CampaingMonitor
Bookmarks