Fixes

Tue, 03/17/2009 - 22:00

bountyx

Offline

Joined: 03/17/2009

Juice: 12

Fixes

Hey there,

The servers in the module are expired, that's why it probably wasn't working for you. Paypal purchased versign and no longer uses the versign.com domain to authenticate their payflow requests. The new servers are payflowpro.paypal.com (for live site) and pilot-payflowpro.paypal.com.

In addition to these changes, I made some security enhancments to prevent MTM attacks. Turning off VERIFYPEER in cURL is not the best option. Since not everyone has access to curl's installed cacert.pem file for their root athority, I bundled the one used by mozilla which includes all the biggest CA names. In the payflow gateway settings, you can point the relative directory to the bundled cacert.pem file.

Please see the readme for more information. Attached is the module, instructions, changes, and cacert.pem for proper peer validation.

If you already have the original payflow pro module from above installed, you need to remove it from your drupal installation, and install this version instead. My attached file is the entire module bundled with fixes.

Attachment	Size
payflowpro_fixes_03-17-2009.zip	125.11 KB

Payflow Pro Full Integration (Including recurring profiles) By: Souvent22@drupal.org (11 replies) Mon, 10/22/2007 - 12:24

Use Drupal.org By: kwinters (02/26/2010 - 10:31)
Password continues to disappear By: bob_bingam (09/03/2009 - 16:22)
- similar problem, password disappears By: azakaria (09/25/2009 - 14:33)
Drupal 6 Port Now Available By: kwinters (04/24/2009 - 11:30)
- is it compatible with SDK 4.0 By: deepakg83 (07/29/2009 - 14:29)
  - Updated PayPal Payflow Module By: deepakg83 (08/05/2009 - 10:12)
Credit Card Details By: rwpenn (04/07/2009 - 23:38)
Not Working By: kris (02/12/2009 - 13:51)
- Fixes By: bountyx (03/17/2009 - 22:00)
  - drupal 6 port By: mlutfy (03/30/2009 - 16:58)
    - Drupal 6 Port - Ready Yet? By: kbarash (04/12/2009 - 16:21)

Ubercart

Fixes

Navigation

User login