ok, so here's the deal.
I have created a quite robust order/payment procesing setup that sends to our processing gateway. I have now been asked to devise a way to authenticate a "login" from a merchants website that REFUSES to use SSL on his side.
I need ideas/guidance/eamples of how to acomplish this.
The path that this will take is as follows.
Merchant Checkout Page --> POST
(will need to send somekind of id info - encripted with sha1 min.)
POST received at a "Catch Page" verify id info --> redirect to URL for that merchnat on our secured server. force https at this point and load the payment procesing page. From the point of the processing page I have it undercontrol.
This is based loosely from the old Verisign Payflow link design. (think paypall has it now.)
Anyway is all in php on this side posting page from merchnat is good ol html.
Again ANY direction would be helpful
Regards, nine72
I have created a quite robust order/payment procesing setup that sends to our processing gateway. I have now been asked to devise a way to authenticate a "login" from a merchants website that REFUSES to use SSL on his side.
I need ideas/guidance/eamples of how to acomplish this.
The path that this will take is as follows.
Merchant Checkout Page --> POST
(will need to send somekind of id info - encripted with sha1 min.)
POST received at a "Catch Page" verify id info --> redirect to URL for that merchnat on our secured server. force https at this point and load the payment procesing page. From the point of the processing page I have it undercontrol.
This is based loosely from the old Verisign Payflow link design. (think paypall has it now.)
Anyway is all in php on this side posting page from merchnat is good ol html.
Again ANY direction would be helpful
Regards, nine72
Comment