Support » Plugin: Simple Cart & Buy Now » PayPal Encryption Settings

  • Resolved alexis.glanum



    I have few questions about PayPal encryption with your plugin.

    I am a bit lost with all the fields that are required.
    – Is the path for openssl requiered ?
    – What is the difference between “Full system path for Paypal Certificate File” and “Full system path for Paypal’s Certificate File” ?
    – Where can I find the “Certificate ID” ?

    I tried generating a Certificate API, but I didn’t get all the fields you’re asking. PayPal only gave me one file, not 3. And what, I suppose, is my “Certificate ID” is too long for the field. Actually, with the values I entered, no matter how I try, I keep getting the message “We were unable to decrypt the certificate id” from PayPal. Could you please tell me where I can find all the information required ?

    Finally, if the checkout button is secured on the “cart page”, what about all the “add to cart” buttons ? Is there a way to secure/encrypt them ?

    Thank you so much for your answers.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author bluey80


    Yes, the path for openssl is required — I couldn’t figure out how to sign Paypal’s carts in php code, so I need to call openssl.

    If you go to Website Payment Certificates in Paypal’s Merchant Settings, Advanced, you go download Paypal’s Public Certificate, which is “Paypal’s Certificate File” (I should add the word public the SCABN — will be in next release). From there you can also get a public certificate for your site and a private key, both of which SCABN will need.

    The add to cart buttons are not encrypted. The idea is that you don’t need to encrypt what the customer is choosing to buy (if they hack the site to buy 3 widgets instead of 4, who cares). Instead we want to make sure that the ‘add to cart’ buttons don’t have any private content that you don’t want changed. The only such content is the price (quantity, name, etc, does no good to modify). If you look at the templates/default.php shows you how to get the pricing internally and then overwrite the ‘add to cart’ pricing. This way then hack the ‘add to cart’ and change the pricing, but when that value gets overwritten when updating the cart and more importantly which generating the signed encrypted carts.

    I am also having these issues with the paypal encryption can you please give us more detailed instructions on using the paypal gate?

    Plugin Author bluey80


    Can you be more specific about your question? If you go to Website Payment Certificates in Paypal’s Merchant Settings, Advanced, you go download Paypal’s Public Certificate and set out your private/public key for encrypting your carts. You’ll need to give SCABN the path to those files.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘PayPal Encryption Settings’ is closed to new replies.