CiviCRM Community Forums (archive)

*

News:

Have a question about CiviCRM?
Get it answered quickly at the new
CiviCRM Stack Exchange Q+A site
This forum was archived on 25 November 2017. Learn more.
How to get involved.
What to do if you think you've found a bug.



  • CiviCRM Community Forums (archive) »
  • Old sections (read-only, deprecated) »
  • Support »
  • Using CiviCRM »
  • Using CiviEvent (Moderator: Yashodha Chaku) »
  • Pay Pal Security issue
Pages: [1]

Author Topic: Pay Pal Security issue  (Read 1650 times)

CousiMo

  • I post frequently
  • ***
  • Posts: 126
  • Karma: 2
Pay Pal Security issue
September 07, 2007, 08:41:07 am
I've been getting email from customers saying that our site is not secure when requesting credit card info.. i am using paypal website payment pro.  I dont know why they're saying that, is it because it says on the site " Save time. Checkout securely. Pay without sharing your financial information. " next to the paypal icon. or their website gives them the warning.  in either case, how do i make sure its secure, and notify them that its secure

thanks

 

lcdweb

  • Forum Godess / God
  • I live on this forum
  • *****
  • Posts: 1620
  • Karma: 116
    • www.lcdservices.biz
  • CiviCRM version: many versions...
  • CMS version: Joomla/Drupal
  • MySQL version: 5.1+
  • PHP version: 5.2+
Re: Pay Pal Security issue
September 07, 2007, 10:21:44 am
I don't hold myself out there as a CiviCRM expert, but here are some ideas:

Paypal Pro lets you process the payment within your website (vs. Standard, which redirects you to the secure paypal site, and returns you to your site after the payment is processed). To handle payments on your site, you need to have an SSL certificate setup.

Then within CiviCRM, go to Administer > Configure > Global Settings > Resource URLs > and check off "force secure URLs"
That will force the payment pages to use the SSL cert (https://...).

If that doesn't work, there must be a discrepancy between your site domain and the domain listed in your SSL cert (maybe you have multiple domains for your site?)

-Brian
support CiviCRM through 'make it happen' initiatives!
http://civicrm.org/mih

Dave Greenberg

  • Administrator
  • I’m (like) Lobo ;)
  • *****
  • Posts: 5760
  • Karma: 226
    • My CiviCRM Blog
Re: Pay Pal Security issue
September 10, 2007, 10:32:09 am
Quote from: CousiMo on September 07, 2007, 08:41:07 am
I've been getting email from customers saying that our site is not secure when requesting credit card info.. i am using paypal website payment pro.  I dont know why they're saying that, is it because it says on the site " Save time. Checkout securely. Pay without sharing your financial information. " next to the paypal icon. or their website gives them the warning.  in either case, how do i make sure its secure, and notify them that its secure

thanks

Because contributors are entering their credit card info on your site, you must have an SSL certificate installed for your site - and Force Secure URL's enabled as noted below if you are using Website Payments Pro. This is also noted in the introductory section of the Payment Processor configuration documentation which provides some additional info:

http://wiki.civicrm.org/confluence/display/CRMDOC/CiviContribute+Payment+Processor+Configuration
Protect your investment in CiviCRM by  becoming a Member!
Pages: [1]
  • CiviCRM Community Forums (archive) »
  • Old sections (read-only, deprecated) »
  • Support »
  • Using CiviCRM »
  • Using CiviEvent (Moderator: Yashodha Chaku) »
  • Pay Pal Security issue

This forum was archived on 2017-11-26.