Does anyone know where I can get some high quality step by step info on creating a full shopping cart for an asp.net mvc 5 ecommerce application? I have seen examples out there but none of them talk about how to add working payment methods and creating a secure checkout. I want to build something like shopify checkout that is secure and simple. I just keep finding examples on everything BEFORE you reach checkout, like sessions and user adding to cart and seeing the view cart etc...
I have read the book Professional ASP.NET MVC 5 by Jon Galloway where he has the example of the MVC Music store, but nothing about how to actually process payments and all that. I know checkout has to also meet a bunch of requirements required by the processor and the gateway (don't wanna get hacked and sued or anything).. How do I even start / approach a project like this?
Can someone help push me in the right direction?
Keep in mind That iam still Newbie :)
Most of the Payment Gateway Providers are similar, in term of Payment Integration. But some might request extra/other information.
Example of Asp.net 5 + Stripe GateWay:
https://www.youtube.com/watch?v=YMWWeAkAviA&ab_channel=KaushikRoyChowdhury
I came across a question on Stackoverflow regarding payments, it's suggetst that as an "website owner" not to keep/store credit card information, instead let the Gateway Payment handle the information.
Link to the topic:
Storing Credit Card Information
Related
I am new to transferwise and want to ask if the thing i want to do is achiviable via the wise-api
The platform/business needs to automate one action among others:
Business need to ask the User to pay via Wise whenever they feel like ready.
Business give the balance account details (Wise balance account) (i think it is the borderless account, right? or is one of the overseas balance accounts [usd, eur, gbp...] )
User pay to business
Via webhook (i think so) we manage the user info and linked the stuff to the DB
Would be nice if i can use the "Request money" flow-endpoint which give you a payment-link with 14 days of exp. But i think you can't use that in the api :(
Are someone who made something like this before using wise?
I'm so new to wise and it is my first time implementing a thing like this from scratch (i'm the only backend dev haha)
I tried to folllow the docs, and i see the endpoints to do this in the Postman Collection, but i dont know if can solve the needs of the business.
If this the only way?
I cant use the "Request money" flow with the api?
Big thanks for reading!
A client has asked me to set-up card payments through authorize.net. However, I've noticed the node SDK hasn't been updated in a year and their Node SDK is only mentioned on some of their doc pages (so I get the impression it's not a primary focus for them).
I have many years of experience using Braintree Payments and Stripe. They both have great support for Node, plus drop-in/hosted fields for React (frontend). This approach removed much of the PCI compliance requirements from my server.
However, my client cannot use Braintree or Stripe because they are selling restricted items which are not allowed by Braintree's and Stripe's ToS. They currently use Authorize.net and would like me to continue to support that on their new website.
It seems my only option is to directly send card details from my React frontend to my Node API server. Which makes me uncomfortable. As Stripe's PCI guide says there are 300+ security controls in PCI DSS which need to be met if send PCI data on servers.
Here is an example of their creditCard inputs on Node, taken from their examples GitHub repo.
var creditCard = new ApiContracts.CreditCardType();
creditCard.setCardNumber('4242424242424242');
creditCard.setExpirationDate('0822');
creditCard.setCardCode('999');
var paymentType = new ApiContracts.PaymentType();
paymentType.setCreditCard(creditCard);
My question is:
It doesn't seem the best practice in 2020 to send card details through my server anymore with so many providers out there offering hosted fields. Is this a valid concern?
Would I need to get my Node.js code and PCI compliance validated by QSA?
more link:
Node.js SDK: https://github.com/AuthorizeNet/sdk-node
Their PCI compliance list (last updated three years ago?):
Hey I believe that the accept.js suite would be what you need. https://developer.authorize.net/api/reference/features/acceptjs.html Basically it takes a payment nonce after receiving your post request from the client side and sends it to your server instead of sensitive credit card in formation. I am trying to work with it myself. Maybe we could collaborate. I'm a node payment novice. I posted a question about it here.
I would like to automatically hit an api with dynamic values from my client side via a post request using javascript files. How can I achieve this?
let me know if this helps
While writing this question I found out that someone had the same concern as me in PHP/Magento in another Stack Overflow post.
Using Authorize.net's Accept.js you can send payment details directly to their servers and use a payment nonce (like Braintree/Stripe) in place of the card details.
Accept.js is a JavaScript library for sending secure payment data
directly to Authorize.Net. Accept.js captures the payment data and
submits it directly to us, in exchange for a one-time-use token, or
payment nonce. You can use this payment nonce in the place of payment
data in a follow-on createTransactionRequest API call.
Our JavaScript library offers developers two workflow options for
accepting payment:
Option 1: Host your own payment form for a PCI-DSS SAQ A-EP solution that gives you complete control of the customer payment experience.
Option 2: Embed our hosted, mobile-optimized payment information form in your page to collect the card information in a PCI-DSS SAQ A
compliant way. For a fully hosted payment solution that you can
redirect your customers to or embed as an iFrame within your page, see
our documentation for Accept Hosted.
I am new to steam API. I have been tasked to create a trade bot for a website which will use this to do steam trades, for example accept trade, offer, reject etc. Due to lack of good documentation of Steam, I am struggling to gather basic information actually.
So I want to understand these things:-
What is a trade URL?
How can the bot be able to do transaction on a user's behalf, i mean it's expected to make the transaction from bot's steam account for let's say accepting a trade offer made to a steam user with steamid 111 from another steam user with steamid 222? How it can be done?
Any information will be really helpful!
I found realy nice documentation for Steam API.
You can find it here.
Also, nice resouce SteamDatabase/SteamTracking.
You can check Steam Service status using this service.
NodeJs library Tewki/CSGO-Item-Floats-From-Inspect-Links to work with Steam API.
Hopefully, this information will be usefull.
Good luck.
I was tasked to develop a web application that has an instagram module in it. The module is supposed to do the following:
1. Display the logged in user timeline
2. Allow user to like and unlike a photo
3. Allow user to comment on a photo
My question is: will the app get approved upon submission or will it be rejected because it replicates original features?
Thanks
There is no API to get user timeline any more, it was deprecated June 1, 2016.
You probably wont get approval since you can do the same on instagram.com, why dont you just use that?
If your app is doing something significant that cannot be done with Instagram app, then there is a chance you will get approved
Does Payoneer give possibility to redirect users to their site with giving settings in POST-inquiry?
Payoneer currently not providing ways for sending users to a payment page via POST inquiries.
Having said that, we are working on new and innovative services and solutions that will enable such activity in the coming year.
Thank you,
Yaniv Chechik - CTO