Payment gateway
From Online Business Wiki
Click on + to expand the category
Introduction
To accept payments online you need a relationship with a payment gateway. A Payment Gateway is a service that authorizes and processes payments for online retailers in real-time. It is the equivalent of a physical POS (Point-of-sale) terminal located in most retail outlets. Payment gateways encrypt sensitive information, such as credit card numbers, to ensure that information passes securely between the customer and the merchant.
There are a couple of key decisions that need to be made in regards to payment gateways when deciding to setup an online shop.
1) Are you going to use a seamless or a non-seamless payment gateway? A seamless payment gateway is one that processes credit cards directly on your online shop website without redirecting the purchasing customer to any 3rd party website. The whole transaction is seamless and takes place in real-time. On the other hand a non-seamless payment gateway such as PayPal will redirect the purchasing customer to the PayPal website to process the payment and will redirect the customer back to the online shop after this has been completed.
2) Are you going to sell in many currencies or one currency? Its likely that for every currency you wish to sell in, you will need a payment gateway account as well as a relevant merchant account with your bank that accepts that currency. However refer to any of the supported payment gateways or your bank for details.
NOTE: Its important to note that non-seamless payment gateways adversely affect the successful completion of online shopping transactions. Customers are often frightened by the fact that they are redirect to a 3rd party website and terminate the transaction. In other instances the prolonged nature of these transactions can also affect the customers desire to go ahead with the sale. As such it is our recommendation that customers use a seamless payment gateway. The pro of a payment gateway such as PayPal is that it accepts payments in many currencies and is extremely affordable.
Diagram of seamless payment gateway
Must I use a payment gateway?
You can elect not to use a payment gateway and still receive payments through your site. Payment Gateways are great because the sale goes through (almost) instantly, and both you and your customer receive appropriate feedback that the payment has been received. However, the system also allows you to process payments offline, which means that the customer's credit card details are sent to you so that you can process it yourself, in your own time.
Payment gateways & recurring payments
The system allows you to accept recurring orders, This is when you create an order which re-occurs periodically, and automatically charges the customer's credit card.
If you are going to be creating orders like this to collect recurring payments (for example, subscription payments), you must select a payment gateway that supports them. There are some specific setup instructions for each payment gateway HERE
When "yes" appears under the "Recurring Payments" column below, it indicates that this payment gateway supports the creation of Recurring Orders for your customers.
Complete list of currently supported payment gateways
| Gateway | Country | Type | Recurring Payments? |
| Authorize.net | (US Only) | seamless | Yes |
| Banco Popular (Evertec) | (Puerto Rico) | non-seamless | No |
| Beanstream Payment Gateway | (Canada Only) | seamless | No |
| Cardia Gateway | (Norway Only) | non-seamless | No |
| CyberSource Gateway | AU,CH,IN,MX,SG,UK,US,ZA and Most Countries | seamless | No |
| DIBS Payment Gateway | (Norway) | non-seamless | No |
| Payment Express (DPS) | (US, UK, AU, NZ, ZA, SG, MY and Pacific Islands) | seamless | No |
| Payment Express (DPS - PX Pay 3D Secure) | (Hosted Solution) | non-seamless | No |
| EBS | (India Only) | non-seamless | No |
| SecurePay (formerly eSec) | (AU Only) | seamless | No |
| EWay | (most Countries) | seamless | Yes |
| Google Checkout | (US & UK only) | non-seamless | No |
| HeidelPay Payment Gateway | (Most European Countries) | non-seamless | No |
| InternetSecure Autorize Payment Gateway | (CA, US only) | seamless | No |
| MIGS Payment Gateway | (AU Only) | seamless | No |
| Mollie | (Netherlands Only) | non-seamless | No |
| Moneris Gateway | (Canada Only) | seamless | No |
| NAB (National Australia Bank) | (AU Only) | seamless | No |
| NetRegistry Payment Gateway | (AU Only) | seamless | No |
| Optimal Payments | (CA, USA, UK and Most Countries) | seamless | No |
| PayGate | South Africa Only | seamless | No |
| PayPal Standard | (most countries) | non-seamless | No |
| PayPal PayFlow Payment Gateway | (US, CA, AU, NZ, SG) | seamless | No |
| PayPal Website Payments Pro Payment Gateway | (US, CA, UK only) | seamless | Yes |
| RealEx Payment Gateway | (Ireland and UK Only) | non-seamless | No |
| Safer Pay Payment Gateway | (most countries) | non-seamless | No |
| Sage Pay (formerly Protx Payment Gateway) | (most countries) | seamless | Yes |
| Valitor Payment Gateway | (Iceland Only) | non-seamless | No |
Setting up a gateway
After logging in to your admin part of your site, navigate your mouse to eCommerce -> Payment gateways. You need to select the country code you want to assign this gateway to first.
We support a number of seamless payment gateways as listed above, and this list is ever increasing.
Each Payment Gateway has a different requirement, and as such you will be asked to input different items (such as user account name, merchant ID, transaction key, etc) depending on the gateway provider. Select the gateway you wish to use and you will see what details you need to provide for that gateway....
If you don't yet have a merchant account please visit one of these providers to setup an account. To link your shopping cart to these payment gateways through the system, you DO NOT need to do any of the coding!
Testing Payment Gateways
The best way to test a payment gateway operation is to -
- Create a 1 cent product, and add it to your catalogue.
- Purchase the product using all available payment methods.
- Ensure the order is created. If using PayPal, ensure the payment status is set to “success”
- Check your invoice that you were emailed
- Ensure the site owner has received their order workflow notification.
Using the payment gateway's test gateways is possible, however often requires special credentials and card details to be used...and we do not recommend it unless absolutely necessary.
When testing your gateway you can use this site to reference test cards if needed. - http://www.infomerchant.net/creditcardprocessing/credit_card_test_numbers.html
Paypal
Setting up Paypal[1] account
PayPal is a globally accepted payment system that enables you to collect payments from your customers in most popular currencies. It is a non-seamless method of accepting payments.
To use PayPal as your gateway with your website you need to first create a PayPal Business Account. There is no charge to setup this type of account.
Customers who wish to buy products from you do so online on your website. When customers check out they confirm their order and provide shipping and billing details using our system. However when the user is ready to provide credit card details he or she is directed to the PayPal website (i.e. they leave your website). The payment is processed securely on the PayPal website and the result of the payment is returned to us in a background process.Your customers are directed back to your website after the transaction has been completed.
Your website will automatically create an order, invoice and email a copy to your customers. You have the option to launch a workflow process that can notify the relevant parties within your business so the order can be actioned quickly.
Please follow the instructions below to ensure your site is configured correctly with the PayPal payment option.
- Select "Business Account" and the country you live in and proceed to create your account
- Login to your PayPal account and select "My Account" tab and choose "Profile" option
- Under "Selling Preferences" choose "Website Payment Preferences"
- Turn 'Auto-Return' On and add URL http://yourdomain.com/PaymentProcess.aspx (replace yourdomain.com with the URL
of your website) - Turn 'Payment Data Transfer' On and save. You will be presented with a token. Copy & paste token into appropriate
field in Admin interface. Go to eCommerce -> Payment Gateway -> select the country -> PayPal Gateway - Also enter the email address you registered with PayPal in the CustomerID field
- Turn 'Auto-Return' On and add URL http://yourdomain.com/PaymentProcess.aspx (replace yourdomain.com with the URL
- Return to "Profile" section and choose "Instant Payment Notification Preferences" option. Turn 'Instant Payment Notification' On and add URL http://yourdomain.com/PaymentProcess.aspx (replace yourdomain.com with the URL of your website)
Please note that non-seamless payment gateways such as PayPal can only be used within the online shop and the checkout process. This type of payment gateway by its nature, cannot be used in conjunction with the web forms functionality to process credit card payments.
Setting-Up PayPal in the Admin interface
Please follow these steps to setup the PayPal:
- You need to have a PayPal account, PayPal Customer ID and PayPal Payment Data transfer Token.
- Once you get the above, you need to go to eCommerce -> Payment Gateways -> Select your country and type in the above information under PayPal section.
Finally, click Save.
Your site is now ready to receive PayPal payments.
PayPal checkout process
- Customer selects PayPal, checks out and is taken to PayPal site
- Customer chooses if they want to pay using their PayPal account or Credit Card
- If they choose to use their PayPal account, they login, make a purchase and after purchase they're sent back
to your site automatically. - If customer chooses to pay by Credit Card, they fill in their Credit Card information and after the purchase they
need to click the button that says "Go back to YourSite". The reason for this is because PayPal wants to sell them
their account.
- If they choose to use their PayPal account, they login, make a purchase and after purchase they're sent back
- Customer is back at your site and they are given invoice number. The return URL is http://www.yoursitesURL.com/PaymentProcess.aspx
PayPal and web forms
You can not use non-seamless gateway, such as PayPal on web forms.
Non-seamless gateways can only be used in conjunction with a shopping cart.
You can use with one of the seamless gateways or offline processing in this case.
PayPal orders not showing in live feed
It is important that the email address you use in the Payment Gateway setup section with the Token is the "Primary" email account as setup in Paypal as Paypal will let you have multiple email addresses which you can use to login to the account etc but only the primary account will work with the system.
PayPal Website Payment Pro Setup
To integrate this gateway, all you need to do is obtain Username, Password and an API signature from PayPal and paste that information into your website's Admin under eCommerce -> Payment gateways.
Here are the steps you need to take in order to obtain those details from PayPal:
1. Go to the PayPal website and log in.
2. Go to My Account -> Profile
3. Click on Request API credentials
4. Under Option 1 - PayPal API, click on Set up PayPal API credentials and permissions
5. Under Option 2 - Request API credentials to create your own API username and password, click on View API Certificate.
6. Now, select Request API signature and click Agree and Submit.
Then, simply copy the information from the above screen and add it to afore mentioned page on your website.
NOTE: If you are using this gateway to process the recurring transactions you will not to opt-in for a Fruad Management Package or your recurring orders will not work.
3D Secure (Cardinal Centinel) Setup
Setting up Transaction Password in CardinalCommerce Admin
1. Log into your Cardinal Centinel Production profile: https://paypal.cardinalcommerce.com using your paypal email address and password (If you have not previously logged in you may be prompted to accept license agreement, please do so to continue)
2. Select Manage Profile from Main Menu:
3. Select Manage Profile Information:
4. Set your transaction password in the field provided. This is not a pre-defined password, you are creating the password by entering it into this field:
5. Hit Enter button to Save. The CardinalCommerce set-up is now complete.
Setting up Cardinal Centinel in the admin of your site
1. Login to your website and navigate to the ‘eCommerce -> Payment gateways’ page. If you have not already done so, select the country ‘United Kingdom’ and the ‘Paypal Website Payments Pro Gateway’. You will notice that this now displays the payment gateway details fields as well as the Cardinal Centinel details fields. Fill in these fields as provided by Cardinal Centinel in the above section.
2.You will need to add the below code to the ‘Admin > More customization options > Online shop layouts > Registration (buy)’ layout:
<div id="ErrMsg" style="display: none;">
<div class="system-error-message">
<h2>Credit Card Payment Failed</h2>
<p>There was an error processing your credit card. Please correct this or choose another form of payment.<br />
<strong>{module_error}</strong> </p>
</div>
</div>
<script type="text/javascript">
//<![CDATA[
ExecuteMessage();
function ExecuteMessage()
{
if ('{module_error}' == '')
document.getElementById("ErrMsg").style.display = "none";
else
document.getElementById("ErrMsg").style.display = "block";
}
//]]>
</script>
It is recommended that this is placed at the top of your layout as this is used to display the returned message such as any errors that may occur.
Payflow Pro Setup
- Sign-up for a Payflow Pro account at the PayPal website. They will supply you with a username, password, and Partner ID.
- Add these settings to your site in eCommerce -> Payment Gateways.
- Please take the time to test the settings after configuring them.
Please note that the 'PARTNER' field (Required) is the ID provided to you by the authorized PayPal Reseller who registered you for Payflow.
If you purchased your account directly from PayPal, use 'PayPal' in this field.
Offline payments
Offline Payments are a way to process payments submitted online, yourself. You can process your payment through your existing facilities, in your own time.
After login into the admin part of your site, navigate your mouse to eCommerce -> Payment gateways. You need to select the country you want to assign this gateway to first. Then you need to select "processing offline" from the gateway list.
Finally, you need to type in "A strong passphrase to protect the transaction information PDF files" in the field provided and you also need to supply the email addresses to which the encoded PDF file, which contains the credit card information, will be sent to. Make sure you separate the email addresses with semi-column (;) and make sure that there are no spaces anywhere in that field.
When the order gets processed, the credit card information will be emailed in the encrypted PDF file to the email addresses provided and you will need the same passphrase to decrypt the fiel and obtain the information from it.
Please note that we will not collect CVV, CVV2, CVC2 & CID as per PCI standards. A Card Verification Value code, CVV, (CVV2 for Visa, CVC2 for MasterCard and CID for AMEX) is the three or four digit number located either on the front or back of a credit or debit card. The effectiveness of this code is limited to the ability to keep it out of the hands of hackers and thief's, which is why it is prohibited by PCI Standards from being stored in any shape of format.
Google Checkout
After you have setup the Google checkout account, you will have to modify few settings in the Google checkout admin area.
Login to Google checkout and go to:
1. Settings -> Integration, and you have to assign the secure url/PaymentProcessGoogle.aspx and API callback URL
2. Settings->Preference, and select the "Automatically authorize and charge the buyer's credit card".
RealEx payment gateway
RealEx payment gateway is a non-seamless gateway for Ireland and the UK.
Return URL for this gateway is http://yoursiteURL/PaymentProcessRealEx.aspx.
Authorize.net
With Authorize.net, once you get your account you need to login and obtain 2 pieces of information which you then need to place into your website's backend under eCommerce -> Payment Gateways.
These are the API Login ID and Transaction Key. To obtain these details you need to go to Settings -> and click on API Login ID and Transaction Key in Security Settings section.
You then need to answer the security question to get the Transaction Key.
Once you have these details you need to go to eCommerce -> Payment Gateways on your site, select the country and Authorize.net from the dropdown lists and enter the information into the corresponding fields.
CyberSource Payment Gateway
The Cybersource payment gateway requires a Merchant Key (or Transaction Key) to operate. The details of how to obtain this key from Cybersource are below -
- Log into the Business Center.
- In the navigation pane, click Account Management > Transaction Security Keys. The Transaction Security Keys page appears.
- Click Security Keys for the SOAP Toolkit API.
- Click Generate Key - Your new key immediately appears in a box below the table. As the text on the Web page states, you must save your key now because the key content will disappear as soon as you leave the Web page. If you forget to copy or download your password,you will need to create a new password and delete the previous one.
- Click Download.
A file download box appears. You can either open the file in a text editor to save the key manually, or you can save the key to your computer.
Important - Make sure to save your key in a secure location.
Sagepay / Protx Payment Gateway
This payment gateway will require from you to supply it with the server's IP address before it can accept payments.
You need to supply them with the following IP Addresses (Depending on the data centre your site is hosted on -
- 202.138.55.226 - Asia/Pacific servers
- 202.176.14.130 - NEW Australian data centre
- 69.20.239.58 - North American data center.
- 192.150.2.4 - NEW United States data centre
- 83.231.199.174 - European Data centre
- 192.150.8.6 - NEW European data centre
You can add support for Switch, Solo, Maestro, and Electron cards to the checkout form with a few steps. See this article for details.
EBS Payment Gateway (Non-Seamless)
EBS requires some mandatory fields in your online shop checkout form, so you will need to ensure you collect these details in the registration process....
- Firstname
- Lastname
- Phone Number ('Customer Home Phone Number field')
- Billing details (Address,City,Country,PostCode)
See Online Shopping Layouts for details on how to customise the checkout options
Additionally, your domain name has to be registered with EBS before using this Gateway, and if you use the "HTTPS" secure URL then you need to provide this to EBS also.
Banco Popular (Evertec) Payment Gateway (Non-Seamless)
Within the registration process for the Evertec payment gateway, you need to provide information related to your website and personal details.
The details that you will need to provide are as follows -
- Merchant Name - e.g: www.yourdomain.com
- URL post for the online response (this will be https://[secure url]/PaymentProcess/Evertec)
- Return URL (this will be https://[secure url]/PaymentProcess/Evertec?transact=yes)
- IP address of server where the posted URL is located (You need to supply them with 202.138.55.226 if your site is hosted on Asia/Pacific servers and 69.20.239.58 if your site is hosted on North American data center).
Note - Banco Popular uses the secure URL of your site to communicate with our system. You can find this under as described in the Domain Name Article
For example - if the secure Url is [yoursitename.worldsecuresystems.com].
- The Url Post is: https://yoursitename.worldsecuresystems.com/PaymentProcess/Evertec
- The Return Url is: https://yoursitename.worldsecuresystems.com/PaymentProcess/Evertec?transact=yes
You need to confirm with Banco Popular whether the Post and Return Urls are being 'listened for' by theeir system. This step is part of its process.
For more information about Banco Popular (Evertec) service, please refer to :
- (English) http://www.evertecinc.com/eng/index.html
- (Spanish) http://www.evertecinc.com/html/index.html
Mollie (Non-Seamless)
To use this gateway, you will need to add the following HTML and javascript code in your Registration-Buy layout (Netherlands)
<!-- Add this HTML code goes inside your table -->
<tr>
<td>
<label for="banks">Select your Bank<span class="req">*</span></label><br />
<select id="banks" name="extras1" class="cat_dropdown"></select>
</td>
</tr>
<!-- Add this JS code after "... return false;}}" inside the 'script' tag -->
LoadBanks();
function LoadBanks()
{
//Load BankID select
var bankList = document.getElementById("banks");
bankList.options[0] = new Option("ABN AMRO","0031");
bankList.options[1] = new Option("Fortis","0081");
bankList.options[2] = new Option("ING/PostBank","0721");
bankList.options[3] = new Option("Rabobank","0021");
bankList.options[4] = new Option("SNS Bank","0751");
//bankList.options[5] = new Option("Test bank","9999");
}
If you need to add extra banks available from Mollie Gateway to your list, check the following link: http://www.mollie.nl/xml/ideal?a=banklist and you can expand the above options list code.
NAB gateway
Important thing to note about this gateway is that the Username/Merchant number is a 7 digit number and can not be anything else. All their Usernames are in the format of 3 letters + 4 numbers.
Payment Express (DPS) payment gateway
The return URL for this payment gateway is https://yoursite.worldsecuresystems.com/PaymentProcessDPS.aspx
