Copy link to clipboard
Copied
I have been using PayPal payflow pro as my payment gateway and I have recently been able to successfully process credit cards for user. now I am getting a connection failure when I run a test credit card to pilot-payflowpro.paypal.com. the custom tag I am using to process credit card is <cf_PayFlowPro . Can some on tell me if there has been a change recently to <cf_PayFlowPro tag?
All help is greatly appreciated.
Copy link to clipboard
Copied
Its more likely the other way, the custom tag hasn't been changed in so long that it doesn't meet requirements of paypal's gateway any more.
Where is the website / documentation for this custom tag? Are you getting any errors come back in your logs? What version of CF are you running?
Copy link to clipboard
Copied
The only error I am getting is a "Connection Failure". Also I was able to process credit cards up until 10-9-2015. I am running CF-9
Copy link to clipboard
Copied
I, too, use PayPal. I got all kinds of emails from PayPal over the summer that they were updating their SSL and I needed to check to see if my certificate store supported their changes. From the research I did it looked like it depended on the version of Java CF was running due to its internal trusted certificates (I may be getting my terminology wrong here). Anyway, it looked like Java 1.7+ was OK...meaning CF10+.
So...since you're on CF 9 and if you haven't updated Java on your server you could be getting denied by PayPal due to outdated certificates. Try updating Java.
Copy link to clipboard
Copied
Yeah PayPal have done a lot of SSL upgrade recently, like many places and this is probably a side affect of this.
Looking at their role out schedule I noticed this:
*The SHA-1 certificate for payflowpro.paypal.com was renewed on June 15, 2015. We will be performing the G5 and SHA-256 upgrades to payflowpro.paypal.com on October 13, 2015
Sounds like this could coincide with your issue.
If you are running CF9 I would make sure you have it hotfixed to the latest version and make sure Java is updated to the highest supported version. Note 1.8 is not supported on CF 9
Copy link to clipboard
Copied
Generally everyone is dropping SSL V3 support and soon TLS 1.2 will be only protocol supported. You should make sure at-least SSL V3 is turned off on the server. Also, I would recommend using PayPal's http post method which is pretty straight forward, instead of old custom tag which may not be supported.
var httpRequest = new http();
httpRequest.setMethod("POST");
httpRequest.setUrl(GatewayURL);
httpRequest.setPort(GatewayPort);
httpRequest.setTimeout(variables.timeout);
httpRequest.setResolveurl(false);
httpRequest.addParam(type="header",name="Content-Type",VALUE="text/namevalue");
httpRequest.addParam(type="header",name="Content-Length",VALUE="#len(variables.requestData)#");
httpRequest.addParam(type="header",name="Host",value="#GatewayAddress#");
httpRequest.addParam(type="header",name="X-VPS-REQUEST-ID",VALUE="#variables.requestID#");
httpRequest.addParam(type="header",name="X-VPS-CLIENT-TIMEOUT",VALUE="#variables.timeout#");
httpRequest.addParam(type="body",value="#variables.requestData#");
return httpRequest.send().getPrefix();