HomeHome Product Discus... Product Discus...Payment Registr...Payment Registr...Silent Post URLSilent Post URL
Previous
 
Next
New Post
2/4/2010 12:16 PM
 

I purchased the Registration Pro Module and am currently using Authorize.net on Test Mode. Everything works great, but I have some questions regarding the Silent Post Url link that is part of the Manage Sub Module.

I have set my website URL as the URL for the Silent Post Url on my Authorize.net account.

Questions:

How does this link work? There is not much information in your guide. Can you please elaborate?

When I specify the URL for the Silent Post URL in Authorize.net, do I have to specify the exact location of the Module (specific page) on my site or can I indicate just the domain?

Also, are there any particular features of the module that cannot be tested using Authorize.net TEST MODE?

 
New Post
2/5/2010 2:11 AM
 

In the Smith Registration Module:

  1. Go to the page where you have the Smith Registration Manage Subscription module
  2. From the settings dropdown choose "Silent Post URL"
  3. When you click the silent post URL link from the Manage Subscriptions page you will be taken to a blank page. This is a hidden page that the registration module created for the sole purpose of receiving silent posts from Authorize.net.
  4. Cut and paste the URL from the browser and save it.
  5. Then go to the Authorize.net website and login using your userid and password.


To add or edit a silent post URL at Authorize.net:

1. Log into the Merchant Interface at https://secure.authorize.net
2. Click Settings under Account in the main menu on the left
3. Click Silent Post URL in the Transaction Format Settings section
4. Enter the secondary URL to which you would like the payment gateway to copy the transaction response
5. Click Submit

If the credit card for one of your portal members declines a silent post will be sent to your portal and received by the registration module. The transaction details will be stored to the database and the user will be removed from the role that they were added to when they registered.


At your service,
Dave Smith
DotNetNuke Consulting, DotNetNuke Store and DNN Ecommerce
 
New Post
2/5/2010 9:57 AM
 

Thanks for the information. Just what I needed.

 
New Post
2/16/2010 9:42 AM
 

Dave - I see a potential issue but perhaps I'm wrong.

I assume (and have tested) that for the silent post URL to be accessible to Authorize.Net, the page must be set to "All Users" and the module must follow the same security as the page. Any other configuration results in an "Access Denied" error when callng that page without being logged in.

However, this is the admin manage subscriptions page. So isn't it risky to have the manage subscriptions page be publically accessible?

Of course I can tuck it away so no one sees it in a menu - however can't someone still sniff out the URL and then wreak havoc on my subscriptions?

I'm sure there is a good answer for this :)

James

 
New Post
2/18/2010 10:54 AM
 

In the latest version of the registration module we have added the following code to the manage subscription page that will redirect non administrators from accessing the page:


if (!RoleManager.IsAdministrator())
{
Response.Redirect(RoleManager.UnAuthenticatedRedirectURL);
}


You have a good point we will look at moving the silent post url page to under the main registration module which is public access


At your service,
Dave Smith
DotNetNuke Consulting, DotNetNuke Store and DNN Ecommerce
 
Previous
 
Next
HomeHome Product Discus... Product Discus...Payment Registr...Payment Registr...Silent Post URLSilent Post URL