dashCommerce

Hi all,
I am using dashcommerce with paypal, and it wrorks fine.
Now I need anoter dashcommerce that works without the paypal functionallity.

 reason is that no one owns paypal iun my country, and since I own a physical store, I can bill by my self.
All I need is dashcommerce to store all the billing details include the creditcard numbers, and then I will bill all by myself. without any online billing.

Yitzhok already mention a new payment provider should be  written.
What I am asking is there a ready to use/buy provider? or I will have to use another project for that?
I am a developer myself, so if I will have tps on how to make the modification, I can try make the changes, I hope there are some bypass for this problem.

thank you.

megetron:

All I need is dashcommerce to store all the billing details include the creditcard numbers

dashCommerce would not produce a payment provider that stores full credit card numbers - it's just too risky and not worth the potential risk to the project as a whole. You may be able to use the ZeroPaymentProvider that is in the patches section on CodePlex to give you a starting point, but I'd suggest that keeping the credit card numbers around is exceptionally risky and that doing so would pose a lot of risk to your business. </soapbox>

so what you suggest is to encrypt the credit numbers before store them on DB.
Can you tell me where do I find the credit numbers? in the Order object? How to make a basic verifications for the data? any tips?
Is it going to be OK, if I will insert data into database at the end of the function? if I find some errors in my local verification, how can I display error to user?
How do I add the new provider to the admin section, and set it to active?
I will be happy to hear suggestions from one who knows the code and already done changes in there. 

        private static Transaction DoTransaction(Order order, int transactionTypeId)
        {
            Transaction transaction = new Transaction();
            transaction.OrderId = order.OrderId;

            transaction.TransactionTypeId = transactionTypeId;

            transaction.PaymentMethod = PAYMENT_METHOD;
            transaction.GatewayName = GATEWAY_NAME;
            transaction.GatewayResponse = GATEWAY_RESPONSE;

            transaction.GatewayTransactionId = String.Empty;
            transaction.AVSCode = String.Empty;
            transaction.CVV2Code = String.Empty;

            transaction.GrossAmount = order.Total;

            transaction.TransactionDate = DateTime.Now;
            transaction.GatewayErrors = String.Empty;
            transaction.Save("System");

            return transaction;
        }

megetron:

so what you suggest is to encrypt the credit numbers before store them on DB

No, encryption relies on a key, which if compromised, would give someone access to all of the credit card numbers you stored. The strongest thing for encryption of this type is a cryptographic key management server, which we don't have - they cost LOTS of $$ - but they cycle keys based on policies you set up. (BTW - if anyone wants to build one - I'd be interested. )

What I would suggest is not keeping the data at all. As Yitzchok has mentioned, most of this risk / exposure can be pushed down to the payment provider. Not sure what your reasons are for not using a payment provider, but this is about the best reason TO use one.

As for all your other questions, you can check out the PayPal payment providers - they are good examples on how to get a payment priovider. Also, Robert_Mims has a brief TODO list of sorts on how to create the providers, which you can do a search for.

Hope this helps.

The Authorize.NET solution sounds intresting...and they charge only 5$ per month.
Do we have providers for this service?

Yes, the Authorize.Net payment provider is available on dashCommerce.com

Hi admin

i have just downloaded the ZeroPaymentProvider but don't know how to use it. Can you tell me how to implement this or any other way to disable the Paypal functionality? At this time my client's payment method is only "pay when receive", so the clients are always happy. And paypal is not available in the area

Thanks 

 I reading through the forums looking for the answer to the same question.

I didn;t like the AJAX checkout process, so I took on rewriting this as a series of 6 checkout steps.  Each with their own aspx page.  I've captured the credit card details in step 4, and in step 5 I'd like to display the masked card number and exp date as part of the order review, and then finally process the payment on the order on the user's command.

I took me a while to figure out that the credit card details where not being saved in the DB at all.  I'm looking for a viable solution to store the CC number to be used in this process, and ditch it after checkout is complete.  I've toyed around with Session variables, Cookies, Additional Properties of the Order, and server.transfer calls.

Do you have any reccomendations for the best/most secure way to keep the customer's credit card number around for the short term? If I do use the Session variable, should I be encrypting the card number before I store it and trnasfer between pages?

Thanks, your help is much appreciated.

XeroOne, I didn't implement it yet, but the Authorize.NET solution is one of dashcommerce options. the team built a new provider that connects dashcommerce to autorize.net servers. this is a very secure server where you can save your credit card numbers without taking any risk. the provider costs 100$ one-time charge, and monthly cost for authorize.net servers. 5$ I think.

I thought of keeping the credit cards in DB, but admin and yitzchok warned me that this step is very dangerous and you when something happens everyone comes and scream on the programmer. so you should consider authorize.net as a solution or just proceed with paypal.

Vali83 - I suggest to download the new patch added by admin. it will be part of the next version of dashcommerce, so it will be supported to.

take a look on this post for further details:
http://dashcommerce.org/forums/p/1116/5285.aspx#5285