Re: [Phpgroupware-developers] Transactions with third-party

[Jim]

Miles:

Thank you for responding.
Just so I'm clear, in my scenario there are two POST fields being sent to
the merchant commerce, one for the URL to return to on success, one on
failure

<input type="hidden" name="accepturl"
    value="http://www.mydomain/OrderSuccess.php";>

 <input type="hidden" name="declineurl"
    value="http://www.mydomain/OrderFailure.php";>

Are you saying I should use

<input type="hidden" name="accepturl"
    value=" <?php
$GLOBALS['phpgw']->session->link('http://www.mydomain/OrderSuccess.php') ?>
">


Thanks for setting me straight on this!

Jim


----- Original Message -----
From: "Miles Lott" <address@hidden>
To: <address@hidden>
Sent: Tuesday, May 07, 2002 6:13 AM
Subject: Re: [Phpgroupware-developers] Transactions with third-party


> You must use the link() function to create a proper url for redirection
> of the browser.  This is especially true if you are not using cookies
> to store the sessionid/kp3 vars.
>
> Jim wrote:
> >
> > Hello, all!
> >
> > Is there a built-in mechanism by which phpGW may be used to conduct
> > transactions across the net?
> >
> > Here is the scenario in question:
> >
> > 1) User logs in to site and places an order.
> >
> > 2) That order is sent to the merchant commerce people who clear the
credit
> > card request with the bank.
> >
> > 3) There are two URLs that are also sent the merchant commerce people at
the
> > time of the transaction: a URL to come back to if the credit card order
is
> > good, another if it fails.
> >
> > What is happening is that when the "Success" URL is being invoked by the
> > merchant commerce people I am getting the login screen with the "Your
> > session could not be verified." message.
> >
> > This tells me that phpGW is thinking that a security breech is in
progress
> > rather than closing the circle on a transaction with a third-party
outside
> > the domain of phpGW.
> >
> > Is there a mechanism built into phpGW that I am unaware of that I should
be
> > using?
> >
> > Can the user session information be saved to the phpgw_app_sessions
table
> > and brought back to resume the user's session to complete the
transaction?
> >
> > Is there another approach that I just need to be brought up to speed on?
> >
> > Thanks much for any recommendations/advice.
> >
> > Jim
> >
> > _______________________________________________
> > Phpgroupware-developers mailing list
> > address@hidden
> > http://mail.gnu.org/mailman/listinfo/phpgroupware-developers
>
> --
>
> Miles Lott - phpGroupWare
> http://www.phpgroupware.org
>
> _______________________________________________
> Phpgroupware-developers mailing list
> address@hidden
> http://mail.gnu.org/mailman/listinfo/phpgroupware-developers
>