I have the Nuxt (Vue2) application with Braintree DropIn implementation. Everything works except the stored cards. I would like to activate the card which was used as the last one on DropIn load. Actually the active card is the one which was stored as the first one. How can I achieve this. It should be simple but I don't see anything about it in documentation.
Thanks for any help.
I think you did not fill out the annual Self-Assessment Questionnaire.
You must fill out a Self-Assessment Questionnaire (SAQ) annually to help you determine if your payment processing setup is PCI compliant. The SAQ includes a series of yes-or-no questions for each applicable PCI DSS requirement.
for more about this check out the documentation
Related
I need to create a web service for school project, and I need to verify that the Credit details was entered are correct.
Can anyone help create this web service or provide some links with explanations ?
I need to verify the credit by it's number, cvv and exp date.
In Addition I'm working with MVC.
Thanks in Advance.
EDIT
Since I am not going to use real details, The only choice I have got is to check only the Credit Card number. What's the best algorithm for that ? and how I can determine the type of the card ?
I have integrated Card.io successfully and it is working perfectly. But we now want to add the logo of the payment gateway we use in the screen where the card details are entered manually.
As there is no way to customize the SDKs "Enter Manually" screen, we thought of implementing a custom screen to capture the card details.
Is there a way to use the features present in the SDK's screen, in a custom screen?
Features such as credit card type detection, number validation, month and year formatting etc…
Josh from card.io here. It is a reasonable request, but to keep the API small, we tend not to expose lots of fine-grained functionality. If there is a specific thing you need that is hard/complicated/tedious to build right and stands alone nicely, feel free to file an issue asking for it.
Note that one such feature, credit card type detection, is already exposed. Take a look at CardIOCreditCardInfo.h. You can create a CardIOCreditCardInfo class, set its cardNumber, and then read its cardType.
Generally, take a look around through the header files. They are well documented, and there is more there than is covered in just the integration docs.
I want to pay my users(share profit) automatically every month using PayPal.
I read a lot about PayPal and all features. I need to configure sending payments depends on some statistics from my database.
I'm using Rails and will appreciate all any help !
Can I rewrite or change something in recurrung bills gem to pay my users ?
There are several scheduling gems for this purpose:
https://www.ruby-toolbox.com/categories/scheduling
If you are using a payment gateway such as paypal, they have support for reccuring billing. Most payment services support this. I don't know if it is possible to set up a timer like you describe in the question, but I would definitely not rely on it. What about performance and what if your app goes down?
Take a look at activemerchant and this railscasts episode.
Maybe this paypal documentation is helpful too.
On the PayPal product family, take a look at Adaptive Payments. One of the features is the ability to do what's called Implicit Payments. Essentially this feature givves you the ability to programmatically send money out of your own account, to pay somebody else.
You simply need to write the script to determine the receiver's email address, the amount you want to send them, and make the API call with that information.
Check out page 25:
https://cms.paypal.com/cms_content/US/en_US/files/developer/PP_AdaptivePayments.pdf
Although it's probably easier to write your own API call (It's basically and HTTP POST request, with some additional headers), you could probably tweak the ActiveMerchant library to do it for you.
What credit card information am I allowed to store while still being PCI compliant if I am relying on braintree for payment processing?
The reason I am asking is because, as a simple optimization, if a customer has already bought something from my store with a credit card, I can show them the last 4 digits of their credit card, and the card type, without having to make an API call to BrainTree. I'd have to make the call if they wanted to change the card or make a purchase, but for that one page, I wouldn't.
Question is, am I allowed to store:
the last 4 digits of the credit card
and the card type
and possible the cardholder name
Or where is there a list of PCI compliance "do's and don'ts" I can check out?
Yeah, it's fine to store those things.
Check out the PCI Quick Reference Guide for a brief overview of what you should and shouldn't do.
As has already been said, it's ok to store that data.
Regarding "dos and don'ts", it would be worth it to check out the Open Web Application Security Project (owasp.org). In particular, look at their OWASP guide (available here http://prdownloads.sourceforge.net/owasp/OWASPGuide2.0.1.pdf?download) on how to develop secure web applications. They cover PCI compliance and best practices starting on page 53.
I would use something like attr_encrypted gem to protect that data in the database (see https://github.com/shuber/attr_encrypted).
I need to set up a payment solution within one of our Rails apps using the ActiveMerchant library. Although this question is highly subjective, what are people experiences with the major gateways out there (BrainTree, Authorize.net etc)?
It must:
handle recurring payments.
have the ability to credit a persons account.
have the ability to void a payment.
have a way to store the users payment details (such as Authotize.nets CIM).
Cheers
ActiveMerchant is great, but there are a few issues I've discovered while working with it for the past year or so.
First, while some gateways maybe be 'supported' - not all functionality may be included. See the feature matrix to be sure the gateway you choose is fully supported -
http://wiki.github.com/Shopify/active_merchant/gatewayfeaturematrix
I've had to add additional functionality to gateways a few times.
Second, keep in mind that additional gateways may be 'supported' by applying a simple patch. Many people, myself included, have submitted support for additional gateways that are awaiting approval by Cody and crew. Most of these gateway patches are production tested and ready to go.
https://jadedpixel.lighthouseapp.com/projects/11599-active-merchant/tickets
Your problem probably relates more to your business and the fees the service will charge you than ActiveMerchant itself.
If you find yourself wanting a gateway not supported by AM you can write the support yourself or pay some AM developer to do it.
For a good explanation on fees and issues regarding Payment Gateways, refer to this post:
What's the best online payment processing solution?
Another great post about payment processors that you could read is:
Payment Processors - What do I need to know if I want to accept credit cards on my website?