Magento Blog

Provide another level of security with Beanstream Tokenization

Wed, 19 Oct 2011 22:09:13 +0000

Want to keep your customers on site without the risks associated with storing credit card data? The Beanstream Tokenization payment module is the solution!

The Beanstream Tokenization payment module lets merchants create secure payment accounts for their customers. Because everything is secured at Beanstream, merchants can minimize the need for repeat data entry the next time a customer shops at their store.

This module is 100% PCI compliant - PCI compliance being a security standard to help merchants protect credit card data, both online and offline, for all types of credit cards. PCI Data Security Standard (PCI DSS) helps protect consumers against identity theft as well as credit card data theft. Each step taken toward PCI compliance provides another level of security.

Limit your online credit card processing risk while providing a great payment experience for your clients. Customers can add multiple cards, delete cards and reuse the same card with confidence. This module requires ioncube.

Highlights

Serve your valued clients
Did you know repeat shoppers also tend to make larger dollar purchases? Treat your most valuable clients to an optimal payment experience - don't burden them with duplicate data entry.

Simplify PCI - keep customers on site
It's the big e-store debate - struggle with PCI certification or host payment pages offsite. The Beanstream Tokenization payment module solves the issue. You'll be up and running faster and with the solution you need.

Streamline manual processing
Need to process email or phone orders? The Beanstream Tokenization payment module makes it easy. Create an account once. No need to re-enter card data for repeat orders.

How Tokenization Works
With Beanstream Tokenization, customers can create their stored cards in the checkout process while running through a standard checkout. Customers can also add cards in the manage stored cards account area.

If you need more information about the Beanstream Tokenization integration don’t hesitate to contact us and we’ll be glad to help you.

This module supports VBV 3DS Tokenization.

Our Extensions Page on Magento Connect

Fri, 14 Oct 2011 23:06:19 +0000

Look out for our extensions page on the Magento Commerce website! You can find us on Magento Connect here.

We've got plenty planned but if you are after a specific extension do let us know!

Here are our newest modules just added to Magento Connect:

Chase Paymentech Payment Module

Beanstream Tokenization Payment module

What kind of extension would you like to see us develop? Leave a comment below and tell us what you think!

New Chase Paymentech Payment extension for Magento!

Fri, 14 Oct 2011 22:27:37 +0000

We are happy to announce that CollinsHarper has released a new Chase Paymentech Payment extension for Magento. Chase Paymentech is a leading credit card processor providing fast, secure and innovative payment options for companies of every size all over the world. This module requires Ioncube.

Benefits:

Save time and money with easy, versatile implementation options

Protect customer data and boost compliance efforts

Automate your recurring payments

Enjoy peace of mind with seamless, secure connectivity

With our Chase Orbital Gateway module, you can establish secure online transaction processing in a one-stop shop environment. This module supports FULL Magento integration, which means that in addition to the integration with Frontend Checkout, you can now take Payments in the Admin Area, making it easier to take Phone orders.

Highlights:

Full suite of payment options: The Orbital Gateway supports MasterCard®, Visa®, American Express®, Diners Club®, Discover Card® and our Gift Card programs

The Orbital Gateway Module allows you to submit all transaction types such as authorization, authorization and capture, prior authorization, capture, refund, void, inquiry, and an end of day (batch)

Given the inherent risks associated with processing transactions over the Internet, the Orbital Gateway requires both encrypted traffic to prevent interception of the payload and authentication

We offer both a Community Edition and Enterprise Edition for this module. This extension has been tried and tested on the latest Magento version and is also available on Magento Connect. If you need more information about the Chase Paymentech integration for Magento don't hesitate to contact us and we'll be glad to help you.

Beanstream Interac Update for Mage CE 1.4.x

Sat, 21 Aug 2010 15:34:03 +0000

Magento Beanstream Interac module updated for CE 1.4.x

Invalid model for shipping method

Thu, 18 Mar 2010 15:02:39 +0000

You ever get this error?

Invalid model for shipping method - and your baffled?

Simplest solution is to reinstall the shipping module you uninstalled and just disable it





#0 ...src/Mage_Shipping_Model_Config.php(104): Mage::exception('Mage_Shipping', 'Invalid model f...')
#1 ...src/Mage_Shipping_Model_Config.php(64): Mage_Shipping_Model_Config->_getCarrier('ideletedashippingmodule', Array, '1')
#2 ...src/Mage_Adminhtml_Block_Sales_Order_Invoice_Create_Tracking.php(89): Mage_Shipping_Model_Config->getAllCarriers('1')
#3 /var/www/html/mage14/app/design/adminhtml/default/default/template/sales/order/invoice/create/tracking.phtml(91): Mage_Adminhtml_Block_Sales_Order_Invoice_Create_Tracking->getCarriers()
#4 ...src/__default.php(2634): include('/var/www/html/m...')
#5 ...src/__default.php(2670): Mage_Core_Block_Template->fetchView('adminhtml/defau...')
#6 ...src/__default.php(2687): Mage_Core_Block_Template->renderView()
#7 ...src/Mage_Adminhtml_Block_Template.php(81): Mage_Core_Block_Template->_toHtml()
#8 ...src/__default.php(2074): Mage_Adminhtml_Block_Template->_toHtml()
#9 ...src/__default.php(1916): Mage_Core_Block_Abstract->toHtml()
#10 ...src/__default.php(1867): Mage_Core_Block_Abstract->_getChildHtml('tracking', false)
#11 /var/www/html/mage14/app/design/adminhtml/default/default/template/sales/order/invoice/create/form.phtml(80): Mage_Core_Block_Abstract->getChildHtml('tracking', false)
#12 ...src/__default.php(2634): include('/var/www/html/m...')
#13 ...src/__default.php(2670): Mage_Core_Block_Template->fetchView('adminhtml/defau...')
#14 ...src/__default.php(2687): Mage_Core_Block_Template->renderView()
#15 ...src/Mage_Adminhtml_Block_Template.php(81): Mage_Core_Block_Template->_toHtml()
#16 ...src/__default.php(2074): Mage_Adminhtml_Block_Template->_toHtml()
#17 ...src/__default.php(1916): Mage_Core_Block_Abstract->toHtml()
#18 ...src/__default.php(1867): Mage_Core_Block_Abstract->_getChildHtml('form', true)
#19 ...src/Mage_Adminhtml_Block_Widget_Form_Container.php(130): Mage_Core_Block_Abstract->getChildHtml('form')
#20 /var/www/html/mage14/app/design/adminhtml/default/default/template/widget/form/container.phtml(37): Mage_Adminhtml_Block_Widget_Form_Container->getFormHtml()
#21 ...src/__default.php(2634): include('/var/www/html/m...')
#22 ...src/__default.php(2670): Mage_Core_Block_Template->fetchView('adminhtml/defau...')
#23 ...src/__default.php(2687): Mage_Core_Block_Template->renderView()
#24 ...src/Mage_Adminhtml_Block_Template.php(81): Mage_Core_Block_Template->_toHtml()
#25 ...src/Mage_Adminhtml_Block_Widget_Container.php(295): Mage_Adminhtml_Block_Template->_toHtml()
#26 ...src/__default.php(2074): Mage_Adminhtml_Block_Widget_Container->_toHtml()
#27 ...src/__default.php(10830): Mage_Core_Block_Abstract->toHtml()
#28 ...src/__default.php(2074): Mage_Core_Block_Text_List->_toHtml()
#29 ...src/__default.php(1916): Mage_Core_Block_Abstract->toHtml()
#30 ...src/__default.php(1867): Mage_Core_Block_Abstract->_getChildHtml('content', true)
#31 /var/www/html/mage14/app/design/adminhtml/default/default/template/page.phtml(74): Mage_Core_Block_Abstract->getChildHtml('content')
#32 ...src/__default.php(2634): include('/var/www/html/m...')
#33 ...src/__default.php(2670): Mage_Core_Block_Template->fetchView('adminhtml/defau...')
#34 ...src/__default.php(2687): Mage_Core_Block_Template->renderView()
#35 ...src/Mage_Adminhtml_Block_Template.php(81): Mage_Core_Block_Template->_toHtml()
#36 ...src/__default.php(2074): Mage_Adminhtml_Block_Template->_toHtml()
#37 ...src/__default.php(23811): Mage_Core_Block_Abstract->toHtml()
#38 ...src/__default.php(11222): Mage_Core_Model_Layout->getOutput()
#39 /var/www/html/mage14/app/code/core/Mage/Adminhtml/controllers/Sales/Order/InvoiceController.php(265): Mage_Core_Controller_Varien_Action->renderLayout()
#40 ...src/__default.php(11251): Mage_Adminhtml_Sales_Order_InvoiceController->newAction()
#41 ...src/__default.php(15150): Mage_Core_Controller_Varien_Action->dispatch('new')
#42 ...src/__default.php(14752): Mage_Core_Controller_Varien_Router_Standard->match(Object(Mage_Core_Controller_Request_Http))
#43 ...src/__default.php(16949): Mage_Core_Controller_Varien_Front->dispatch()
#44 /var/www/html/mage14/app/Mage.php(596): Mage_Core_Model_App->run(Array)
#45 /var/www/html/mage14/index.php(78): Mage::run('', 'store')
#46 {main}

Magento Shipment Export - Canada Post

Tue, 29 Dec 2009 22:42:48 +0000

Module to export Shipments to Canada post has been updated.

It now works with Canada Post EST Desktop 2.0

It exports line type 5 for Canadian orders as well as Line types 6 & 7 for USA / foreign orders.

It will cover all requirements for harm code insertion also if you have your catalog configured accordingly.

http://www.collinsharper.com/magento-canada-post-vcd-export-module.html

Magento Inline Translation Function

Fri, 18 Dec 2009 20:22:14 +0000

Just a quick note.

if you are working with a multi language site and need to do some translation that was missed / skipped in a module.

You might not have to deal with ftp / editors and such. Try the following.

as long as they are outputting the text properly ($this->__('translatable text goes here'))

you can go into your magento admin

click System

Click Configuration

Click Development in the left menu

Expand Translate Inline, then enable it

Save your changes

Now click System

Configuration

Cache Management

De Select the cache for Translations and save your changes.

Now you can goto your front end and add in translations.

Fixing Magento Errors

Sat, 05 Dec 2009 16:35:17 +0000

One of the best kept secrets that techs love; when your computer is dong something it shouldn't; reboot it.

So what do we do when Magento is not responding or playing nice?

Magento Blank Screen
Admin redirecting to dashboard
Magento Report Error
Memory limit issue

Hopefully this is your Magento Development system and not your live site.

To begin with most php errors are easier to troubleshoot with the following in your .htaccess file

php_flag display_startup_errors on

php_flag display_errors on

php_flag html_errors on

Other Magento specific options depending on the size of your database, how much your processing / crunching and what your trying to upload.

   php_value memory_limit 256M
   php_value max_execution_time 600
   php_value post_max_size 8M
   php_value upload_max_filesize 8M

If your curious what these do, checkout the php.net website (it's amazing)

Next turn off caching

Login to your Magento admin
Goto the Top right System Menu
Cache Management
In the Drop down for All cache
Disable
Save Cache Settings

And finally turn on Magento System Logging

Login to your Magento admin
Goto the Top right System Menu
Configuration
On the bottom Left of the Navigation
Developer
Then Log Settings
Set it to Yes
Save config

You now need to get into your FTP and ensure the var/log folder exists and for simplicity you can make it world writable (*777)

This should allow you to troubleshoot most everything with Magento.

Ecommerce, Security, Cheap SSL, Godaddy, 2048 bit what?!?

Sat, 05 Dec 2009 16:01:17 +0000

_{(* for all you impatient people, here it is}_{2048 bit Private Key / CSR Generation}₎

We run some management system for all our clients / domains.

It's pretty easy to use when it comes to management tasks,

Email
Adding Domains
Managing Nameservers / Hostnames
FTP accounts
SSL Certificates

Yeah.. SSL Certificates.

So if your going to have an Ecommerce site and accept credit card / payment data on

your site without redirection to like paypal, PCI compliance (*Payment Card Industry (PCI) Data Security Standard) requires you to have an SSL (https) enabled website so that your customers financial data is mostly more secure. So to get an SSL certificate you have a few options

Don't
Create a Self Signed Certificate
Create a Certificate Request and get it signed by someone who the majority of browsers already trust

We will skip the Don't part.

We normally use Godaddy for SSL's; no real reason, I started buying domains though

them a while back and it's just easier to get all your domains, SSL Certificates in the

same place. (*Short of my .ca domains which I'm pretty

sure Godaddy still doesn't offer.)

Right Godaddy SSL certificates.

I dont remember the price; but for all you recession feeling people if you google

(*or bing?!?!) SSL certificates

godaddy is listed at the top of the page.

Ok so until recently this was an easy process hit the management software

Enter some basic required information
Request a self signed certificate
Goto Godaddy
Put in Certificate Request and submit
Wait for email
Add Signed Certificates, Key & Intermediary Certificate to management software & apply settings

And your done! (*doesn't look that easy huh?)

Well now godaddy requires 2048 bit Private keys and our management software does not support it.

If your SSH / console friendly or have cygwin/ openSSL you can try this

(*note collinsharper.com should probably be replaced with your domain )

openssl genrsa -out collinsharper.com.key 2048

openssl req -new -key collinsharper.com.key -out collinsharper.com.csr

cat collinsharper.com.key

cat collinsharper.com.csr

Its going to ask you a few questions

and look something like this

[openssl@collinsharper ~]# openssl genrsa -out collinsharper.com.key 2048

[openssl@collinsharper ~]# openssl req -new -key collinsharper.com.key -out collinsharper.com.csr

You are about to be asked to enter information that will be incorporated

into your certificate request.

What you are about to enter is what is called a Distinguished Name or a DN.

There are quite a few fields but you can leave some blank

For some fields there will be a default value,

If you enter '.', the field will be left blank.

-----

Country Name (2 letter code) [GB]:CA

State or Province Name (full name) [Berkshire]:BC

Locality Name (eg, city) [Newbury]:Vancouver

Organization Name (eg, company) [My Company Ltd]:Collins Harper

Organizational Unit Name (eg, section) []:Magento Development Web Sales

Common Name (eg, your name or your server's hostname) []:www.collinsharper.com

Email Address []:stopspammingme@collinsharper.com

Please enter the following 'extra' attributes

to be sent with your certificate request

A challenge password []:

An optional company name []:

[openssl@collinsharper ~]# cat collinsharper.com.key

-----BEGIN RSA PRIVATE KEY-----

MIIEowIBAAKCAQEA0MXEo67NsPbR/ge/Gka+GfoTzrEEMQqgmlvZXFzvQP9n+tPW

--- data clipped ---

+rxNk1B9OrSDDgwXLUo6DQEDxhj6XW8oNeJUCmnsZAXbmq7N9V58

-----END RSA PRIVATE KEY-----

[openssl@collinsharper ~]# cat collinsharper.com.csr

-----BEGIN CERTIFICATE REQUEST-----

hPI7jFC1JXXdzu5zh5liEy/HRXDr3xvBaTPqdLk1fhkhqlVn77qTW6jLoscWXHWQ

--- data clipped ---

ehvTPwttZlVB+A==

-----END CERTIFICATE REQUEST-----

Thats not so bad just take that and follow the previous steps.

That does mean for all my clients I have to generate their certificates; I don't really like repetitive tasks.

So heres a fairly simple script.

2048 bit Private Key / CSR Generation

Generate

A 2048 bit Private key pair
A CSR
Even a Self Signed Certificate

you will need to save both keys and the CSR for future use.

One last thing - take your time and read the data from your parsed Certificate, they teach nurses to read data backwards then forwards (you don't skim as well reading data backwards or so I am told), this will force you to think about the information and ensure you do not request a bad certificate then have to start over.

Reset test data on magento store

Sun, 08 Nov 2009 01:01:47 +0000

Heres a quick query to purge all test data except customers.

SET FOREIGN_KEY_CHECKS=0;

TRUNCATE `catalogsearch_query`;

ALTER TABLE `catalogsearch_query` AUTO_INCREMENT=1;

TRUNCATE `sales_order`;

TRUNCATE `sales_order_datetime`;

TRUNCATE `sales_order_decimal`;

TRUNCATE `sales_order_entity`;

TRUNCATE `sales_order_entity_datetime`;

TRUNCATE `sales_order_entity_decimal`;

TRUNCATE `sales_order_entity_int`;

TRUNCATE `sales_order_entity_text`;

TRUNCATE `sales_order_entity_varchar`;

TRUNCATE `sales_order_int`;

TRUNCATE `sales_order_text`;

TRUNCATE `sales_order_varchar`;

TRUNCATE `sales_flat_quote`;

TRUNCATE `sales_flat_quote_address`;

TRUNCATE `sales_flat_quote_address_item`;

TRUNCATE `sales_flat_quote_item`;

TRUNCATE `sales_flat_quote_item_option`;

TRUNCATE `sales_flat_order_item`;

TRUNCATE `sendfriend_log`;

TRUNCATE `tag`;

TRUNCATE `tag_relation`;

TRUNCATE `tag_summary`;

TRUNCATE `wishlist`;

TRUNCATE `log_quote`;

TRUNCATE `report_event`;

TRUNCATE `log_customer`;

TRUNCATE `log_quote`;

TRUNCATE `log_summary`;

TRUNCATE `log_summary_type`;

TRUNCATE `log_url`;

TRUNCATE `log_url_info`;

TRUNCATE `log_visitor`;

TRUNCATE `log_visitor_info`;

TRUNCATE `log_visitor_online` ;

ALTER TABLE `log_customer` AUTO_INCREMENT=1;

ALTER TABLE `log_quote` AUTO_INCREMENT=1;

ALTER TABLE `log_summary` AUTO_INCREMENT=1;

ALTER TABLE `log_summary_type` AUTO_INCREMENT=1;

ALTER TABLE `log_url` AUTO_INCREMENT=1;

ALTER TABLE `log_url_info` AUTO_INCREMENT=1;

ALTER TABLE `log_visitor` AUTO_INCREMENT=1;

ALTER TABLE `log_visitor_info` AUTO_INCREMENT=1;

ALTER TABLE `log_visitor_online` AUTO_INCREMENT=1;

ALTER TABLE `sales_order` AUTO_INCREMENT=1;

ALTER TABLE `sales_order_datetime` AUTO_INCREMENT=1;

ALTER TABLE `sales_order_decimal` AUTO_INCREMENT=1;

ALTER TABLE `sales_order_entity` AUTO_INCREMENT=1;

ALTER TABLE `sales_order_entity_datetime` AUTO_INCREMENT=1;

ALTER TABLE `sales_order_entity_decimal` AUTO_INCREMENT=1;

ALTER TABLE `sales_order_entity_int` AUTO_INCREMENT=1;

ALTER TABLE `sales_order_entity_text` AUTO_INCREMENT=1;

ALTER TABLE `sales_order_entity_varchar` AUTO_INCREMENT=1;

ALTER TABLE `sales_order_int` AUTO_INCREMENT=1;

ALTER TABLE `sales_order_text` AUTO_INCREMENT=1;

ALTER TABLE `sales_order_varchar` AUTO_INCREMENT=1;

ALTER TABLE `sales_flat_quote` AUTO_INCREMENT=1;

ALTER TABLE `sales_flat_quote_address` AUTO_INCREMENT=1;

ALTER TABLE `sales_flat_quote_address_item` AUTO_INCREMENT=1;

ALTER TABLE `sales_flat_quote_item` AUTO_INCREMENT=1;

ALTER TABLE `sales_flat_quote_item_option` AUTO_INCREMENT=1;

ALTER TABLE `sales_flat_order_item` AUTO_INCREMENT=1;

ALTER TABLE `sendfriend_log` AUTO_INCREMENT=1;

ALTER TABLE `tag` AUTO_INCREMENT=1;

ALTER TABLE `tag_relation` AUTO_INCREMENT=1;

ALTER TABLE `tag_summary` AUTO_INCREMENT=1;

ALTER TABLE `wishlist` AUTO_INCREMENT=1;

ALTER TABLE `log_quote` AUTO_INCREMENT=1;

ALTER TABLE `report_event` AUTO_INCREMENT=1;

SET FOREIGN_KEY_CHECKS=1;

Magento Layered Navigation Fix

Thu, 29 Oct 2009 07:09:47 +0000

Just a short note for now. We were having issues on a site with 19 stores 500 products and way too many attributes.

Layered navigation would not finish / update properly.

We tested the script by

//# Magento Layered Nav - Badger || Duck

//# @author: Chris McKee [chrismckee.co.uk]

it would leave the nav missing some attributes and we could not get all the stores to update.

Ended up with a basic script like the following, ran it in the shell and it did the trick.

require_once("app/Mage.php"); Mage::app('admin'); Mage::setIsDeveloperMode(true); mage::log("Clear Cache "); Mage::app()->cleanCache(); $flag = Mage::getModel('catalogindex/catalog_index_flag')->loadSelf(); if ($flag->getState() == Mage_CatalogIndex_Model_Catalog_Index_Flag::STATE_RUNNING) { $flag->delete(); mage::log("Delete Flag".$flag->getState()); } Mage::getSingleton('catalogindex/indexer')->plainReindex(null, null, null);

Magento Email Spam and a fix

Tue, 27 Oct 2009 15:14:30 +0000

It is really frustrating when your email comes through as spam

Spam detection software, running on the system <>, has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn't spam) or label
similar future email. If you have any questions, see
the administrator of that system for details.

Content preview: Dear valued customer, Your order # 100000009 has been Canceled.
You can check the status of your order by logging into your account.
[...]

Content analysis details: (6.7 points, 5.0 required)

pts rule name description
---- ---------------------- --------------------------------------------------
2.4 HTML_IMAGE_ONLY_20 BODY: HTML: images with 1600-2000 bytes of words
0.0 HTML_MESSAGE BODY: HTML included in message
2.3 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
1.7 HTML_MIME_NO_HTML_TAG HTML-only message, but there is no HTML tag
0.3 HTML_SHORT_LINK_IMG_3 HTML is very short with a linked image
0.1 RDNS_NONE Delivered to trusted network by a host with no rDNS
-0.0 AWL AWL: From: address is in the auto white-list

The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.

This was pretty frustrating. So I first created a small Model override that added some proper content to the email so it would not be flagged.

This did not get the results wanted the message was still flagged. I ended up changing a core file.

You can grab the module here; it is donationware; depending on the results, we may release more in this manor.

http://www.collinsharper.com/index.php/magento-email-spam-fix.html

Let me know how it works out for you.

Magento Documentation Doxygen

Fri, 23 Oct 2009 23:27:51 +0000

Ran Doxygen on an older version of the magento tree.

http://collinsharper.com/magento_documentation/

Somewhat helpful, need to run it again with a new version and turn down some of the settings I am thinking.