alanmillo

Interesting, I just had a quick look, and I’m not entirely sure it will be the best solution for my use case, however, I will have a deeper look since it might help to increase conversion over time.

Thank you, and if at some point you made changes to support my use case, even if you just add some hooks that will allow me to change the way the flow works, it will be good enough as a starting point for me to explore.

Again, thanks a lot for such a great plugin!

Hi,

Thanks for such a quick reply (as always).

My goal is to increase conversion rate, therefore I have the “skip final review” option enabled and I only require customers that buy non downloadable products, to only enter a country before checkout to calculate delivery rate. I would like to keep it as such as it does get confusing for the user to have to jump from Website -> Paypal (think is going to pay) -> Website to do final confirmation. This gives the user multiple chances to abandon the purchase.

I’m starting to think that neither of my suggestions is perfect anyway, maybe this one adjust better to my requirements,

If there is something on the cart, that is not downloadable/virtual, then go to checkout page first.
If all products in cart are downloadable, it is ok to go to Paypal directly, previous acceptance of terms and conditions. Even though, it is confusing for the user to click to buy one product and find out in paypal, he is buying everything on the cart.
T & C can be accepted in two ways,
– A pop up from the product page (which means, this becomes a 2 steps checkout)
– A checkbox on each product page for T & C acceptance that is required before redirecting to Paypal.

I understand this is a particular use case that I have, so it might not be sensible to request it as a feature. If you folks don’t feel is something to take into consideration, I would appreciate if you could give me some guidance on a few hooks that I can use to plug the functionality in, or if there are no hooks, I would appreciate if you could add a few of them for future releases, so I don’t have to change plugin code that will prevent me from updating to latest versions.

Thanks and have a good weekend.
Alan

Thanks for your response,

You are right, it might not be a security bug as it doesn’t compromise the application as such. A more fair classification would be a “reputational bug”?

Given users might be able to place orders without having enough inventory, it will require the site owner to contact those users and potentially cancel their orders, having at the end of the day some unsatisfied customers. It will as well cost website owners some money, as Paypal transactions are not refund free (or at least Paypal free model is not).

I will check if I can manage to find a quick implementation for such feature and will make a GIT pull request.

Cheers,
Alan

Hi Danny,

Thanks for your answer. Understood with regards to the “usage tracking” checkbox.

Given I’m not planning to use the cookie info on any other part of my site, I would like to have your code sample, if you don’t mind, so I don’t need to tell the user about a new cookie being added to the site ;).

So far the only way I’ve found to disable the functionality was by commenting the call in the plugin, which I really don’t want to do as that will mean having to make sure I make the change everytime I update the plugin.

Thanks Danny

Thanks, I will come back with more if if required, or with the solution so everyone else hitting this issue has a way to fix it.

Thanks!

Thanks for tour response.

Just double checked cURL lib, and seems to be installed. CURL was my first thought, but since it seems to be ok, or at least enabled, I starting digging into Paypal notifications around the web and I’ve found this

https://www.paypal-techsupport.com/ -> URGENT – 2015-2016 SSL Certificate Change Microsite

I’m in touch with my hosting provider, and they came back to me suggesting to contact Paypal, since they think Paypal is not accepting self signed certs.
My personal perspective is that is not a Paypal problem, otherwise I would probably find my answer to the problem by just searching on google, as more than one person will be raising the concern.

At this point I can only think that the cert provided by my hosting company (didn’t know a cert was required to establish connection with Paypal) is expired or is just not using SHA-256.
The other thought is that maybe cURL is wrongly configured and is expecting SSL verification as the flag to ignore it is not setted.

unfortunately I do not have SSH access to the machine to try it by myself, so I guess I will have to wait for my hosting provider to come back

What do you think? Are my thoughts inline with a normal/possible reason for the issue?

Thanks