Could you please outline any changes that may be necessary to ensure that payments from sites using the Commerce Paypal module will still be processed properly?

Does this affect the module itself? or only the certificate that the site has installed?

Please advise - thank you!

"In accordance with industry standards, PayPal will no longer accept secure connections to the API/IPN endpoints that are expecting our certificate/trust chain to be signed by the VeriSign G2 Root Certificate. Only secure connection requests that are expecting our certificate/trust chain to be signed by the G5 Root Certificate will result in successful secure connections."

Details on their microsite are here:
https://ppmts.custhelp.com/app/answers/detail/a_id/1236

Comments

grahamvalue’s picture

grahamvalue commented

Subscribing.

Just opened (and closed) the duplicate issue below:
https://www.drupal.org/node/2490540

Hello,

Just wanted to give a heads up about the PayPal SHA-256 rollout.
Details: https://ppmts.custhelp.com/app/answers/detail/a_id/1236

Will this affect the Commerce PayPal module or its installations in any way?

Thank you for all the great Drupal Commerce modules!

Regards.

pbirk’s picture

pbirk commented

The first part of the PayPal changes is to discontinue use of the VeriSign G2 Root Certificate. They rolled that change out to their sandbox environment and I've successfully tested my system using 7.x-2.3. Preparing for the root certificate change should be specific to the web server, not the module code.

In my case, I confirmed the G5 certificate is trusted on my server. PayPal pointed to these instructions for Linux and Windows.

Just to be extra sure about things, I removed the certificate using Ubuntu's update-ca-certificates command and attempted a transaction through PayPal's sandbox environment. The transaction failed. Putting the G5 certificate back in place allowed the transaction to process again, as I expected.

I haven't yet looked into the SHA-256 support.

rszrama’s picture

rszrama commented
Title: Is the Commerce Paypal module compliant with new Paypal SHA--256 algorithm standards? » How do I ensure my site is compliant with new Paypal SHA--256 algorithm standards?
Version: 7.x-2.3 » 7.x-2.x-dev
Category: Bug report » Support request
Priority: Critical » Normal
Status: Active » Fixed

As pbirk pointed out, this isn't relevant to the module code itself. I suppose your server would've stopped working by now if it was going to be an issue. : D

grahamvalue’s picture

grahamvalue commented

Thank you for updates!

Status: Fixed » Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.