[OT]Payment Gateways

[Aaron Cooper]

Hi all,

 

One of the things I have never had to do in 5 years of developing, is integrate a credit card processing solution. I don't really believe it myself, but it's simply the nature of my work up until now.

 

Now I have 2 1/2 clients lined up for exactly that and I'm, well, a bit bloody worried really.

 

Are their any reccommendations on gateways based on cost to the client, and ability to have funds transfered to their own bank account. Ease of setup would be nice too. I'm currently looking at Worldpay on Freeparking's website, which seems to be a pretty good deal but you have to "apply" to even use it.

 

The client situations

Client #1 - Membership based system. No more than $15NZD per trans. Vendor software with a dozen or so major gateways integrated. NZ owned and Operated

Client #2 - Travel package company. Transactions in the $$$ or $$$$ a pop. Built on Silverstripe using either the Ecommerce plugin or a custom module.

Client #3 - Premium directory listings. No more than $20USD per trans. Custom built. Charge in USD, Company and probably bank located in Fiji.

 

Any thoughts, reccomendations or good resource links to help me sleep tonight?

 

Regards

Aaron

[Stig Manning]

Use paymentexpress - pxpost product.

Your server communicates with theirs for the transaction in real time and returns a result.

-Stig

--

Stig Manning
Developer

Evolution 7 Pty Ltd
P: +613-9429-0033
P: +613-9429-0433
E: st...@evolution7.com
W: http://www.evolution7.com

[Craig Cochrane]

Client #1 Paystation (will need  a merchant account with a NZ trading bank)

 

Client #2 & #3 if you are looking at $usd I'd consider www.2checkout.com

 

Craig

[Harvey Kane]

Firstly, don't write off PayPal as an option. Setting up a proper
payment gateway is a very beaurocratic process and there can be delays
from all angles - banks (especially), certificate providers, and the
client themselves. And the monthly fees / transaction fees aren't much
fun when volume is low. In fact, it's a good idea to offer Paypal as
well as other solutions anyway - some people like paying with paypal
dollars. Also, they take Amex, which your customer's merchant account
may not do by default.

Everyone seems to recommend DPS but SecurePayTech is just as easy to
use, just as powerful and is a lot cheaper for lower volume sites. I
found the DPS example code needed a bit of hacking to make it work,
which was surprising.
The payment providers I have used (DPS / SecurePayTech / FreeParking)
are all great to deal with, and fast.

Do get a proper cert for your site if you choose a non-hosted solution -
ie https://www.domain.com - make sure it's the same as your regular
domain but with https - this way you can forget about the ins and outs
of sharing sessions between domains which can be a royal pain in the arse.

Hope this helps.

Harvey.

> E: st...@evolution7.com <mailto:st...@evolution7.com>
> W: http://www.evolution7.com
>

--
Harvey Kane
www.ragepank.com
Email: har...@harveykane.com
Phone: +649 950 4133
Mob: +649 811 951

[Aaron Fulton]

I've integrated Paymate a couple of times http://www.paymate.co.nz its
kind of like PayPal but AUS/NZ based. Its linked to your bank account
indirectly, but you don't need the full on expensive merchant
agreements. Their interface is a bit ugly and they lack some of the
features of the more well known services but they are very cheap (esp
for low volume) and easy to integrate with.

[Michael Adams]

And securepaytech use a similar system in NZ. You don't even need a
secure server yourself. Your site transfers the user to securepaytechs
server for the CC transaction.

http://www.securepaytech.com/
[QUOTE]
Getting started is a simple three step process:
* Open a merchant account and request a "VPS Merchant ID" at any of
the following banks: ASB, BNZ, National or Westpac
* Complete our on-line application form
* Integrate your site or systems with our credit card processing
facilities - easy to use examples are available.
[END QUOTE]

--
Michael

All shall be well, and all shall be well, and all manner of things shall
be well

- Julian of Norwich 1342 - 1416

[.Net2Php]

Another option: www.paymex.co.nz

> > E: s...@evolution7.com

[Neftaly Hernandez]

PayPal (US) and Paymate (NZ) are pretty easy to setup, both require the
user to click through to pay off-site. They are then redirected back to
your own site, and the gateway server can send a special request
confirming payment. I haven't had any problems with either, though as
far as I can remember PayPal likes to hold on to your money for a little
while.

What I have found easiest to do with customers that already operate a
retail business is to simply verify, encrypt and record the credit card
details of the user to a database. The merchant finalizes the
transaction via an EFTPOS terminal.

[Harvey Kane]

Banks have a pretty thin view of developers doing it this way - Westpac
(I think it was them) say they are able make the developer / merchant
financially liable for any fraud that occurs from a server / database
being compromised. This may or may not be true, but in any case it's not
a great idea. To me it's just too much extra responsibility to take on
that can be avoided by letting someone else store the card number (DPS etc).

Harvey.

[Aaron Cooper]

Thanks for all your input everyone. I will look into all of them.

Cheers
Aaron

[Tim Oliver]

> Neftaly Hernandez wrote:
>> What I have found easiest to do with customers that already operate a
>> retail business is to simply verify, encrypt and record the credit
>> card details of the user to a database. The merchant finalizes the
>> transaction via an EFTPOS terminal.

Harvey Kane wrote:
>
> Banks have a pretty thin view of developers doing it this way - Westpac
> (I think it was them) say they are able make the developer / merchant
> financially liable for any fraud that occurs from a server / database
> being compromised. This may or may not be true, but in any case it's not
> a great idea. To me it's just too much extra responsibility to take on
> that can be avoided by letting someone else store the card number (DPS
> etc).

There's a pretty good chance the merchant agreement says they're not
supposed to do this, too.

--
Tim Oliver
t...@e2-media.co.nz

[Neftaly Hernandez]

The service provider Provenco didn't have any problems with me doing
this, providing sufficient records were kept. However, I would recommend
asking the provider first.