ASP.NET + Testing SSL / ecommerce

Izi · 24 Nov 2009 at 21:00

Hi Folks,

How does every test payment gateways when developing?

If you have to keep uploading to a secure server and testing it becomes a PITA and I am sure there is an easier way!

Cheers

lokkers · 24 Nov 2009 at 22:40

Install a locally generated SSL certificate? Or is that the wrong end of the stick? IIS7+ allows you to create and install one in a simple wizard. I use it to test IIS-host WCF services as our live servers use HTTP and HTTPS.

Izi · 25 Nov 2009 at 00:18

ah cool i didnt know iis7 did that, thanks!

lokkers · 25 Nov 2009 at 07:14

Welcome. It's much easier to do in IIS7+ than IIS6, although it's perfectly possible too. Just remember that the certificate will only "work" for localhost - any other connections will display the certificate error (allthough SSL still works).

philjohn · 25 Nov 2009 at 10:02

Remember that if you are actually capturing numbers locally in your app before sending them off to a payment gateway/processor you'll need to be PCI compliant (and if selling the same solution to multiple people Payment Application certified too which costs £££££).

Izi · 25 Nov 2009 at 15:55

philjohn said:
Remember that if you are actually capturing numbers locally in your app before sending them off to a payment gateway/processor you'll need to be PCI compliant (and if selling the same solution to multiple people Payment Application certified too which costs £££££).

not capturing credit card numbers no, just want the checkout process (entering address, PnP etc) to show as secure.

The user will then be taken off to the payment gateway provider.