topic Re: integration to authorize.net in Integration and Testing

integration to authorize.net

gaurav_dixit — Wed, 14 Dec 2011 11:27:15 GMT

Hi ,

I am trying to integrate Authorize.net with saleforce.com using SIM mathod but i am not able to create macthing fingarprint for authorize.net .i am getting error (99) This transaction cannot be accepted.

The server-generated fingerprint does not match the merchant-specified fingerprint in the x_fp_hash field.

i am not able to generate fingerprint using force.com APEX. can any one suggest me what to do in this condition?

Re: integration to authorize.net

TJPride — Wed, 14 Dec 2011 16:43:03 GMT

All you have to do is write a function that duplicates the following (modified from the PHP API to be a bit more readable):

public static function getFingerprint($api_login_id, $transaction_key, $amount, $fp_sequence, $fp_timestamp) {
    $api_login_id =
        ($api_login_id ? $api_login_id :
        (defined('AUTHORIZENET_API_LOGIN_ID') ? AUTHORIZENET_API_LOGIN_ID : ''));

    $transaction_key =
        ($transaction_key ? $transaction_key :
        (defined('AUTHORIZENET_TRANSACTION_KEY') ? AUTHORIZENET_TRANSACTION_KEY : ''));
        
    $raw = "{$api_login_id}^{$fp_sequence}^{$fp_timestamp}^{$amount}^{$transaction_key}";

    return (function_exists('hash_hmac') ?
        hash_hmac('md5', $raw) :
        bin2hex(mhash(MHASH_MD5, $raw)));
}

The key part is the last few lines.

Re: integration to authorize.net

gaurav_dixit — Thu, 15 Dec 2011 06:16:34 GMT

can you tell me how can i encrypt this in Force.com Apex. When i tryied in Apex it is giving me error Fingur prints dont match?

Re: integration to authorize.net

TJPride — Thu, 15 Dec 2011 15:53:31 GMT

Paste the code you're using to try to create the fingerprint, preferably in a code box (fourth button from left in Rich Text mode).

Re: integration to authorize.net

gaurav_dixit — Fri, 16 Dec 2011 07:08:40 GMT

Random generator = new Random();
sequence = Long.parseLong(sequence+""+generator.nextInt(1000));
timeStamp = System.currentTimeMillis() / 1000;

try {
// First, the Transaction key is converted to a "SecretKey" object
SecretKey key = new SecretKeySpec(transactionKey.getBytes(), "HmacMD5");

Mac mac = Mac.getInstance("HmacMD5");
mac.init(key);

String inputstring = loginID + "^" + sequence + "^" + timeStamp + "^" + amount + "^";

byte[] result = mac.doFinal(inputstring.getBytes());

// Convert the result from byte[] to hexadecimal format

StringBuffer strbuf = new StringBuffer(result.length * 2);

for (int i = 0; i < result.length; i++) {
if (((int) result[i] & 0xff) < 0x10) {
strbuf.append("0");
}
strbuf.append(Long.toString((int) result[i] & 0xff, 16));
}
fingerprintHash = strbuf.toString(); //need this result to set in HTML form in x_fp_hash

String API_Login_Id='6######## ';
String TXn_Key='62############## ';
String amount='55';
sequence = '300';

long timeStamp = System.currentTimeMillis()/1000;

String inputStr = API_Login_Id + '^' + sequence + '^' + timeStamp + '^' + amount + '^';

String algorithmName = 'hmacMD5';

//generateMac(String algorithmName,Blob input,Blob privateKey) Computes a message authentication code (MAC)
//for the input string, using the private key and the specified algorithm. The valid values for algorithmName are:
//hmacMD5, hmacSHA1,hmacSHA256,hmacSHA512

Blob mac = Crypto.generateMac(algorithmName,Blob.valueOf(inputStr),Blob.valueOf( TXn_Key));

//Blob- A collection of binary data stored as a single object.
// You can convert this datatype to String or from String using the toString and valueOf methods

String macUrl =EncodingUtil.urlEncode(EncodingUtil.base64Encode(mac), 'UTF-8');

i have posted both Authorize.net java code for encoding and Apex code what i am trying to encode here .

how can i get value for x_fp_hash from APEX???

Re: integration to authorize.net

TJPride — Fri, 16 Dec 2011 15:47:07 GMT

I notice you're not putting your transaction key on the end of the inputStr, why? If you look at the code example I pasted, it has only two arguments - the algorithm type (md5) and the data (see above). The transaction key is NOT passed as the key. So your example is obviously going to fail, since the transaction key should be on the end of the inputStr and not passed as the encryption key in the third argument of Crypto.generateMac().

Re: integration to authorize.net

gaurav_dixit — Sat, 17 Dec 2011 06:55:57 GMT

thanks i solved it. my code is ok i was mistaken on last line of the code

String macUrl =EncodingUtil.urlEncode(EncodingUtil.base64Encode(mac), 'UTF-8');

it is

String macUrl =EncodingUtil.convertToHex(mac);

now it is working fine ..