topic Re: Uninformative warning message regarding HTTP GET requests in Integration and Testing

Uninformative warning message regarding HTTP GET requests

wbr — Mon, 02 May 2016 23:42:27 GMT

One of our customers received an email from Authorize.net stating,

During a system scan, we noticed that your website or payment solution is using the HTTP GET method when submitting your transaction requests to https://secure.authorize.net/gateway/transact.dll.

Because HTTP GET methods do not adhere to current TLS protection requirements, Authorize.Net will not allow HTTP GET methods for transaction requests as of June 30, 2016. We recommend that you immediately update your code to use the HTTP POST method instead.

Any transaction request submitted using HTTP GET after June 30th will be rejected.

No additional information was provided: No IP address, no log information, no transaction ID... nothing. BTW, none of our software makes GET requests to Authorize.net.

How are we to troubleshoot from such a cryptic message?

Re: Uninformative warning message regarding HTTP GET requests

RichardH — Tue, 03 May 2016 15:48:53 GMT

Hello @wbr

If you can provide a sandbox API Login, we can check our logs and get the details you'll need to update your system. If you prefer, you can use our contact us form

Richard

Re: Uninformative warning message regarding HTTP GET requests

wbr — Fri, 06 May 2016 00:16:44 GMT

This is for the live gateway. I can provide you with the gateway login for the customer that received this message, if that would help.

Thanks,

Bill

Re: Uninformative warning message regarding HTTP GET requests

RichardH — Fri, 06 May 2016 02:51:30 GMT

Hello @wbr

If this is a live production gateway, your merchant can either contact customer service or you can use our contact us form with the merchant's gateway id.

Richard