I have integrated ccavenue in spring boot.
I am sending cancel_url in enc_response while hitting ccavenue api but when we cancel the transaction it does not call our cancel_url api.
[As you can see in the network tab that after canceling our cancel_url does not get a hit]
(https://i.stack.imgur.com/AhKnt.png)
After canceling our transaction ccavenue should call our cancel_url api but i cannot see any logs in network tab.
Related
I am using Laravel 8 and react for frontend. I'm using laravel passport for authentication.
Once user logs in, a token is generated and stored in browser's local storage. Then after retriving access token from local storage I setting it into the axios Authorization header to verify the user authenticity on every request.
I am integrating Paytm payment gateway using standard checkout.
I have created a callback API which call after transaction is completed and this API is protected by auth:api middleware means only logged in users can access the API.
So when user click on pay button, he is redirected to Paytm payment gateway page. On this page user does not have the access token in local storage.
So once transaction is completed callback API is called but no token is sent in the request Authorization header and user is restricted to access the API.
I have even tried saving access token in session before user redirects to payment gateway page and retrieves it in the middleware attached on the callback API but session value is null.
How can I overcome this problem?
I am working on a web application of tech stack contains front end ReactJS and backend SpringBoot 2 Microservices. Now it's time for the SSO integration **(single sign on) using the OAM(Oracle Access Manager) using SAML2 **.
I had a discussion with OAM Team and they had given me below details
Entity ID or Issuer ID
OAM Entry Point or OAM SSO URL
X509 Certificate
Assertion consumer URL (ACS URL) which i had given to them to receive SAML Response
online i could find few SSO option with SSOCIRCLE, OKTA, ONEIDENTITY etc but couldn't find any resources with Springboot2 + SSO + OAM.
Please throw some lights or any response on how to start would be greatly appreciated.
You can start with OAM installation:
https://docs.oracle.com/en/middleware/idm/access-manager/12.2.1.4/tutorial-oam-install-oam/
Refer to the following link to understand deployment and usage in application:
https://docs.oracle.com/en/middleware/idm/access-manager/12.2.1.4/tutorial-oam-protect-wlsapp/#deploy-a-sample-application-to-weblogic-server
You have to integrate below flows
Login flow: From your web application (frontend) redirect to the Federation system endpoint (get their login endpoint), this is a browser redirect. Here 2 types of configurations options are available- Either you send the xml Metadata to them when you redirect to their portal OR
These configurations can be set at OAM manually and you only have to do a simple browser redirect. (I have tried the 2nd option).
User enters the credentials in Federation page which gets authenticated by IdP and after successful authentication the SP is notified on ACS login url. So your login url will be basically a callback url which will be called by them and they will be sending a SAML response on that callback api. Once you get a notification on your callback you need to redirect the user to your portal.
For this your callback url should set http response status code as 302 and response.headers.location as the endpoint (along with saml response) where you want the user to redirect. Take care of validating saml signature before redirecting user to your portal.
On your frontend code, you will have to check for the SAML response with windows.location.search.
These steps will redirect user back to SP portal.
Logout flow: when user clicks on SP logout button, execute your logout api and then redirect user to Federation System's logout url, browser redirection, in this case User's session will also terminate at their(SAML) end and they redirect user to SP portal.
Ensure that user's sessions (both) are in sync. For this keep idle timeout and max session timeout same at both ends.
Hope this helps.
I want to create a Slack bot which will monitor incoming messages of channel, and respond to those messages based on the content using Events and Web API.
In Events API, the verification URL which I am currently using requires Shibboleth login i.e I need to put in username and password if I want to access that URL through browser.
How do I have Slack send its request to that URL? Currently Slack gets HTTP 500 error from the server, and also my server doesn't get any hit.
After talking to Slack help chat, I was told that Slack can't do auth. I was suggested to use proxy of some kind, but I ended up removing the Shibboleth from my server. Slack does sign every request it sends, so to have server respond to attackers, verify each request is from Slack before responding.
I am integrating Alipay payment gateway in my website, I have download SDK from Alipay website and using their sample code. My payment is being made successfully but I am not getting response in notify url. I want to update my DB in notify URL. Any body can help me ? How i can get response in notify URL.
Thanks,
I have integrate my paypal account with my magento ecommerce website but when trying to checkout using paypal I am getting the error "PayPal gateway has rejected request. Timeout processing request (#10001: Internal Error"
It looks like a specific payment model configuration issue. Better to contact Paypal technical team to help you on it.