× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. WEB400
  3. March 2008

Re: hidden form fields or server side code

Yes, what you're looking for is something that Scott's HTTPAPT or my GETURI
(www.bvstools.com/geturi.html) utility can do. Basically a web service
mimiking an HTTP POST.

I use GETURI with a couple clients for credit card posting. Works great.

As long as Net.Data can call a simple CL or RPG program during processing,
it should be fairly painless.

Bradley V. Stone
BVSTools - www.bvstools.com
eRPG SDK - www.erpgsdk.com

-----Original Message-----
From: web400-bounces@xxxxxxxxxxxx [mailto:web400-bounces@xxxxxxxxxxxx]On
Behalf Of Raul A. Jager W.
Sent: Saturday, March 22, 2008 10:14 AM
To: Web Enabling the AS400 / iSeries
Subject: Re: [WEB400] hidden form fields or server side code


Maibe you can write a small proram in the iSeries that receives the post
from your shopping cart, adds the lgo on info, and forward to the bank.
I do something similar, but instead of NetData I use RPG. To re post I
use HTTPAPI, I don't remember if NetData has something similar. Try
using "refresh" or javascript "location".

Larry Kleinman wrote:

We are using Net.Data to develop an e-commerce website and have hit the
following problem:

The "buy" button on the shopping cart page links to a secure site (HTTPS)
provided by our bank that asks for credit card info, then charges the
customer and credits our account. The bank software requires
that we pass
it our log on info (user and password provided by them) and their manual
shows examples of putting this into a hidden form field in HTML and then
POSTing it to the bank's site. The problem is that this info is
visible to
anyone who displays the source of the shopping cart page in
their browser.
The bank's manual says:

"Although our simple examples in the document show this as a
method for
passing data to Virtual Merchant, we do not recommend this for your
production Website. All sensitive merchant data, including transaction
amount and your Virtual Merchant credentials, should be
placed in server
side code, rather than of just hidden value fields on an HTML form"

How do I do that?

Larry Kleinman
Kleinman Associates, Inc.
212-949-6469
203-255-4100



--
This is the Web Enabling the AS400 / iSeries (WEB400) mailing list
To post a message email: WEB400@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/web400
or email: WEB400-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/web400.



As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.