Configuring Your Store RSS feed for this section
Transfirst
TransFirst is one of the nation’s leading providers of payment processing services. With more than 15 years of experience and some of the leading experts in the payment processing industry on our staff, we know what it takes to help our merchants and professional partners grow their businesses and achieve lasting success.
USAEpay
Since 1998 the USA ePay team has been making it possible for businesses to accept credit cards easily, safely and securely. Now more than ever we stand behind our products.
Authorize.net SIM Manager
What is Authorize.net SIM?
Authorize.net Server Integration Method (SIM) provides a secure hosted payment form to make integration easy for Web merchants that do not have an SSL certificate. The Authorize.Net Payment Gateway can handle all the steps in the secure transaction process:
- Secure payment data collection
- Secure transmission of payment information for settlement
- Secure cardholder information storage (more…)
Shipwire Integration
Shipwire Integration
SItes that use Shipwire for fulfillment and logistics need to ensure they are aware of how Shipwire works, and what WPeC provides in terms of integration. For example, generally speaking, the Shipwire API does not allow you to simply import products from WPeC into Shipwire. The workflow is generally reversed, it is expected that you would upload products once into Shipwire, have that inventory reflected on your site and then, generally, not change product lines. If you were to add or remove products from your catalog, that’s a manual process with Shipwire, not an API-driven one.
Once the product catalogs match (and by match, SKUs must be entered into WPeC and be identical to the SKUs used in Shipwire), it’s important that weight and dimensions be entered for each product, regardless of shipping rate used. Also important to note that the API request sent to Shipwire is based on the checkout form’s unique_names – for example, we don’t currently have a unique_name for Address2, so you’ll want to make sure the address field stays a textarea, so customers can enter multiple lines for addresses. Also, for example, the billingemail is used for the shipping email address, as WPeC doesn’t currently provide a shippingemail unique_name. Because Shipwire depends on all of these fields, we highly recommend they all be required. Lastly, if variations are used, it must be ensured that the SKUs are unique.
WPeC currently provides integration with all 4 Shipwire APIs – Inventory Updates, Tracking Updates, Shipping Rates and Order Fulfillment.
Inventory Updates
When a user hits ‘Update Tracking and Inventory’ in the Settings > Store > Shipping area, the stock count for each product in Shipwire is sync’d automatically with the inventory available in the Shipwire warehouses. If inventory started out at the right level for each product, has been properly decremented with each order, the site admin has increased inventory when new inventory has arrived, there haven’t been returns, backorders, etc., this shouldn’t make a drastic difference. But, because of all of those possibilities, this API is a great one to have integrated to ensure that inventory levels for the website reflect the warehouse realities.
Tracking Updates
The tracking updates are triggered at the same time as the inventory updates. Our integration communicates to the Shipwire server, checks the status of each available order that has not yet been checked, and updates the order status in the Sales Log area of WPeC. If a Tracking ID is available, it is entered into the Tracking field and the Tracking Email is automatically sent to the customer. Automatic customer service FTW. Action hooks within the plugin to allow other behavior to occur here – plugins could take advantage of this to update merchant notes, order statuses, etc. We may or may not do these things in core in the future, but the ability is there. For both tracking and inventory updates, we may also integrate running them via WP_Cron in the future, depending on demand.
Order Fulfillment
This is the bread and butter of Shipwire. We hook directly into the checkout process so that, upon successful checkout, Shipwire is sent the details of the order and begins the fulfillment process automatically, in real-time. The entire API interaction is completely automated and transparent, there is no end of day batching to do or anything besides sit back and make lots of money.
Shipping Rates
It is highly, highly, highly recommended that users utilize Shipwire’s shipping rates if they are planning on utilizing Shipwire. We recommend this so highly, in fact, that if Shipwire is enabled, we literally put the shipping method at the top priority, enable it and disable other rates. You can re-enable them if you like, but doing so eliminates any free support we might offer, and the universe may literally implode upon itself. That last part isn’t quite true – but we cannot guarantee a rock-solid integration with Shipwire if you are not using their shipping rates. An in-depth explanation of all of the awesome sauce that are the Shipwire Shipping Rates can be found on their website. Seriously, if you’re a Shipwire user – there is literally no reason to use any other rates.
Test Gateway
Use the test gateway to see your payment process from a buyers point of view, you can also adapt this gateway to work for Cash on Delivery
Virtual Merchant
VirtualMerchant is a complete, hosted payment solution for face-to-face and e-commerce transactions. Easy to use and economical, VirtualMerchant efficiently and cost-effectively processes payments through your Internet-connected PC. All payment information is hosted and stored by Elavon, minimizing your data security and association compliance concerns. It also integrates with multiple shopping cart applications for e-commerce environments.
UPS Shipping
Online or on the go, UPS is ready to meet your needs. Find detailed information on how to create a shipping label, track your shipment status, and more. You can do it all with UPS.
UPS is an external shipping calculator offered within WP-e-Commerce. This calculator will calculate shipping based of UPS rates, it is most commonly used for shipping through USA.
(more…)
Authorize.net 2.0
Authorize.net 2.0 is the original Authorize.net gateway for GoldCart. It supports the AIM module only, if your account supports the CIM methods then you should use the new Authorize.net AIM / CIM /ARB Gateway.
Sagepay
What is Sagepay?
Sagepay is a secure & flexible credit card payment gateway service (formerly Protx) its very similar to PayPal your customers will make their credit card payments with Sagepay and not on your site. This is a great advantage as your not responsible for handling people confidential information and storing credit card details. It is one of the most popular gateways in the UK.
Payment Express PX-Fusion
What is Payment Express PX-Fusion?
PxFusion is a product that allows merchants to accept credit card details within a form on their own web page. The form posts sensitive data directly to DPS. DPS will process the transaction and cause the user’s browser to return to the merchant website in a way that is totally transparent to the cardholder.
The process workflow can be broken down into three main steps:
- Obtaining a TransactionID (via a Web Service).
- Using a HTML form to POST sensitive data directly to DPS using the TransactionId as the identifier.
- Obtaining the results of the transaction using the TransactionId (via a Web Service).
There is another Payment Express gateway included with the gold cart – PX Post, the main difference between the two is that px post will take the user to a seccure page for payment. PX fusion will send the credit card details away for processing right from your checkout page.
For more information about the two I would talk to DPS / PAyment Express they will be able to advise you on which one to use based on your needs. If however your WebSever is not set up with an SSL Certificate and sound I would suggest PX Post as they will deal with your customers credit card details and information on their end which is secure.
DPS / Payment Express – PX Post
What is DPS / Payment Express – PX Post?
PX POST is designed to handle transactions using a HTTPS Post Request. The XML is generated at the client site and sent to https://sec.paymentexpress.com/pxpay/pxpay.aspx.
There is no DPS software needed on the client side, which makes it platform and language independent. This allows for greater flexibility & interoperability.
There is another Payment Express gateway included with the gold cart – PX Fusion, the main difference between the two is that px post will take the user to a seccure page for payment. PX fusion will send the credit card details away for processing right from your checkout page (px post is reccomended as its more secure to send your clients away for payment, unless of course you have a seccure website and your sure everything is in place).
For more information about the two I would talk to DPS / PAyment Express they will be able to advise you on which one to use based on your needs.
Setting up DPS Payment Express – PX Post in WP e-Commerce
DPS Payment Express (store > payments > linkpoint)
Linkpoint / First Data
What is Linkpoint?
LinkPoint® offers Internet payment services that give merchants the ability to process transactions over a secure Internet connection via:
-
An e-commerce enabled Web site
-
A standard Web browser for retail and MO/TO transactions
-
A wireless personal data assistant (PDA)
-
Custom commerce applications
LinkPoint® is an electronic payment gateway that helps to enable your e-commerce website. You still need a merchant account with any electronic payment gateway.
Import Settings Tab
You can import your products from a comma delimited text file.
An example of a csv import file would look like this:
Description, Additional Description, Product Name, Price, SKU, weight, weight unit, stock quantity, is limited quantity.
To upload a file simple select your CSV file and push the upload button
Presentation Settings Tab
Introduction
The Presentation tab includes a plethora of available options for controlling how your store looks and operates. Specific categories include:
-
Button Settings
-
Product Settings
-
Product Page Settings
-
Shopping Cart Settings
-
Product Category Settings
-
Thumbnail Settings
-
Pagination Settings
-
Comment Settings
(more…)
General Settings Tab
Introduction
The general settings tab is where you configure all the general settings for you shop and can be found under the main WordPress settings menu from your admin dashboard.
Chronopay
What is Chronopay?
Whether you are setting up a new e-business or adding e-commerce to an existing business, ChronoPay can provide you with secure, flexible and cost effective online payment processing solutions.
Chronopay Settings
- Product ID
- Product Name – It is displayed on the ChronoPay secure processing page.
- Accepted Currency
- Processing URL
- Return URL
- Security Key
- Debug Mode
- Under form fields link your Checkout fields to PayPal fields
- Save changes by clicking Update with the payment options dialog
Individual Product Shipping (Flat Rate)
Products can have individual shipping amounts which can be set in the shipping meta box of an individual products page.
This functionality works with the flat rate shipping module so not having that module enabled will cause individual shipping to fail.
The flat rate module ( in Settings -> Store -> Shipping) must be set up like this for individual shipping to work. Where are fields have a price of 0.00 with the decimals included
If You wish to have amounts in the Flat rate Shipping module then if The product also has shipped assigned then those two values will be added at the checkout page.
FedEX
FedEx Shipping
This Module offers shop owners the ability to provide Fedex Shipping Quotes for products with weights.
Authorize.net AIM / CIM
This is the newest Authorize.net gateway to be integrated into our Gold Cart. The new API supports the customer information manager (CIM) see here for more information (you must have CIM supported with your Authorize.net account before you can use this service)
Configuring your Payment Gateway
09 Settings – Payment Gateways from Teach Me WordPress on Vimeo.
Blue Pay
Getting the right account details from BluePay
Authorize.Net AIM / CIM
This is the newest Authorize.net gateway to be integrated into our Gold Cart. The new API supports the customer information manager (CIM) see here for more information (you must have CIM supported with your Authorize.net account before you can use this service)
Setting up your Gateway:
There are two things from authorize.net you will need before you can set this up, an API Login ID and a Transaction key follow the direction below to obtain these then your ready to set up this gateway in wp-e-commerce!
To obtain your API Login ID:
- Log into the Merchant Interface at https://secure.authorize.net
- Select Settings under Account in the main menu on the left
- Click API Login ID and Transaction Key in the Security Settings section
- If you have not already obtained an API Login ID and Transaction Key for your account, you will need to enter the secret answer to the secret question you configured at account activation.
- Click Submit.
- The API Login ID for your account is displayed on the API Login ID and Transaction Key page.
To obtain a Transaction Key:
- Log on to the Merchant Interface at https://secure.authorize.net
- Select Settings under Account in the main menu on the left
- Click API Login ID and Transaction Key in the Security Settings section
- Enter the secret answer to the secret question you configured when you activated your user account
- Click Submit
- The Transaction Key for your account is displayed on a confirmation page.
IMPORTANT: Be sure to record your Transaction Key immediately in a secure manner or copy it immediately to a file in a secure location because it is not always visible in the Merchant Interface like the API Login ID. Once you navigate away from the confirmation page there will be no other way to access the Transaction Key in the Merchant Interface. You would have to generate a new Transaction Key.
- Go to the payments section in your WP-e-Commerce store settings (Settings > store >payments)
- Select the Authorize.net AIM/CIM gateway – if you have previously been using Authorize.net 2.0 you will want to deselect that gateway and use this new one.
- Click the edit link and fill in your gateway details
- Display Name – This is the name that will appear on your checkout page if you’re using more than one payment gateway
- API Login ID – The API Login ID is a complex value that is at least eight characters in length, includes uppercase and lowercase letters, numbers, and/or symbols and identifies your account to the payment gateway. It is not the same as your login ID for logging into the Merchant Interface
You can obtain this from within your Authorize.net account (see directions above) - Transaction Key – The Transaction Key is a 16-character alphanumeric value that is randomly generated in the Merchant Interface and works in conjunction with your API Login ID to authenticate you as an authorized user of the Authorize.Net Payment Gateway when submitting transactions from your Web site.
You can obtain this from within your Authorize.net account (see directions above) - Test Mode – Only select this option if your account is in test mode, if your account is not in test mode with Authorize.net and you have this option select the checkout page will fail. At the same time if your account with Authorize.net is in test mode and you don’t select this option then its going to fail
See here for a good explanation of how the test accounts work - Enable CIM – CIM allows you to store your customers’ sensitive payment information on Authorize.nets secure servers, simplifying payments for returning customers and recurring transactions. It can also help you comply with the Payment Card Industry (PCI) Data Security Standard, since customer data is no longer stored locally.If you want to enable the Customer Management System then select this box -you must have this feature enabled on your account click here for more information.
If you select this option then a new menu will be added to the “my Account” page it would also be a good idea to make sure your users are registered to your site before they buy from your shop. You can enable this option in the checkout settings.
Users can also choose to have their credit card numbers remembered – next time they are logged into your store they can checkout using and existing card number. This provides a quicker checkout process for your buyers – without taking the risk of storing their credit card numbers on your site!
- Verify First, Capture Later - By enabling this option you are not charging the buyers credit card right away at checkout, instead the buyers details are captured and you must go into your authorize.net account to charge the transaction. The biggest benefit of this is if your shop is out of stock on a product the buyer wont be charged for the products until it has been shipped to them. The downside of this is all payment will return to spec as “order received” until the merchant approves the sale – this is not advised for downloadable products.
- Save these details your gateway is now set up.
BluePay
Setting up BluePay in WP-e-Commerce
Setting up WP-e-Commerce to run with BluePay is quick and simple, follow the directions below to get correct integration with this payment gateway.
iDeal
What is iDeal?
iDeal is the leading payment gateway in the Netherlands and soon to be an European standard.
(more…)
Google Checkout
What is Google Checkout?
Google Checkout helps you attract new customers, convert more sales and lower transaction processing costs. Google Checkout is a checkout process that you provide on your website to enable your customers to buy from you quickly and securely, using a single username and password.
PayPal Express Checkout
What is PayPal?
PayPal is the safer, easier way to pay online without revealing your credit card number.
(more…)
PayPal Website Payments Pro
What is PayPal?
PayPal is the safer, easier way to pay online without revealing your credit card number.
What is PayPal Website Payments Pro?
Website Payments Pro includes Direct Payment, Express Checkout, and additional PayPal solutions and tools, such as Virtual Terminal, Fraud Management Filters, and reference transactions.
(more…)
PayPal Website Payments Standard
What is PayPal?
PayPal is the safer, easier way to pay online without revealing your credit card number.
PayPal Website Payments Standard Settings
To start processing online payments with PayPal you need to register a new account; it’s free. Jump over to Setting up a PayPal Website Payments Standard account for a detailed explanation on signing up with PayPal, otherwise, continue reading to setup the PayPal Website Payments Standard payment option within WP e-Commerce.
(more…)
Marketing Settings Tab
11 Settings – Marketing from Teach Me WordPress on Vimeo.
Introduction
The marketing section provides different options and features for marketing both internally and externally for you store. No configuration is really required you just need to check the boxes of the tools you want to use.
Checkout Settings Tab
Introduction
The Checkout Settings tab relates to your checkout page, It is here that you set up your form fields and settings for checkout.
Payment Gateways we support / General Information
Payment Gateways within WP-e-Commerce & GoldCart
Wp-e-Commerce supports a range of payment gateways and more can be added to our plugin easily.
For more information or directions and help on configuring each gateway Click on the one that applies to you at the bottom of this page.
(more…)
Shipping
Introduction
WP e-Commerce supports a library of shipping methods with live feedback as well as shipping rules and options you can tailor to your needs.
‘Live feedback’ means accurate shipping charges are passed to the customer at Checkout by providing delivery address and ZIP Code (postcode) to supported shipping providers.
Supported Shipping Providers
Included in WP e-Commerce
Out of the box WP e-Commerce supports the following external shipping providers.
- UPS
- USPS
But wait we also include the following internal calculators!
- Weight Rate
- Flate Rate
- Table Rate
Plugins for WP e-Commerce
This list is further extended by community and premium Plugins for WP e-Commerce including:
- Fedex
You can find the following shipping plugins on WordPress.org
- WP E-Commerce Weight & Destination Shipping Modules
- WP E-Commerce Shipping
- wpsc-simple-shipping
Taxes Settings Tab
Introduction
Tax settings dictate how much sales tax customers are charged at Checkout. If your country has a single tax rate, create a single Tax Bands, otherwise, create different rates for different regions within Tax Bands.
Admin Settings Tab
Introduction
Admin settings are settings that relate to the running of your store these settings are generally only set up once.
This tab can be found under the main word press settings menu from your admin dashboard.
Securing Your Store
Introduction
Now that you are an actual business man/woman, you really can’t afford to have your site get hacked. After all, it’s not just you they’re screwing with anymore, you are actually responsible for protecting other people’s information (sucks being a adult doesn’t it?). If your site gets hacked, your e-commerce reputation can be seriously damaged, and people won’t buy from you any more! Your store will go out of business. You will be destitute, thrown out on the streets, an outcast to all… ok maybe we are exaggerating a wee bit. But seriously, you do not want your store to be hacked.
Luckily, there are steps you can take to prevent this!
Get an SSL Certificate
Depending on your payment gateway, you may not technically need an SSL Certificate, but we STRONGLY recommend you get one from your hosting company anyway. An SSL Certificate is a digital certificate that authenticates the identity of a Web site to visiting browsers and encrypts information for the server via Secure Sockets Layer (SSL) technology. In other words, it pretty much builds an impenetrable fortress around your website. Depending on your hosting company, a Standard SSL Certificate (which is all you need) will probably run you around $30 a year.
Once you get an SSL certificate, you will want to make sure your site knows it’s now secure. To do this, go to Store > Settings > Admin and change all of the URL settings to display “https” instead of “http”.
Be Password Savvy
Some vulnerabilities can be avoided by good security habits. An important element of this are passwords: do not use your own name for your password, do not use a dictionary word (from any language) for your password, do not use a 4 character string of numbers as your password. Your goal with your password is to make the search space as large as possible, so using numbers and varying capitalization all make it more difficult, statistically, to brute force a password. This is particularly important if you do not rename the administrator account. In that case half the puzzle is already solved for malicious users as they know what username will give them significant privileges to edit files and databases. The Automatic Password Generator can be helpful in generating reasonably complex passwords.
Hide Your Plugins
Be sure to hide anything that will give away what WordPress plugins you’re using and what version they are. It is easy for evil-doers to track down known vulnerabilities in older plugin versions, and if they can see what plugins are running on your site. Add blank index.html files to directories you want to protect, or add this to your .htaccess file: Options All -Indexes
Note: Before making ANY CHANGES to your .htaccess file, make sure you save a copy of it, in case you screw things up. The .htaccess file is very mysterious and powerful, and can easily kill your site if you don’t know what you are doing.
Install Security Plugins
WP Security Scan Plugin – helps tremendously when it comes to protecting your WordPress installation. However, you still need to maintain good passwords, check plugins and themes before installing them, and keep good backups of your files and database in the event that you do get hacked.
Admin-SSL plugin – If you have an SSL certificate (which we STRONGLY recommend) you can secure and encrypt all of your communication and important WordPress cookies using this plugin. It works with both Private and Shared SSL.
Security Through Obscurity
Rename the WordPress administrative account: You can do this in the MySQL command-line client with a command like
update tableprefix_users set user_login=’newuser’ where user_login=’admin’;,
Or you can do it using a MySQL frontend like phpMyAdmin.
Updates, Updates, Updates
Keep your WordPress install and all of your other plugins updated as much as possible. Staying on the leading edge of updates keeps your store from becoming vulnerable to known security vulnerabilities.
Restrict Admin Access
If you’re a single person shop, you should consider restricting your wp-admin directory to your IP address. Make sure your IP address doesn’t change before doing this. Edit your .htaccess file in your wp-admin directory and add:
Order deny,allow
Allow from 111.111.111.111 # Replace with your IP address
Deny from all
Step #6 – Logging
It is possible to log all $POST variables sent to WordPress. Standard Apache logs do not offer much help with dealing with security forensics.
Mod_Security – Logs and Prevents using Apache
Postlogger is a plugin that logs using WordPress
Step #7 – Read the Following Articles
Security and Hacking: Protect Thyself and Thy WordPress Blog
10 Steps To Protect The Admin Area In WordPress
For Goodness’ Sake BACKUP EVERYTHING
Backup your data regularly, including your MySQL databases. Data integrity is critical for trusted backups. Encrypting the backup, keeping an independent record of MD5 hashes for each backup file, and/or placing backups on read-only media (such as CD-R) increases your confidence that your data has not been tampered with.