Announcement

Collapse
No announcement yet.

Using HSBC without their branded payment page

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
    #1

    Using HSBC without their branded payment page

    HSBC provide two methods of card processing over the net;

    'CPI', using an HSBC branded page, which is supported by Actinic,
    'API', using a secure transfer of a formatted XML document.
    (here's the comparison: http://www.ukbusiness.hsbc.com/publi...ec_e_pay.jhtml)

    Using the latter(API), you can write your own payment page which bears your own branding, rather than the bank's. That's what my client requires.

    Actinic Support say nobody's done API with Actinic. HSBC ePayments Tech say that nobody's done API with any product like Actinic.

    So how about you? Have you integrated HSBC API & Actinic?

    Cheers -Johnathan.
    http://www.thegigrig.com/
    Tags: None
    #2
    HSBC has not been compatible with Actinic for long really, so unlikely that anyone has developed a bespoke solution for connecting to HSBC to cover a task which is already covered in the normal method in use now.

    The problems with creating such a connection is getting at the information provided by the customer during the checkout phase, i.e. the process would be:

    Customer provides:

    a. invoice details recorded in Actinic.
    b. payment details recorded in Actinic.

    Connection to HSBC on an invisible connection requires:

    a. invoice details.
    b. payment details.

    Main problem.... Actinic encrypts all of the order details within the site so that at no time is there a potential for that sensitive information to be visible to the outside world, even if they should by hacking get at the data, it will be no good to them because the site does not hold the decryption key.

    So, can not be done afraid using Actinic cart system, as you would not be advised to include your decryption key on the site as you will open yourself up to an avenue of giving customers cards away (however remote that might sound or far fetched, it is a possibility if you have your server encryption and PC encryption sat on the site)....

    Sorry

    Comment

      #3
      Thanks for the comprehensive reply. I guess we'll just have to stick with the CPI option and advertise the bank every time we take a payment. We should be charging them for the AD space!

      Cheers -Johnathan
      http://www.thegigrig.com/

      Comment

      Previous template Next
      Working...
      X