EOL - What is Adyen's standpoint on the end of support of Magento 1?
We see it as our responsibility to help merchants grow in a sustainable and safe way. After June ...
We see it as our responsibility to help merchants grow in a sustainable and safe way. After June 2020 Magento 1 will no longer reflect our security standards. Therefore, we would like to support our merchants to upgrade to Magento 2 or to any other sustainable and secure platform.
EOL - What are the consequences for staying on Magento 1?
1. Non-compliance with the Payment Card Industry Data Security Standards (PCI DSS) PCI DSS is a g...
1. Non-compliance with the Payment Card Industry Data Security Standards (PCI DSS)
PCI DSS is a global set of security standards adopted by the major card schemes to secure credit card data. All merchants accepting card payments have to be compliant with PCI DSS. You can validate your compliance by completing a Self-Assessment Questionnaire (SAQ) A, please see below for definition. One of the requirements, applicable to all merchants, is that they have to install security patches within one month of release. As of June 1, 2020, Magento 1 will no longer release security updates and thus merchants can no longer comply with this requirement and subsequently are no longer compliant with PCI DSS. If merchants do not comply, it can result in fines from the schemes of between 10,000 and 25,000 EUR per month.
2. Potential data breach
We believe that internet criminals may target Magento 1 users after June 2020 to exploit any perceived security weaknesses. On average, 60% of merchants who suffer a cyberattack, are out of business within six months due to fines and costs incurred. (Source: U.S. National Cyber Security Alliance). If they survive, the damage to their brand and reputation could be long-lasting.
EOL - What is a SAQ A?
A SAQ A is a Self Assessment Questionnaire which is used as a validation tool intended to assist ...
A SAQ A is a Self Assessment Questionnaire which is used as a validation tool intended to assist merchants who self-evaluate their compliance with the Payment Card Industry Data Security Standards (PCI DSS).The SAQ A is aimed at merchants who fully outsource the collection, transmission and processing of cardholder data to a third party service provider such as Adyen.
EOL - What does "PCI compliant" mean?
PCI DSS stands for Payment Cards Industry Data Security Standards. They are a global set of secur...
PCI DSS stands for Payment Cards Industry Data Security Standards. They are a global set of security standards adopted by the major card schemes (such as Visa and Mastercard) that you must comply with in order to process card payments. If you are PCI DSS compliant, it means you are implementing the necessary controls in order to maintain a secure environment for cardholder data. Merchants need to comply with PCI DSS at all times and can validate their compliance by completing an SAQ-A.
EOL- I don’t touch / have access to card data, so why should I comply?
PCI DSS applies to all merchants that accept card payments. Because you are using Adyen, you are ...
PCI DSS applies to all merchants that accept card payments. Because you are using Adyen, you are outsourcing part of your PCI DSS responsibilities to us. However, as you accept card payments on your website or in your app (Adyen does not own that), you still have to comply with a limited number of PCI DSS requirements, one of which is installing security patches within one month of release.
EOL - Can you recommend parties to help me migrate to Magento 2?
Yes we can. Please contact us directly with your question and we will be happy to help.
Yes we can. Please contact us directly with your question and we will be happy to help.
EOL - Do you really think Magento is going to stop supporting Magento 1?
Yes, we are in direct communication with Magento, at board level. They have confirmed to us that ...
Yes, we are in direct communication with Magento, at board level. They have confirmed to us that they will stop supporting Magento 1 as of June 2020.
EOL - Would I become PCI Compliant if my system integrator secures my Magento 1 environment?
No - they don’t have a patch for it. Magento will not provide any security patches for the plat...
No - they don’t have a patch for it. Magento will not provide any security patches for the platform starting June 2020.
EOL – How can I complete the Self-Assessment Questionnaire (SAQ) A referred to in the email and on Adyen Docs?
You will receive a DocuSign request in the beginning of May, with the subject heading ‘Complete S...
You will receive a DocuSign request in the beginning of May, with the subject heading ‘Complete SAQ A for Magento 1 end-of-life’ in which you can complete this document.
Order status is not updated with the status in Adyen
There are multiple possible causes for this. See the following articles: Magento 2 does not acce...
There are multiple possible causes for this. See the following articles:
- Magento 2 does not accept notifications
- Shoppers abandon payment
- Problem in cron job
Magento 2 does not accept notifications
Symptom On our test environments we see an error message saying that our account is NOT accepting...
On our test environments we see an error message saying that our account is NOT accepting notifications; and our orders in Magento 2 are not in the correct status.
The most common problems are:
- Notification endpoint is not setup properly
- Notification endpoint has a problem
You can troubleshoot your endpoint in the Adyen Customer Area >> Account >> Server Communication >> Troubleshoot. Be sure to follow these specific steps for configuring the endpoint.
Shoppers abandon payment
Symptom Orders in the Magento 2 admin area get stuck in a pending status. This happens for paymen...
Orders in the Magento 2 admin area get stuck in a pending status. This happens for payment methods that require the shopper to be redirected to another web page.
Shoppers can abandon the checkout process at the redirected web page, meaning that it's impossible for the Magento 2 e-commerce to detect the abandonment. Adyen sends a notification when the payment offer is closed, but this needs to be enabled by Tech Support.
Search for the PSP Reference of a stuck order in the Offers tab in Customer Area (please ask email@example.com to enable this if you don’t see the 'offers' tab). If you see an offer closed or cancelled in the list, it means that the shopper abandoned the transaction before being redirected back to your e-commerce.
You can request Adyen support team to enable the OFFER_CLOSED notification via firstname.lastname@example.org, which will cancel these orders. This will not retroactively change the orders and to do so you must change the order in the database.
Other than that, offers will still stay open until they expire, which varies based on the payment method.
Problem in cron job
Symptom Orders in Magento 2 do not get updated past the "Payment Review" status, and notification...
Orders in Magento 2 do not get updated past the "Payment Review" status, and notification messages do not appear in the order comments history.
The cron job that process notifications has some problem, either with the configuration or conflict with another plugin.
Ask your development team to take a look at logs and debug the issue on the server.
There's a message saying "API key needs to be configured"
Cause This means that either you never configured an API key or your API keys are mismatching. So...
This means that either you never configured an API key or your API keys are mismatching.
Log into Adyen customer area and generate the api key. Copy the key somewhere safe and press the save button, then paste new key into the Magento 2 plugin configuration. Flush Magento 2 cache and try again.
There's a message saying secureFields object invalid
Cause API keys mismatching between your Magento 2 installation and the web service user in Adyen ...
API keys mismatching between your Magento 2 installation and the web service user in Adyen Customer Area.
- Regenerate the api key and flush cache in Magento.
- If you are in LIVE make sure that the live endpoint prefix is correct.
- Log into the Adyen customer area and check in the web service user that the Client-Side Encryption library is green. If it is not green then change it to a different version and see if this resolves the issue.
A text in the plugin is not being translated in a certain language
Symptom You see text in English when it should be in another language, or vice-versa. Cause Magen...
You see text in English when it should be in another language, or vice-versa.
Magento 2 uses a CSV file to configure translations, using a phrase as input and outputting the translated version of this phrase. These translations have to be in the file, otherwise the input text will be left untranslated.
Add your translation file to the directory https://github.com/Adyen/adyen-magento2/tree/develop/i18n. If the file is already there, add another entry at the end of it. Backup this entry as it can be overwritten or affect updates on the plugin.
I refunded my order in Magento 2 but, on Adyen the payment is on SentForSettle or Settled
Symptom Orders are out of sync regarding refund status. The order is refunded in Magento 2 admin ...
Orders are out of sync regarding refund status. The order is refunded in Magento 2 admin area, but not in Adyen Customer Area.
There are several ways of issuing a refund, but not all of those can be intercepted by Adyen's plugin.
Make sure to follow the documentation on how to issue a refund with Adyen Magento 2 Plugin.
Why is the cart emptied if a shopper cancels the payment, presses the back button or closes the browser window?
No items are removed from the cart by the plugin, but Magento 2 locks it when the payment is bein...
No items are removed from the cart by the plugin, but Magento 2 locks it when the payment is being processed. This is done to avoid malicious attacks, like a person adding more items to a cart while the payment is being processed to pay less.
A locked cart is inaccessible, so when you access the e-commerce with a locked cart it looks like you lost all your items.
Afterwards there are two scenarios that provide a bad experience:
Shopper presses the "Previous" button on AdyenHPP, issuer website, or anything else that gives Magento 2 a cancelled resultCode (NOT the browser back button)
Result: Magento 2 will cancel the order, the items of the order will be put into a new basket, and the shopper will see these and can go to the checkout again without putting the items in the basket again.
Shopper presses the back button on the browser, closes the browser window, or goes back to Magento 2 without sending anything
Result: since Magento 2 does not know that the order is cancelled, the order is still locked, along with the items.
If the shopper ends up in Magento, he will see a NEW empty cart, because the previous one is still locked, so they need to put the items in the basket again.
The locked order will be cancelled only after an OFFER_CLOSED notification reaches Magento 2, or if the merchant cancels it manually on the database. The basket won't be reset when this notification is processed.
Please note this behaviour is the same in both Magento 1 and 2.
How can I change the order of the payment methods inside Magento 2?
Solution Change the value “Sort Order” for each payment method. The lower the value, the higher t...
Change the value “Sort Order” for each payment method. The lower the value, the higher the positioning.
You can read more in the API credit card payments section of the documentation for how to set up the payment methods in Magento 2
How can I change the iframe design for the Magento 2 plugin?
To change the style inside the iframe you can add the styleObject as
To change the style inside the iframe you can add the styleObject as
Recurring contracts are not working for Vault implementation
Follow the documentation for setting up Vault payments in Adyen Customer Area. Vault contracts ar...
Follow the documentation for setting up Vault payments in Adyen Customer Area. Vault contracts are RECURRING only and will not work with ONECLICK (where the cvc is required).
ApplePay not working
ApplePay requires a private key to work properly. You need to save that key in a file and inform our plugin of the correct place of this key. For example:
- Correct: /var/www/htdocs/apple-pay-cert.pem
- Wrong: www.example.com/store/apple-pay-cert.pem
After that, flush the Magento 2 cache.
If the issue persists, try generating a new private key and following the steps on how to setup ApplePay in Magento 2.
Symptom When testing the endpoint, Magento 2 says "You have X unprocessed notifications". Cause T...
When testing the endpoint, Magento 2 says "You have
X unprocessed notifications".
There's a problem with the system's cron job.
Make sure that your cron job is running properly.
If the cron job is running, then check the
adyen_notification table if there are unprocessed notificationsmore than 5 days old. Notifications older than 5 days are not processed by cron, and you need to go in the table
adyen_notification in your Magento 2 database and update their creation date to less than 5 days.
When testing the notification endpoint I do not see an [accepted] response
Symptom When testing the notification endpoint, the plugin returns with a 301, 302 or 401 instead...
When testing the notification endpoint, the plugin returns with a 301, 302 or 401 instead of an [accepted] response.
Double check if the username and password for the notification endpoint are set properly. If you are configuring the endpoint with http, try using https instead. If you set SSL version to SSL, try setting it on TLSv1.2 instead.
Orders aren't being created after a payment is processed.
Symptom After shoppers complete the payment process and are redirected back to your web shop succ...
After shoppers complete the payment process and are redirected back to your web shop success page, the respective order is not created.
In some scenarios, the shopper's flow is disrupted after completing their payment. As a result, the order is not placed and created.
Important note: We recommend that you review and test any customizations or third-party extensions that you use in combination with this plugin. For more information refer to the technical release notes on GitHub.
Update instructions to Adyen Payment version 3.0.0 for Magento 2
Version 3.0.0 replaces Client Side Encryption (CSE) for credit card processing with Secured Field...
Version 3.0.0 replaces Client Side Encryption (CSE) for credit card processing with Secured Fields.
If you have enabled CSE on your Magento2, please follow the instructions below:
Generate an Adyen API Key:
- Log in to your Customer Area.
- Navigate to Account > Users, and click the web service user that you set in your Magento, for example: ws@Company.[YourCompanyAccount].
- Under Authentication, click Generate New API Key.
- Don't forget to copy and securely store the API Key in your system. If you lose this API Key, you won't be able to restore it later.
- Click Save at the bottom of the page.
Set up the Adyen API Key in Magento:
- Log in to your Magento2 admin panel.
- In the main menu, go to Stores > Configuration.
- In the left navigation bar, go to Sales > Payment Methods.
- Click on the Adyen All-in-One Payment Solutions
- In the Required Settings section, fill out the Test: Api-Key / Live: Api-Key fields.
- Fill out the Live endpoint prefix field: Provide the unique live url prefix: [random]-[company name]from the API URLs and Response menu in the Adyen Customer Area. For more information, please check our documentation.
Since the CSE credit card form is replaced with the Secured Fields form,
make sure that your checkout layout is displayed according to your expectations.
SFCC - Which integration type is included in the cartridge?
In cartridge version 19.1.0 and higher, the cartridge is built with Adyen’s Web Components. https...
In cartridge version 19.1.0 and higher, the cartridge is built with Adyen’s Web Components. https://docs.adyen.com/checkout/components-web
These are separate components per payment method that are used to render UI for collecting your shopper's payment details.
This will be rendered out of the box, depending on the selected payment method.