Forum

Do you have any Pesapal solution that would avoid your payment popup window altogether i.e. redirect or page embedding?

For example, I would like my customers to input their card details into my own website. Then when the user places an order, my server would provide the card information to your server for authorization. I would like a process equivalent to Paypal's direct payment API or the way Visa and MasterCard works in the U.S.

Furthermore, sometimes I would like to pre-authorize the card without actually committing the transaction. Then finally commit the transaction once I am show the service or product requested can be delivered.

Even without the need for pre-authorization, being able to charge the card on the server means I can charge the customer at a time of my choosing after the customer information and order requirements have been verified. This will save the hassle of charging for an order that may need to be cancelled for one reason or another.

If avoiding popups is not a scenario that is available, then would Pesapal be open to the possibility of collecting the customers card information then submitting the popup from the server side. I believe this scenario is technically possible. The question is whether it is within you terms of service for your merchants.

Regards,
Abdel Rigumye

Hello abrigumy,

Well.. you are right, it's technically possible to allow clients to enter their card details on a form withing your own website/server. However, this is a technical approach which we would like to completely avoid. All card details MUST be filled on a form generated on our end due to security reasons. It's our responsibility to protect all card users on our system. Sorry.

Pre-authorization is available on PesaPal using our escrow system. In this system:

1. The client makes a payment.
2. The order needs to be shipped and the merchant has to mark the item as shipped.
3. The customer has the option to verify the delivery as satisfactory.
4. The payment is held in escrow until the completion of the delivery and acceptance process.

For you to use our escrow system, you need to change the xml data parameter TYPE from the default MERCHANT to ORDER. Please read this to understand what i mean: developer.pesapal.com/how-to-integrate/api-reference

Hope i've answered all your queries.

We already store credit cards from visa, master card, etc . This is because our site goes beyond the requirements for PCI DSS compliance. We use a Norton service . Our entire site is Norton EV SSL encrypted. We will be regularly undergoing security assessments and penetration tests by PCI authorized companies. So there is really no security reason why we can't store card holder information. The inability to do so would somewhat put us at a competitive disadvantage as our customers who are repeat customers would have to always re-enter their payment information. Would Pesapal be open to a custom solution or is this not in the realm of possible? Also how do you suggest integrating PesaPal with IOS/Windows/Android Apps.

Kind Regards,
Abdel