Cybersource Developer Community Cybersource Developer Community

wbr · ‎05-02-2016

One of our customers received an email from Authorize.net stating,

"

During a system scan, we noticed that your website or payment solution is using the HTTP GET method when submitting your transaction requests to https://secure.authorize.net/gateway/transact.dll.

Because HTTP GET methods do not adhere to current TLS protection requirements, Authorize.Net will not allow HTTP GET methods for transaction requests as of June 30, 2016. We recommend that you immediately update your code to use the HTTP POST method instead.

Any transaction request submitted using HTTP GET after June 30th will be rejected.

"

No additional information was provided: No IP address, no log information, no transaction ID... nothing. BTW, none of our software makes GET requests to Authorize.net.

How are we to troubleshoot from such a cryptic message?

RichardH · ‎05-03-2016

Hello @wbr

If you can provide a sandbox API Login, we can check our logs and get the details you'll need to update your system. If you prefer, you can use our contact us form

Richard

wbr · ‎05-05-2016

This is for the live gateway. I can provide you with the gateway login for the customer that received this message, if that would help.

Thanks,

Bill

RichardH · ‎05-05-2016

Hello @wbr

If this is a live production gateway, your merchant can either contact customer service or you can use our contact us form with the merchant's gateway id.

Richard

Cybersource Developer Community Cybersource Developer Community

Uninformative warning message regarding HTTP GET requests