Authorize.net

The Authorize.net gateway built into Restrict Content Pro allows you to use your Authorize.net account to accept credit cards directly on your website.

Note: An SSL certificate is required to use Authorize.net. Read our article on SSL certificates for more information.

To enable Authorize.net, go to Restrict > Settings > Payments and enable Authorize.net.

Next, scroll down to find  Authorize.net Settings at the bottom of the page. These fields are required in order to use the gateway.

There are two sets of credentials: test (for sandbox testing) and live (for processing real transactions).

Finding your API login ID and transaction key

These details can be obtained from your Authorize.net merchant interface.

  1. Login to the Merchant Interface at https://account.authorize.net/
  2. Click Account from the main toolbar.
  3. Under Security Settings, click API Credentials & Keys.
  4. Your login ID will be noted on the page and you can use the form to create a new transaction key.
  5. Enter the details in your Authorize.net Settings in Restrict Content Pro.

Setting your MD5 hash value

To set your MD5 Hash Value in Authorize.net, follow these steps:

  1. Login to the Merchant Interface at https://account.authorize.net/
  2. Click Account from the main toolbar.
  3. Under the Security Settings section, select MD5-Hash.
  4. Enter the MD5 Hash Value that you'd like to use. This can be anything you want - there are no rules or character requirements.
  5. Confirm the MD5 Hash Value.
  6. Click Submit to save the changes.
  7. Enter the same value in Restrict > Settings > Payments in the Authorize.net section.

Silent post configuration

Authorize.net uses something called "Silent Post Configuration" to communicate with your store and update payment records and accounts when recurring payments are processed. You must configure Silent Post Configuration inside of your Authorize.net account in order for recurring billing to work properly and for payments to be logged in Restrict Content Pro.

Follow these steps:

  1. Login to the Merchant Interface at https://account.authorize.net/
  2. Click Account from the main toolbar.
  3. Under Transaction Format Settings select Silent Post URL
  4. Enter your store's main web address with /index.php?listener=authnet at the end. For example: https://example.com/index.php?listener=authnet (be sure to change example.com to your own site's domain name).

Note: Restrict Content Pro must be network activated if you're using it in a multisite environment. This is because Authorize.net only allows for one Silent Post URL, so you wouldn't be able to set up separate URLs for each sub-site.

Payment flow

With Authorize.net, customers will be shown a credit / debit card form directly on your registration form:

After filling in the credit / debit card details, the customer will be presented with a processing indicator. If the card is successfully charged, the customer will be redirected to the success page. If the card fails, the customer will be shown an error message.

Testing Authorize.net

It's important to test Authorize.net in sandbox mode before starting to accept live payments. To test that payments are working as expected, follow these steps:

  1. You will need to create a sandbox account at http://developer.authorize.net/hello_world/sandbox.html
  2. You will receive a new set of API credentials for the sandbox environment (login ID and transaction key). Enter these both in the "test" fields in your Restrict Content Pro settings.
  3. Enable Sandbox Mode in the Restrict Content Pro settings.
  4. Your Authorize.net sandbox should always be set to Live Mode. Despite the name, transactions in the sandbox area are not submitted to financial institutions for processing; they are just simulated.
  5. Visit your website's registration page while logged out.
  6. Enter the user information. This can be anything, though a real email address that you have access to is advised so you can also test that emails are being sent as expected.
  7. Choose a paid subscription level.
  8. Choose "Credit Card" as the payment method.
  9. Enter "4111111111111111" for the card number. (Other test card numbers are available here.)
  10. Enter any future date for the card expiration, such as 12 / 2020.
  11. Enter any 3-digit combination for the CVC code, such as "123".
  12. Click "Register".
  13. You should now be redirected to the success page and logged-in as your new user.
  14. Check your Authorize.net sandbox account. Click Tools in the top menu, then click Recurring Billing on the left. Click through to view your subscriptions.
  15. Your new user now has a fully activated account.

You can read more about testing Authorize.net in  this article.

Note: The "Silent Post URL" feature does not work in the Authorize.net sandbox environment, so payment records will not be recorded in Restrict Content Pro while testing.