Howdy DDInc., Monday, January 20, 2003, 5:45:33 PM, Double Down, Inc. wrote:
> I am also not sure if session variables will work since the person > will be leaving my site to go to PayPal to fill out the payment info, > before coming back to mine. Others have anwered the file download security issues, so I won't go there. In my experience, session vars *were* maintained when going from my site to PayPal's and back. Another thing I discovered is that PayPal's IPN will do a form post to not only your confirmation page (where you need the CFHTTP post back to their site to close the IPN loop), but will also do the same form post to your results page. I found this handy in that I moved all of my post-payment processing code (database inserts/updates, email sends, success/failure message displays, etc.) to the results page and let the confirmation page do just the CFHTTP post back to IPN. I did it this way because PayPal's IPN site will hit the confirmation page continuously until it gets a HTTP 200 success code returned. If you have emails, database updates, etc on that page, it cycles thru the entire ordeal and slows down page processing, thus possibly incurring more hits from PayPal's IPN site. -- Chris Montgomery monty @ airtightweb.com Airtight Web Services http://www.airtightweb.com Web Development, Web Project Management, Software Sales 210-490-2415 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4 FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Signup for the Fusion Authority news alert and keep up with the latest news in ColdFusion and related topics. http://www.fusionauthority.com/signup.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
