Payment ServicesPostFinance

PostFinance

Sana Commerce 9.1
Your connector

Set up PostFinance Account

    When the PostFinance add-on is installed, it must be configured in the PostFinance BackOffice and in Sana Admin. To configure the PostFinance payment provider and payment methods, you must have the PostFinance test/ live account with all the necessary data.

    The PostFinance payment provider was tested with the settings described in this document. Therefore, make sure to set up the add-on as it is described below. Leave the default values for the settings that are not mentioned in this document.

Step 1: Log in to the PostFinance BackOffice with your account and go to: Configuration > Technical information 
> Global transaction parameters.

The table below provides the description of the required Global transaction parameters.

Settings Value
Default operation code Select "Sale".
Processing for individual transactions Select "Online but switch to offline when the online acquiring system is unavailable".

Step 2: Click: Configuration > Technical information > Global security parameters.

The table below provides the description of the required Global security parameters.

Settings Value
Compose the string to be hashed by concatenating the value of Select "Each parameter followed by the passphrase. (Please refer to our integration guides for further details)."
Hash algorithm Select "SHA-512" in order to comply with the highest data security standards.

    The same value must be set in the PostFinance settings in Sana Admin, the field "HashAlgorithm".
Character encoding Select "UTF-8".

Step 3: Click: Configuration > Technical information > Payment page.

Configure Back button redirection by specifying the URL of the webpage that should be shown to the customer when he or she clicks the "back" button on the PostFinance secure payment page.

Step 4: Click: Configuration > Technical information > Data and origin verification.

URL of the merchant page containing the payment form that will call the page: orderstandard.asp

PostFinance checks for origin of the request the order originates from. The URL should contain the protocol "http" or "https" at the beginning. If you have installed several languages for your web store, or you have multiple web stores for your PostFinance account, make sure you have entered all URLs separated by a semicolon.

Examples:

http://www.webshop.com/en-us/;http://www.webshop.com/nl-nl/
or
http://www.webshop.com/

The value of the SHA-IN pass phrase parameter should match the value of the SHASIGNIN parameter in the PostFinance settings in Sana Admin.

Step 5: Click: Configuration > Technical information > Transaction feedback.

The table below provides the description of the required Transaction feedback settings.

HTTP redirection in the browser
Select the checkboxes:
  • I would like to receive transaction feedback parameters on the redirection URLs.
  • I would like PostFinance to display a short text to the customer on the secure payment page if a redirection to my website is detected immediately after the payment process. - This option is not essential for the correct functioning of PostFinance.

In case of web store failure, the payment status can be updated using the server-to-server communication with the following settings. For more information, see "Transaction feedback".

Direct HTTP server-to-server request
Timing of the request Select "Online but switch to deferred request when the online request fail".
URL of the merchant's post-payment page Enter the following URL with the correct protocol in both fields. Replace "[DOMAIN]" with your web store domain.

https://[DOMAIN]/postfinance/confirmpayment
or
http://[DOMAIN]/postfinance/confirmpayment
Request method Select "POST".

    The checkboxes shown on the screenshot below are essential for the correct functioning of PostFinance. Do not enable these options.

Dynamic e-Commerce parameters
"NCERROR", "PAYID", "ORDERID" and "STATUS" are default parameters. Select or deselect other parameters which you wish to receive as feedback for a transaction and move them from one box to another.

Security for request parameters
The value of the SHA-OUT pass phrase parameter should match the value of the SHASIGNOUT parameter in the PostFinance settings in Sana Admin.

HTTP request for status changes
Timing of the request Select "For each offline status change (payment, cancellation, etc.).".

Enter the following URL with the correct protocol. Replace "[DOMAIN]" with your web store domain.

https://[DOMAIN]/postfinance/confirmpayment
or
http://[DOMAIN]/postfinance/confirmpayment

Step 6: Click: Configuration > Technical information > Transaction e-mails.

In the E-mails to the merchant parameters, enter the e-mail address to which the information messages from PostFinance should be sent. Determine what type of messages you want to receive.

Payment ServicesPostFinance