Setup and Configuration
All settings can be found and modified at the location found by following these instructions:
- Navigate to System Overview > Plugins. Find Store Front in the list of installed plugins and click it. Click on the settings tab to reveal all of the configuration options for the plugin.
Sandbox Mode
During development it is advisable to set the plugin to run in "Sandbox" mode. This will force the entire plugin to route all purchase requests through your payment gateway's sandbox/test interfaces. This will prevent credit cards from being charged, but will in all other ways simulate the behavior of the system you are designing.
Landing Pages
Two pages should be constructed within your installation to which buyers will be directed to upon successfully purchasing a product, or when they cancel the purchase process. Publish these two pages and take note of their respective URLs.
Navigate to the plugin's setting page (see above), find the following fields and enter in the URLs from above:
- Purchase Success URL
- Purchase Cancel URL
PayPal
In order to accept payments, users will first need to acquire a PayPal Business Account.
Encrypted PayPal Payment Buttons
If you wish to encrypt the payment buttons you publish on your web site, which is recommended to prevent fraud, then you will need to take extra steps to secure your system and setup PayPal.
OpenSSL
To encrypt payment buttons you will need the latest, most secure version of OpenSSL installed on your server. This is an open source, freely available piece of software available for most platforms. Most unix installations already have OpenSSL installed.
Take note of where OpenSSL is installed on your system. The Store Front plugin will attempt to find its installation path automatically (if the File::Which module is installed). If it is not installed, then you will need to enter in the path to OpenSSL manually on the plugin's settings page.
Certification Generation
You will need to generate two important files using OpenSSL once it is installed:
- a private key
- a public certificate
Once these have been created, you will need to upload your public certificate into PayPal and make note of the certificate ID assigned to your certificate.
Finally you will need to download PayPal's public certificate they make available to you.
Keep all three of these files handy, and then upload them into the Store Front plugin via the plugin's settings area.
This can be an intimidating process for people not comfortable working via the command line, but PayPal has provided excellent instructions on this process at the URL below. Read and follow them carefully. If you need help, contact a trusted Movable Type contractor to assist.
Example Certificate and Key File
The files you generate, and the file you will download from PayPal are all simple text files. They all look similar to the following:
-----BEGIN CERTIFICATE-----
MIIDoTCCAwqgAwIBAgIBADANBgkqhkiG9w0BAQUFADCBmDELMAkGA1UEBhMCVVMx
EzARBgNVBAgTCkNhbGlmb3JuaWExETAPBgNVBAcTCFNhbiBKb3NlMRUwEwYDVQQK
EwxQYXlQYWwsIEluYy4xFjAUBgNVBAsUDXNhbmRib3hfY2VydHMxFDASBgNVBAMU
...snip...
P/dwdXwficf+rlG+0V9GBPJZYKZJQ069W/ZRkUuWFQ+Opd2yhPpneGezmw3aU222
CGrdKhOrBJRRcpoO3FjHHmXWkqgbQqDWdG7S+/l8n1QfDPp+jpULOrcnGEUY41Im
jZJTylbJQ1b5PBBjGiP0PpK48cdF
-----END CERTIFICATE-----
IPN Notification URL
You do not need to specify the URL to which IPN notifications will be sent. This information will be provided to PayPal automatically via the payment button generated by the system.