Thanks so much Boomer for replying to my post and sending me the code.
IБ─≥m using version 3.2.2.
After I revised my skin1/customer/main/payment_cc.tpl and payment/payment_cc.php files with your code, I still didnБ─≥t get the customer notes inserted into my database orders table. In trying to decipher the php code (IБ─≥m not a php coder
) in payment/payment_cc.php, I noticed the line Б─°if (!$store_cc) $order details = Б─° Б─²;Б─². I recall reading somewhere that the Б─°!Б─² means Б─°notБ─². Hence, I concluded that this statement was inserting blanks instead of the order details data into my database orders table.
I decided to check Б─°Include order details (credit card information) into admin order notification messageБ─² in our storeБ─≥s General Settings, then try again. Unfortunately, the order details data still didnБ─≥t get inserted into my database orders table. That made me question if their was a setting in my config.php file that was incorrect. I discovered that $store_cc was set to Б─°falseБ─² in my config.php, so I set it to Б─°trueБ─², and tried again. WaaLa, the order details now gets inserted into my database orders tables as encrypted data.
Unfortunately, in addition to the customer notes, all the credit card information was also inserted in order details. We donБ─≥t want to capture any credit card information in our database nor have it posted in emails. We only want customers credit card information to go to our payment gateway. The Admin email notification I received included the customer notes plus the credit card information twice. The credit card information was also inserted into my database customers table.
I eliminated the redundant credit card information posted to the Admin email notification by removing the following line in the payment/payment_cc.php code you gave me, as this looked redundant:
$order_details .= "Cardholder's name:$card_name\nCard type: $card_type\nCard number: $card_number".($card_valid_from?"\nValid from:$card_valid_from":"")."\nExp. date: $card_expire".($card_issue_no?"\nIssue No.:$card_issue_no":"");
That worked. Now I only get the credit card information one time with the customer notes in the Admin email notification. But, the credit card information was still being inserted into order details in my order table, and inserted into my customers database table. I blocked insertion of the credit card information to my database customer table, by commenting out the following line in payment/payment_cc.phpБ─²
# if ($store_cc)
# db_query("update $sql_tbl[customers] set card_type='$card_type',
# card_number='".text_crypt($card_number)."', card_expire='$card_expire' where login='$login' and
# usertype='$login_type'");
So IБ─≥m getting close to where we want to be, but not completely. If possible (of course I believe itБ─≥s possible, I just donБ─≥t know how to do it yet
), we would like to have only the customer notes posted to the AdminБ─≥s email notification, not the credit card information. My concern is that if the credit card information isnБ─≥t captured from the following lines you gave me for the payment/payment_cc.php, our payment gateway will not get the information it needs to process the payment:
foreach($HTTP_POST_VARS as $key=>$val)
if ($key!="payment_method" && $key!=$XCART_SESSION_NAME and $val!="")
if ($key=="Ship_To_name") $order_details.="Ship to: $val\n";
else $order_details.=str_replace("_"," ",$key)." : $val\n";
Is this a valid concern, or does our payment gateway (authorize.net) capture the credit card information in a different file (e.g. cc_authorizenet.php)? If our payment gateway needs the credit card information captured in the above code, then I guess our only alternative is to use PGP encryption for the Admin email notification. If our payment gateway gets the credit card information it needs from a different file, however, can you modify the above code so that it only places the customer notes in order details in my database orders table, and include that solution in another reply to this post?
Thanks again for your help Boomer. The X-cart forum is the most helpful forum I participate in thanks to you and all the other contributors.
Best, Bill