Professional Web Applications Themes
  1. #1

    Default authorize.net fingerprint generation with HMAC

    Hello,
    I am trying to integrate my website with authorize.net's payment gateway (my
    first time integrating with a gateway), and to do this I need to generate a
    fingerprint to send to them as a hidden field. The fingerprint is suppose to be
    a hash generated using an HMAC-MD5 algorithm on a few specified values:

    <input type="hidden" name="x_login" id="x_login" value="loginName" />
    <input type="hidden" name="x_fp_sequence" value="461">
    <input type="hidden" name="x_fp_timestamp" value="67897654" />
    <input type="hidden" name="x_amount" id="x_amount" value="10.98" />
    <input type="hidden" name="x_tran_key" value="ab349dh47255">

    The example I've found of how to generate this fingerprint is:

    Fingerprint = HMAC-MD5 ("login^461^67897654^10.98^", "ab349dh47255")

    Then it notes: "...the fields are concatenated and separated by the " ^ "
    character. Here, the transaction key is the cryptographic key used in the HMAC
    calculation."

    I'm not what kind of script that is, but I'm wondering how I could convert
    that to coldfusion. My immediate thought was to use the Hash() function, but
    how then might I account for the "cryptographic key" - "ab349dh47255"?

    maddiel Guest

  2. #2

    Default Re: authorize.net fingerprint generation with HMAC

    There is a coldfusion hmac implementation by Tim McCarthy here.

    [url]http://www.macromedia.com/cfusion/exchange/index.cfm?view=sn131&extID=1003921[/url]

    It should do what you need.
    tconley Guest

Similar Threads

  1. Any one using Authorize.net?
    By brettr_ in forum Macromedia ColdFusion
    Replies: 5
    Last Post: May 15th, 08:28 PM
  2. .Net equivalent of OpenSSL's libeay32-library (HMAC based on SHA1)?
    By Kenneth Priisholm in forum ASP.NET Security
    Replies: 1
    Last Post: May 11th, 12:03 PM
  3. HMAC-MD5
    By RM in forum ASP.NET Security
    Replies: 1
    Last Post: April 15th, 10:15 PM
  4. Authorize HTTPHeader
    By Bill Belliveau in forum ASP.NET Security
    Replies: 2
    Last Post: December 15th, 04:31 PM
  5. HTML Generation (Next Generation CGI)
    By John W. Long in forum Ruby
    Replies: 4
    Last Post: November 24th, 04:24 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139