How Do I Retrieve Info From A Form/ssl?

[guamrider]

I think I'm at the point that I know enough to be dangerous to the sites I've created so I need to stop and ask others what to do. I've searched this and other forums but still don't have enough information.

 

What I'm trying to accomplish thru the shared ssl is to have a customer input their cc number, and then I download it from the web. I think I should be able to extract the info from the form created when they enter the info.

 

So...here's where I am. I'm attempting to retrieve a form that in my ""_private" folder so after reading as much on this and other forums I have a two part question. (The info is getting on the form).

 

1. Permissions: I know how to set them but which ones do I choose. Right now I've checked all of them and the code is 777 (public and private).

 

2. What url do I enter to To view the "formrslt.htm"?

 

I alredy use the email option on the form to send some data, but obviously don't want the cc info emailed so I will make another fomr when I figure out how retrieve it.

 

??????? Any help would be appreciated.

Pete

[surefire]

What I'm trying to accomplish thru the shared ssl is to have a customer input their cc number, and then I download it from the web.

but obviously don't want the cc info emailed so I will make another fomr when I figure out how retrieve it.

 

I agree that it's not a good idea to have the info emailed to you. But before you figure out how to make the form, you should have an idea of where this data is going and how you'll protect it once you get it.

 

SSL protects data 'on the wire' meaning that no one can grab the data stream and steal it as the information is passed from the client's browser to your server.

 

But once it hits your server (website) are you going to store it in a database? (Bad idea) Or email it? (Almost as bad)

 

I'm assuming that you have a merchant account if you are looking to get clients to enter credit card numbers. Most providers have a form you can put on your site or a set of protocols you can follow so that the information is safely transmitted THROUGH your site SECURELY to the authorization site. The authorization company will hopefully put security measures in place to protect the client. Then they can email the transaction report to you and send a receipt to your client by email. Neither one has to have (they probably shouldn't have) the CC info on it.

 

I would strongly urge you to ask your merchant account provider how they suggest you process cards online. I would also suggest getting your own SSL certificate installed at TCH (so you look more professional).

 

If those ideas don't suit your needs, why not try paysystems?

Edited November 18, 2003 by TCH-Jack

[guamrider]

Jack-Thanks for the info.

 

I'll see if I can find a merchant provider for Guam.

 

2. What url do I enter to To view the "formrslt.htm"? How can one of my staff access this info?