I have tried using a newly generated hash code as well as the original. I’m using the Mal’s E-Commerce action. If I turn the code off, it works fine and all the data shows up in the cart. Anybody got any suggestions please?
Thanks
Kryters
Hi Howard which version webyep mals action are you using… I am assuming its the 3.3.1?
Do you have the same error if you disable the mals-webyep action and just use the standard mals-e action (without the webyep changing the mals-e values)?
speak soon max
Hi Howard… ok what about a normal html page with no other actions on that page… does that fail?
plus what is the hash code for, I haven’t used mals for sometime and I cant recall seeing a hash code … is it something new to mals?
speak soon max
Good point Max. I get the same failure on an html page with no other actions. The hash key is a strings of numbers and letters, which FWPro (on p406 of Using Freeway 5 Reference Manual) and Mal’s recommends to prevent the hacking of a shopping cart to adjust the prices of goods. It’s not new, it’s been around for a few years. Maybe I should just drop it, I have messaged Tech Support at Softpress Towers.
Max, I have just created a new file in FWP5 and the hash test still fails, so something strange is going on. I wonder if it’s a Mal’s issue. Never had this problem before with v5.
After further investigation Max, I think the problem lies with Mal’s not being able to connect back to the domain to verify the hash or similar according to Mal’s message. I seem to have moved on from the original failure to this. I think recently James has upgraded cPanel and maybe some settings have changed. I’ll check with him. Sincere thanks for your input once again!
Howard
I’m not sure how Max has dealt with his Mals Actions for WebYep as I’ve not had a close look at the code they produce but the hash key you can get from your Mals admin area is combined with the product name, price and shipping units to create the verification code for the product. My Mals Actions (link below) can do this because all of these details are available in the Actions palette. The Mals Actions for WebYep would need to calculate these on the server as any (or all) of this data can be updated through WebYep at any time.
Max, can you confirm how the verification code is getting generated in the Mals Actions for WebYep?
Regards,
Tim.
On 27 Mar 2013, at 08:49, Kryten wrote:
After further investigation Max, I think the problem lies with Mal’s not being able to connect back to the domain to verify the hash or similar according to Mal’s message. I seem to have moved on from the original failure to this. I think recently James has upgraded cPanel and maybe some settings have changed. I’ll check with him. Sincere thanks for your input once again!
aaaaa Tim that sounds more like it…
What the webyep action does is look for (on the publishing cycle of the Mals button) is: product name, price and tax and if the those fields have the correct name of: WY a price of 1 and a tax of 1 it will remove the numbers and add the webyep short-text code snippets which are duplicated next to the mals button.
That way you can unlock the page online and adjust the: cost, product name and tax… Then lock it up again and those values will be used when its submitted. and if its placed in a webyep loop you have the potential of dozens of unique products on a page.
It’s a basic search and replace of your action output… What I didn’t want to do is have to create something that wasn’t using your action so if the Mals-e action was updated in subsequent releases it should still be able to work with webyep… that was right up until the hash option problem?
I suppose I’d better see what I can do… at this end to allow for the hash although I haven’t looked at that yet…
Thanks guys. I had some support from Softpress Towers about the possibility that HH servers were not allowing Mal’s to communicate with the config (.cfg) file. I’m still waiting to hear from James at HH about that.
To be honest, do I need to use the hash code? It would seem nobody else here has had this problem and there must be quite a few guys on here using Mal’s with HH?
Hi Kryten,
If you are happy to double check your orders before they are dispatched to make sure they haven’t been tampered with then you should be OK. At the moment there appears to be a tradeoff between having the ability to update your products using the Mals actions for WebYep and using the hash verification. Personally I’d turn verification off until Max has had a chance to implement this in his Actions and just keep an eye on the validity of orders to make sure they haven’t been altered.
Regards,
Tim.
On 28 Mar 2013, at 08:54, Kryten wrote:
To be honest, do I need to use the hash code? It would seem nobody else here has had this problem and there must be quite a few guys on here using Mal’s with HH?
Yes it is David. Using Mal’s and WebYep is a new thing for me too, since Max has made it possible for users to edit the value of products directly rather than it being done in FW.
I have had a request from James @ HaveHost asking what is required from the host (HH) when Mal’s looks at the malsettings.cfg file and for the cart to work. Since I haven’t got a clue, I’m hoping somebody can educate me / him. Where is Braveheart?
Sorry for not chirping in too this post for what seems like many days… but I have had a real stinker of a cold… High temperatures migraines… the lot and the last thing that was going through my head was looking at any type of screen… so I apologise for the silence…
Thanks Tim for stepping in and helping people out…
Ok just to clear a few things up.
The WebYep mals actions just swaps a few of parameters which are published by the standard Mals action for certain WebYep code snippets (so they can be populated via WebYep/browser). It is not and was never intended to be a replacement for the Standard Mals actions (just think of it as a bolt on).
And yes there is a problem of matching the hash number with the corresponding product name number etc.
All the testing I did prior to to release, was based on my site and of course I must have (in then distant past) turned off the extra hash verification… so hence why my site worked…
Tim is absolutely correct… At the moment, you would need to turn off the extra hash security to allow you or your clients to make and edit products via WebYep.
I will need to think of a way to create a hash code that corresponds with the WebYep controlled areas, but it wont make it for the next release which is just a day or two away. but please bear with me and I will try to think of a solution as quick as I can.