PayPal Important Update – SSL Certificate Upgrade

[dhada]

Is there anything that need to change in paypal modules?

 

 

IMPORTANT UPDATE

 

Dear ,

In keeping with industry standards set by the Certification Authority/Browser (CA/ Forum, PayPal will discontinue supporting 1024-bit key length certificates and will migrate to 2048-bit certificates before the end of 2013.

We have completed the installation of 2048-bit certificates for all API endpoints in our PayPal Sandbox and Payflow Pilot environments, and we will be doing the same for our production environments starting on August 6, 2013.

We strongly encourage merchants to thoroughly test any existing integration(s) in the PayPal Sandbox and/or Payflow Pilot environments to ensure this migration will not cause any unforeseen issues.

Please have the team or person responsible for your integration refer to the following:

If you need to import the new PayPal Sandbox and/or Payflow Pilot server certificates to your application or system truststore, you can download production and Sandbox certificates from https://ppmts.custhe...etail/a_id/952.

If you don't typically import the server certificates to your truststore, you can proceed with testing with no other action required.

If you have any questions, please contact PayPal Merchant Technical Services by filing a ticket; refer to PP-LIVE-3503. You may also visit our Live Site Status blog.

Sincerely,

PayPal

[sambassador]

Same question here. I am using a 256-bit SSL certificate at my webshop but I am using an old Paypal API module on Prestashop 1.3.7.

[bellini13]

The Paypal SSL certificate, and your website certificate are not related. I believe this means that the Paypal integration service URL (ie. https://api-3t.sandbox.paypal.com) certificate is being upgraded.

 

This means your hosting servers SSL library (the one that connects to the paypal service) needs to support that strong encryption level.

 

The age of your paypal module, or the strength of your website SSL certificate should not play any part of this. This is more a question to your host and ensuring they keep their software updated/patched.

 

To test it would be rather simple, since Paypal already implemented the new certificate in their sandbox.

1) create a paypal sandbox account

2) disable your store briefly

3) change your paypal api settings in the module configuration to use the sandbox API credentials and switch to sandbox mode

4) test by creating a paypal order in their sandbox. If you get redirected to Paypal sandbox and can submit an order, then things are ok

5) restore the paypal module back to production/live mode but putting back your live API credentials and switching back to live mode

6) enable your store