Auth.net - Authorize.net Returned A Malformed Response, Aborted.

[qiherbs]

I have been running into the same issue a lot of others seem to have struggled with and trying to get the auth.net module to properly work for the last week now.

 

Prestashop version 1.6.1

Auth.net version 1.5.7

 

https://qiherbs.com/.../validation.php

 

...returns the following message:  "Authorize.net returned a malformed response, aborted."

 

Anybody figured out what the fix is for this? 

 

 

In advance thank you for your help on this

[shiggidydog]

I have the same issue on the same version of 1.6.1 and authorize.net module version 1.5.7.

 

I've also tried an older version of authorize.net's module of 1.5.2, which had the same issue.  (The 1.5.2 module version works on my other prestashop install which is running 1.5.4.1)

 

 I did find something interesting.  My new shop that is running version 1.6.1 i am trying to use my customer's authorize.net account (that's over 10 years old), where as my older version of 1.5.2 is using my own authorize.net account which was made about 5 years ago.  After logging into my own authorize.net account, under Account/Settings, there is a section called "Transaction Response Settings" and an option called 'Transaction Version'.  On my account, it lists my version as 3.1, where as on my customer's account it's listed as 3.0.  

 

I think that this may be what is causing the issue.  The authorize.net module is only meant to work with version 3.1. Somewhere along the line, authorize.net updated their response format from 3.0 to 3.1 and changed the way their responses are formatted.  My customer is going to upgrade the response format to 3.1 (just a drop down in her account), but she needs to make sure that it will not impact her existing website which is not running prestashop but another 3rd party solution.  Not sure if her current framework will be able to handle the change to 3.1 so we are waiting to hear from her existing webmaster of whether it will work.  Once we hear back, we'll update it to 3.1 and hopefully everything with my prestashop installation should work.

 

I hope this helps you qiherbs! Let me know what your authorize.net response version is, maybe you can help solidify my thinking.

 

Thanks!

[SCrow]

I am getting this same error and I am in desperate need of help.  Our store can't process credit cards since October 11, 2016.  The payment gateway (eProcessingNetwork) changed their connection requirements to TLS1.2.  I have tried to add the entry to force TLS1.2 in my configuration, but with no luck.  I have called the hosting company (Hostgator) and they have confirmed that TLS1.2 is enabled on the hosting server. Also, the hosting server is running cURL 7.19.x, and they will not update it to a later version.  Below is the code for my configuration for the payment gateway through the Authorize.net AIM emulator in Prestashop.   

 

<?php

/*

* 2007-2013 PrestaShop

*

* NOTICE OF LICENSE

*

* This source file is subject to the Academic Free License (AFL 3.0)

* that is bundled with this package in the file LICENSE.txt.

* It is also available through the world-wide-web at this URL:

* http://opensource.org/licenses/afl-3.0.php

* If you did not receive a copy of the license and are unable to

* obtain it through the world-wide-web, please send an email

* to [email protected] so we can send you a copy immediately.

*

* DISCLAIMER

*

* Do not edit or add to this file if you wish to upgrade PrestaShop to newer

* versions in the future. If you wish to customize PrestaShop for your

* needs please refer to http://www.prestashop.com for more information.

*

*  @author PrestaShop SA <[email protected]>

*  @copyright  2007-2013 PrestaShop SA

*  @license    http://opensource.org/licenses/afl-3.0.php  Academic Free License (AFL 3.0)

*  International Registered Trademark & Property of PrestaShop SA

*/

 

include(dirname(__FILE__). '/../../config/config.inc.php');

include(dirname(__FILE__). '/../../init.php');

 

/* will include backward file */

include(dirname(__FILE__). '/authorizeaim.php');

 

$authorizeaim = new AuthorizeAIM();

 

/* Does the cart exist and is valid? */

$cart = Context::getContext()->cart;

 

if (!isset($_POST['x_invoice_num']))

{

Logger::addLog('Missing x_invoice_num', 4);

die('An unrecoverable error occured: Missing parameter');

}

 

if (!Validate::isLoadedObject($cart))

{

Logger::addLog('Cart loading failed for cart '.(int)$_POST['x_invoice_num'], 4);

die('An unrecoverable error occured with the cart '.(int)$_POST['x_invoice_num']);

}

 

if ($cart->id != $_POST['x_invoice_num'])

{

Logger::addLog('Conflict between cart id order and customer cart id');

die('An unrecoverable conflict error occured with the cart '.(int)$_POST['x_invoice_num']);

}

 

$customer = new Customer((int)$cart->id_customer);

$invoiceAddress = new Address((int)$cart->id_address_invoice);

$currency = new Currency((int)$cart->id_currency);

 

if (!Validate::isLoadedObject($customer) || !Validate::isLoadedObject($invoiceAddress) && !Validate::isLoadedObject($currency))

{

Logger::addLog('Issue loading customer, address and/or currency data');

die('An unrecoverable error occured while retrieving you data');

}

 

$params = array(

'x_test_request' => (bool)Configuration::get('AUTHORIZE_AIM_TEST_MODE'),

'x_invoice_num' => (int)$_POST['x_invoice_num'],

'x_amount' => number_format((float)$cart->getOrderTotal(true, 3), 2, '.', ''),

'x_exp_date' => Tools::safeOutput($_POST['x_exp_date_m'].$_POST['x_exp_date_y']),

'x_address' => Tools::safeOutput($invoiceAddress->address1.' '.$invoiceAddress->address2),

'x_zip' => Tools::safeOutput($invoiceAddress->postcode),

'x_first_name' => Tools::safeOutput($customer->firstname),

'x_last_name' => Tools::safeOutput($customer->lastname),

'x_version' => '3.1',

'x_delim_data' => true,

'x_delim_char' => '|',

'x_relay_response' => false,

/* removed this variable in order to pass [spam-filter] authentication with eProcessing - Susanne Crow */

/* 'x_type' => 'AUTH_CAPTURE', */

'x_currency_code' => $currency->iso_code,

'x_method' => 'CC',

'x_solution_id' => 'A1000006',

'x_login' => Tools::safeOutput(Configuration::get('AUTHORIZE_AIM_LOGIN_ID_'.$currency->iso_code)),

'x_tran_key' => Tools::safeOutput(Configuration::get('AUTHORIZE_AIM_KEY_'.$currency->iso_code)),

'x_card_num' => Tools::safeOutput($_POST['x_card_num']),

'x_card_code' => Tools::safeOutput($_POST['x_card_code']),

);

 

$postString = '';

foreach ($params as $key => $value)

$postString .= $key.'='.urlencode($value).'&';

$postString = trim($postString, '&');

 

/* Added the following URL to integration with eProcessing Network */ 

$url = 'https://www.eProcessingNetwork.Com/cgi-bin/an/transact.pl';

 

/* Disabled this line for the integration with eProcessing Network

*/ 

 

/* Do the CURL request ro Authorize.net */

$request = curl_init($url);

curl_setopt($request, CURLOPT_HEADER, 0);

curl_setopt($request, CURLOPT_RETURNTRANSFER, 1);

curl_setopt($request, CURLOPT_POSTFIELDS, $postString);

curl_setopt($request, CURLOPT_SSL_VERIFYPEER, false);

curl_setopt($request, CURLOPT_SSL_VERIFYHOST, false);

curl_setopt($request, CURLOPT_SSLVERSION, 6);

$postResponse = curl_exec($request);

curl_close($request);

 

$response = explode('|', $postResponse);

if (!isset($response[7]) || !isset($response[3]) || !isset($response[9]))

{

$msg = 'Authorize.net returned a malformed response for cart';

if (isset($response[7]))

$msg .= ' '.(int)$response[7];

Logger::addLog($msg, 4);

die('Authorize.net returned a malformed response, aborted.');

}

 

$message = $response[3];

$payment_method = 'Authorize.net AIM (Advanced Integration Method)';

 

switch ($response[0]) // Response code

{

case 1: // Payment accepted

$authorizeaim->setTransactionDetail($response);

$authorizeaim->validateOrder((int)$cart->id,

Configuration::get('PS_OS_PAYMENT'), (float)$response[9],

$payment_method, $message, NULL, NULL, false, $customer->secure_key);

break ;

 

case 4: // Hold for review

$authorizeaim->validateOrder((int)$cart->id,

Configuration::get('AUTHORIZE_AIM_HOLD_REVIEW_OS'), (float)$response[9],

$authorizeaim->displayName, $response[3], NULL, NULL, false, $customer->secure_key);

break ;

 

default:

$error_message = (isset($response[3]) && !empty($response[3])) ? urlencode(Tools::safeOutput($response[3])) : '';

 

$checkout_type = Configuration::get('PS_ORDER_PROCESS_TYPE') ?

'order-opc' : 'order';

$url = _PS_VERSION_ >= '1.5' ?

'index.php?controller='.$checkout_type.'&' : $checkout_type.'.php?';

$url .= 'step=3&cgv=1&aimerror=1&message='.$error_message;

 

if (!isset($_SERVER['HTTP_REFERER']) || strstr($_SERVER['HTTP_REFERER'], 'order'))

Tools::redirect($url);

else if (strstr($_SERVER['HTTP_REFERER'], '?'))

Tools::redirect($_SERVER['HTTP_REFERER'].'&aimerror=1&message='.$error_message, '');

else

Tools::redirect($_SERVER['HTTP_REFERER'].'?aimerror=1&message='.$error_message, '');

 

exit;

}

 

$url = 'index.php?controller=order-confirmation&';

if (_PS_VERSION_ < '1.5')

$url = 'order-confirmation.php?';

 

$auth_order = new Order($authorizeaim->currentOrder);

Tools::redirect($url.'id_module='.(int)$authorizeaim->id.'&id_cart='.(int)$cart->id.'&key='.$auth_order->secure_key);

[usengines]

Running into the same problem with 1.6.1.24   Authorize,net AIM 1.5.7  Also enhanced version 1.5.8 by DH.

Edited October 19, 2019 by usengines
additional info. (see edit history)

[usengines]

We get the same malformed response on all our sites on Hostwinds but not on Hostgator?  Our transactions are set at 3.1 at Authorize.net.  Posted the error on the developers page on GitHum but have received no comment.