wlabs

I'm comfortable making a SQL query, but at first glance I don't see where download stats are saved... the virtual product files all have records in [prefix]_product_download table, but there is no obvious (to me, anyway) place where actual download events would be recorded. Any ideas?

Like @iltecnobadante, I'm also looking for a way to track free downloads via the back-office. Anyone have ideas?

We'd like to track how many times virtual products are downloaded, and from whom they're being downloaded (an IP address would suffice). I don't see a way to do this, but I may be missing it — is there a way to view statistics about the downloads? Thanks.

Thanks for the input. I have been looking into stripe over the past couple days, and learning more about the details. Just to be clear, as of Jan 1st 2015 the new PCI DSS 3.0 will be fully effective, and will require servers to be PCI compliant if they serve the form that collects the CC info, even if the CC info is posted directly to the payment processor and never touches your server. This is evidently a change from PCI DSS 2.0, where serving the form via SSL was enough. It does look like Stripe has a drop-in replacement that ensures 3.0 compliance by serving the CC form from their servers via an iframe. (Technically speaking, this seems like a weird loophole, since the theoretical problem is that an attacker modifies the code on your server which serves the CC form, and the same type of attack could easily modify the code that serves the iframe...) For sites that use a direct post method, with the CC form served from their own servers, the new SAQ A-EP appears to be the correct Self-Assessment Questionnaire.

Hi — Curious if you've had any update since your post. I'm also trying to ensure PCI compliance for a PrestaShop site, and am about to move from A2 Hosting (who provides no help wrt PCI) to InMotion. The rep at InMotion assured me that they provide PCI compliant hosting, and will work with me to accomplish it... I assumed that they do their own internal penetration testing in order to claim PCI compliant hosting, but maybe that's wrong? So in the end, were you able to get verification of PCI compliance with InMotion? Regarding the SAQ version, I'm also using TrustKeeper but got SAQ A-EP 3.0. I believe it's because I'm using a direct post payment method, so the credit card info never lands on our server. Also curious if anyone else has truly obtained PCI Compliance with PrestaShop on any host. Seems like PCI compliance is far too complex for most small businesses to accomplish on their own, and my impression is that most small ecommerce websites essentially ignore it...

I'm interested in this too. From the perspective of the customer, we'd like to present a single product that can be purchased as a physical book or an ebook via an option, rather than having two separate items. As far as I can tell there's nothing like this built in to PrestaShop, but I'd be interested in anyone's solution to this situation...

Hi — I'm trying to set up a store that is selling both physical and virtual goods. For physical goods, we want a minimum purchase price, but we don't want that restriction for the virtual goods. Is there an easy way to do this? In other words, we don't want to ship products unless the order is greater than a certain value, but we want to let people purchase virtual goods of any order-value, since they don't need to be shipped. There's the minimum purchase option under Preferences->Orders, but that sets a store-wide minimum. Thanks!