Page MenuHomePhabricator
Create Task
Maniphest T183155

Adyen: we don't deal well with two responses on same merchant ID
Closed, DeclinedPublic
Actions

Description

Order ID 55828254.1 on Dec 14:
Came back to resultswitcher with response 'CANCELLED' and we sent a failure message to the payments-init queue and redirected the user to the fail page. Then somehow, a minute and 9 seconds later, hit the resultswitcher again, with response 'AUTHORIZED', and we got an authorization message at the IPN.

Because we sent the failure message first, we deleted the donor details from the pending queue. Then when we tried to process the authorization message at the IPN, we rejected it with failmail for the missing donor details.

So.... if we can't stop Adyen from letting the donor try again on the same merchant ID after a failure, what can we do?

  • When a donor comes back authorized, and we see them as failed, can we send a second message to pending with the donor details? Or have we purged those from session at that point?
  • Should we just capture the payment and reconstruct the donor details from logs on the next audit run?

Event Timeline

Ejegg created this task.Dec 18 2017, 4:38 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptDec 18 2017, 4:38 PM
DStrine moved this task from Triage to Sprint +2 on the Fundraising-Backlog board.Dec 18 2017, 8:35 PM
DStrine moved this task from Sprint +2 to FY 2022-2023 on the Fundraising-Backlog board.May 6 2019, 9:22 PM
XenoRyet moved this task from FY 2022-2023 to Unscheduled on the Fundraising-Backlog board.Mar 14 2023, 9:28 PM
AKanji-WMF subscribed.Jun 14 2023, 2:11 PM

@Ejegg think this is safe to close out? Not sure if this issue still occurs.

Ejegg closed this task as Declined.Jun 14 2023, 10:35 PM

Thanks for flagging this @AKanji-WMF - we don't have to worry about this with the current integration. This problem only occurred with the old integration where we redirected to a hosted payment page that showed the card fields.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL