Go Back   vb.org Archive > vBulletin 4 Discussion > vB4 Programming Discussions
Reload this Page ccbill username and password field
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #1  
Old 07-06-2014, 08:27 AM
ukdalai ukdalai is offline
 
Join Date: Oct 2005
Posts: 69
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default ccbill username and password field
hi all we have used ccbill for our paid subscriptions for 8 years, we have always had an issue with the username and password field being passed to ccbill as NOUSERNAME and NOPASSWORD, this has been fine as the fields were hidden on ccbills forms, but now we are using upsales at ccbill and the fields are required, ccbill are saying they are required filds for upsaling, and I cant work out why vbulletin is not sending them in payments.php?do=order

this is what is being sent
<input type="hidden" name="username" value="NOUSERNAME" />
<input type="hidden" name="password" value="NOPASSWORD" />

any ideas would be helpful

Craig
Reply With Quote
  #2  
Old 07-06-2014, 11:04 AM
morpheus28's Avatar
morpheus28 morpheus28 is offline
 
Join Date: Mar 2012
Location: France
Posts: 4
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Hi friend,
Yes me too have same problem not info of members souscription !!!
Reply With Quote
  #3  
Old 07-06-2014, 11:13 AM
Dave Dave is offline
 
Join Date: May 2010
Posts: 2,583
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
This information is present in the subscription_payment_ccbill template, but my question is: what should both fields contain? What username and password?
Reply With Quote
  #4  
Old 07-06-2014, 11:16 AM
ukdalai ukdalai is offline
 
Join Date: Oct 2005
Posts: 69
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
it should be the current logged in username and password.
but I don't know why its not being filled
Craig
Reply With Quote
  #5  
Old 07-06-2014, 11:21 AM
Dave Dave is offline
 
Join Date: May 2010
Posts: 2,583
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Password?!? vBulletin 4 stores its passwords encrypted with MD5 and a salt. (Although a very bad hashing algorithm.)

I believe the bbuserinfo array can be used in that template. Then it's just a matter of doing this in the subscription_payment_ccbill template.

PHP Code:
<input type="hidden" name="clientAccnum" value="{vb:raw settings.clientAccnum}" />
<input type="hidden" name="clientSubacc" value="{vb:raw settings.clientSubacc}" />
<input type="hidden" name="formName" value="{vb:raw settings.formName}" />
<input type="hidden" name="subscriptionTypeId" value="{vb:raw subinfo.ccbillsubid}" />
<input type="hidden" name="allowedTypes" value="{vb:raw subinfo.ccbillsubid}" />
<input type="hidden" name="email" value="{vb:raw settings.email}" />
<input type="hidden" name="hash" value="{vb:raw hash}" />
<input type="hidden" name="username" value="{vb:raw bbuserinfo.username}" />
<input type="hidden" name="password" value="{vb:raw bbuserinfo.password}" />
<input type="hidden" name="noCache" value="1" /> 
Reply With Quote
  #6  
Old 07-06-2014, 11:24 AM
ukdalai ukdalai is offline
 
Join Date: Oct 2005
Posts: 69
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
im guessing vb would say this is a security risk...?
Craig
Reply With Quote
  #7  
Old 07-06-2014, 11:27 AM
Dave Dave is offline
 
Join Date: May 2010
Posts: 2,583
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Well the salt is stored in a separate column so even if someone finds out the MD5 hashed password, it's very hard to figure out the actual password without the salt.
Reply With Quote
  #8  
Old 07-06-2014, 11:44 AM
ukdalai ukdalai is offline
 
Join Date: Oct 2005
Posts: 69
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
thanks for that, it works in as much as it now fills the fields with the username and encrypted pass, not sure if the encrypted pass will be an issue for ccbill, ill have to wait to see what they say.

im assuming they want both to set up the account on the upsale site.
Craig

--------------- Added [DATE]1404680922[/DATE] at [TIME]1404680922[/TIME] ---------------

im right in saying it would not be a good idea to decrypt the pass, as ccbill are saying they need the pass in plain text.

Craig
Reply With Quote
Reply

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 11:05 PM.

Contact Us - Archive - Top

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.03752 seconds
  • Memory Usage 2,233KB
  • Queries Executed 13 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)bbcode_php
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (8)post_thanks_box
  • (8)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (8)post_thanks_postbit_info
  • (8)postbit
  • (8)postbit_onlinestatus
  • (8)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 
Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete