基于闪存的信用卡支付?
有谁知道如何在 Flash 中完成包括信用卡验证和付款/交易在内的整个结账流程,而无需重定向到另一个 HTML 页面?
由于 Flash 具有 Web 浏览器的所有功能(页面请求、GET、POST),甚至还有一些优点(跨域页面请求、套接字),我认为这应该不会太难。
曾经做过这样的事情吗?任何帮助表示赞赏。我不介意使用任何后端系统或中介支付网关等。
谢谢
Does anyone know how the entire checkout process including credit card validation and payment/transactions can be done in Flash, without redirecting to another HTML page?
Since Flash has all the capabilities of a web browser (page requests, GET, POST) and even some goodies (cross domain page requests, sockets) I'm assuming this shouldn't be too hard.
Ever done something like this? Any help is appreciated. I don't mind using any backend system or intermediary payment gateway, etc.
Thanks
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(3)
我个人不会建议这样做。如果您托管一个捕获卡详细信息的网页,则需要遵守 PCI-DSS 合规性,这不是琐碎的。
您还会遇到 3dsecure 身份验证(通过 Visa/安全代码验证)的问题,该身份验证通常使用 iFrame 完成。
I wouldnt personally advise it. If you host a webpage that captures the card details you'll need to go through PCI-DSS compliance, which isnt trivial.
You'll also run into issues with 3dsecure authentication (Verified By Visa / Secure Code) which is typically done using an iFrame.
此在线培训网站有一套描述如何连接 PayPal 或authorize.net 的免费教程。我认为在大多数情况下,您会根据业务问题首先选择网关,然后再研究如何从 Flash 访问它,但本教程中的代码可能适用于其他网关。 (我没有使用所描述的代码。)
This online training site has a set of free tutorials up describing how to hook into PayPal or authorize.net. I would think in most cases you'd pick your gateway first, based on business concerns, and then work out how to access it from Flash afterwards, but the code in this tutorial might apply to other gateways. (I haven't used the code described.)
好吧,在考虑这类事情时首先要注意的是,反编译 SWF 非常容易,因此出于安全目的,您将使用 Flash 作为与基于服务器的后端的薄交互层,以进行所有身份验证和交易处理。
除此之外,所涉及的具体安全问题超出了我的经验。
Well, the first thing to be aware of when considering this sort of thing is that it's trivially easy to decompile an SWF, so for security purposes you'd be using Flash as a thin interaction layer to a server based backend for all your authentication and transaction processing.
Beyond that, the sort of specific security concerns involved are outside my experience.