Configuration Reference: CreditCardAuto

3.15. CreditCardAuto

If set to Yes, enables the automatic encryption and saving of credit card information. In order for this to work properly, the EncryptProgram directive must be set to properly encode the field. The best way to set EncryptProgram is with PGP in the ASCII armor mode. This option uses the following standard fields on Interchange order processing forms:

mv_credit_card_number

The actual credit card number, which will be wiped from memory after checking to see if it is a valid Amex, Visa, MC, or Discover card number. This variable will never be carried forward in the user session.

mv_credit_card_exp_all

mv_credit_card_exp_month

mv_credit_card_exp_year

mv_credit_card_exp_month

mv_credit_card_exp_all

mv_credit_card_exp_year

mv_credit_card_exp_all

mv_credit_card_error

Set by Interchange to indicate the error if the card does not validate properly. The error message is not too enlightening if validation is the problem.

mv_credit_card_force

Set this value to 1 to force Interchange to encrypt the card despite its idea of validity. Will still set the flag for validity to 0 if the number/date does not validate. Still won't accept badly formatted expiration dates.

mv_credit_card_separate

Set this value to 1 to cause Interchange encrypt only the card number and not accompany it with the expiration date and card type.

mv_credit_card_info

Set by Interchange to the encrypted card information if the card validates properly. If PGP is used in ASCII armor mode, this field can be placed on the order report and embedded in the order email, replete with markers. This allows a secure order to be read for content, without exposing the credit card number to risk.

mv_credit_card_valid

Set by Interchange to true, or 1, if the the card validates properly. Set to 0 otherwise.

GnuPG is recommended as the encryption program. Interchange will also work with PGP.

   CreditCardAuto     Yes