Hi

I have designed my self a shopping cart which has a SQL Server 2000 database backend and ASP. I've deisgned the cart and all the necessary code to make it work. What I am not sure of, is what actually happens after the user clicks on the 'Checkout' button. Lets assume that the shopper has logged in and just wants to complete the order. When they hit the Checkout button, should this then take the shopper to a Secure Server? I want the connection to be secure, so does that mean I have to sign up with a secure server or something, or does it mean i can just purchase a SSL certificate and get my Hosting Provider to install it?

Either way, do i receive some sort of script or information as to how to direct the user there and incorporate it into my site?

Also, if i have to redirect it to a Secure Sever, does the user's Session remain active and can i still access any information i have stored in a Session Variable, or can I still make calls to my database?

Or am i wrong about the whole thing and the process is completely different?

I am just desperate for some help on this situation since I am in the process of building a site to incorporate my Shopping Cart.

Also, how much different is the process if Transactions are to be done manually and not in real time? Any help or guide to a site i could possibly find out more from would be greatly appreciated.

One last thing, is it appropriate to place an array inside a Session Variable??? If so, how could i do this? How would i get the array into the session and how would i retrieve it??

thanks for bearing with me

Confused

Hi ThatGuy2001au,

By The sounds of it you're after either a way to take payments online via credit cards or merely take the other!

If you're looking for a credit card authentication party then there are several. Something like http://www.worldpay.com or http://www.protx.com

Depending on what you end up using you can work it different ways.

If you just want to take user details online and accept their postcode etc then an SSL is recommended (tho not required - but it'll stop alot of hassle and worry from the users side and yours)

With SSL you can still accept the Session variables. To set one up its best to talk to your web host. If you own and access the server (if its dedicated) then you can do it yourself.
Otherwise they should do it all for you and setup an https:// for you.

When they click CHECKOUT that way you'll either send them off to the server to take details of payments on systems such as worldpay/protx etc and then they'll handle 90% of it for you or you'll send them off to a https:// location where you have a form with hidden/or/session variables stored of the items they want and handle it all from there.

Hopefully that gives you some sort of direction to take.

Or give us some more detail on what you want to achieve and I'm sure one of us will be able to give you all the detail you need to complete.

Intothemiddle

Thanks intothemiddle

You have actually cleared up alot of things for me. I know my question was a little hard to understand, but that's because of my lack of knowledge in that area, but you answered it perfect. I now understand the whole process alot more and i should be able now to complete my cart.

If i have more questions, i will be sure to let you know. I think i can take it from here.

Once again, thank alot for your help, it's greatly appreciated.

Confused no more!

No problem at all.

Glad to be of assistance. Did take a while to find out any info on it actually. Doesnt seem to be a topic covered very easily anywhere or explained easily yet.

If theres anything else you want to know just ask, sure everyone on here will be more than helpful.

Intothemiddle.