-===============================================================-
-= PayJunction (http://www.PayJunction.com) Trinity E-Commerce =-
-===============================================================-

-==============-
-= ZenCart =-
-==============-
PayJunction Trinity Payment Module for ZenCart

Date: December 2, 2010
Files(2): payjunction_quicklink.php
Description: Implementation of the Trinity Gateway Service API v1.2 in PHP for ZenCart.
 

--Protecting your Website and Payment Applications from Man-In-The-Middle-Attacks--
Our API allows merchants and developers to connect to PayJunction via an encrypted SSL communications link. In order for your website or payment application to verify that your connection to PayJunction has not been intercepted, all code that connects to PayJunction must verify then authenticity of our SSL certificate by performing strict server certificate verification against PayJunction's root certificate authority. It has come to our attention that some merchants have disabled the SSL certificate verification for testing purpose; while the SSL connection remains secure, it is possible that an attacker could try to initiate a Man-In-The-Middle attack in an attempt to intercept your website's or applications connection to PayJunction.

Common Mistake: Anyone website or application that does not verify the authenticity of PayJunction's SSL certificate upon connecting to our QuickLink API.

Solution: Turn SSL verification on prior to connecting to PayJunction for transaction authorizations. In the event that your website is unable to verify the authenticity of PayJunction's root certificate, your website and/or application should not transmit any transaction information and should reject your customer's transactions. If you believe your application is unable to verify the authenticity of PayJunction's certificate, contact our support department.

--PayJunction Security Requirements and Best Practices for Merchants and Developers--
https://www.payjunction.com/trinity/support/view.action?knowledgeBase.knbKnowledgeBaseId=451

--Please note--
There is no warranty for the programs or example code provided in PayJunction's support center. The copyright holders and/or other parties provide the program "as is" without warranty of any kind, either expressed or implied, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. The entire risk as to the quality and performance of the program is with you. Should the program prove defective, you assume the cost of all necessary servicing, repair or correction. It is the merchant's responsibility to ensure their systems meet the PCI requirements. PayJunction's Gateway Agreement have been updated to include the referenced "PayJunction Security Requirements and Best Practices for Merchants and Developers;" it is the merchant's responsibility to review this knowledge base on a regular basis for the security of the merchant's account and to protect cardholder data.

Please contact us if you have any questions.

With Kindest Regards,
The PayJunction Team
support@payjunction.com

-===============================================================-

==================
== Installation ==
==================

1. Place the following files into their respective directories inside your ZenCart installation (on your web server/hosting account):

includes/languages/english/modules/payment/payjunction_quicklink.php
includes/modules/payment/payjunction_quicklink.php

2. Log in to your ZenCart administration console and go to: Modules >> Payment

3. Within the list of Modules, click on "PayJunction Trinity (QuickLink)".

4. On the right side of the page, click on the "Install" button.

5. Configure your settings, then click the "Update" button.

==========
== Help ==
==========

If you have any questions, please contact PayJunction Customer Support at: 1-800-601-0230 x 3, M-F, 8-5 PST.

PayJunction Inc.
http://www.PayJunction.com


