[SOLVED] CIC Crédit Mutuel - incorrect Secret Key signature

Hi

I have a similar problem and I understand exactly what I need to do

Hébergement OVH mutualisé (http)
Paiement Crédit Mutuel
Retour payetest CGI2 : NOT OK avec problem de certificat de sécurité with
on my site : The Secret Key signature is incorrect. Please contact site administrator to check error log.

But the key is the good key and Crédit Mutuel has made the payment - The rules (ACL) of access to read the notif.php file are open

The plugin notif.php url is with https. I have given it to Crédit mutuel is with https or my site is with http

What should I do :


-ask the CM indicate the address in http ?
-take a certificate of security at OVH ?
-...?

Merci de votre aide

Thank you for your help

Manuel

Please redo the steps to populate your following CBSubs CIC gateway fields:

CIC Credit Mutuel Societe/Site Code
CIC Credit Mutuel HMAC Secret
CIC Credit Mutuel HMAC Encryption

make sure that these settings correspond with your CIC site settings.

Hi

Settings are good. I just checked several times
I still have a test.

CIC Credit Mutuel TPE/Virtual EPT Number: Ok
CIC Credit Mutuel Societe/Site Code: Ok
CIC Credit Mutuel HMAC Secret: Ok
CIC Credit Mutuel HMAC Encryption: SHA1

The CM does not access: https://analysedespratiques.com/newsite/components/com_comprofiler/plugin/user/plug_cbpaidsubscriptions/processors/ciccreditmutuel/notif.php

I you send by mail the return I have by CM on the last test

Thank you

Manuel

Hi

I send you by mail the info for the backend

Here is the mail from return of the Crédit mutuel

"We confirm that there is an error when we call your interface return URL. We have a "Curl 51" message (error checking of the certificate).
Your key is the SHA-1 format. Anyway the data you use is fair (No. TPE, company code, key), otherwise you would already have an error message upon arriving at the payment page.

By testing the interface return you URL we had provided, we also get an error message related to the certificate. This is by doing a test on Internet Explorer and Firefox.
The concern lies at the level of the certificate that you use for your interface return URL.

We invite you to copy your URL in a browser to view this message.

Please check this page for example, certificate see pass the page to ask us to change the format of the URL and HTTP."

Thank you

Manuel

You don't seam to have a valid HTTPS certificate. I can't recall if CIC Credit Mutuel requires an HTTPS endpoint or not, but I believe they d (something you'll need to ask them about). If they don't require HTTPS you need to setup CIC Credit Mutual with the same notification URL except with HTTP instead of HTTPS. The alternative is getting a valid HTTPS certificate.

Hi Thank you very mutch

Here is the answer of the CM "we inform you that you is not necessary to send a CGI2 https URL, an http URL can also be used."

The url is now without https. Th test is ok.

Regards

Manuel