Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Paypal IPN error with embedded newline in address

Tags:

php

paypal-ipn

So, this is a new one on me. My Paypal IPN has been working for sometime, and started getting an error today.

During the postback to verify with PayPal (adding cmd=_notify-validate), the PayPal responder says "no that wasn't from me". The only thing bizarre about this particular entry is (I believe) the way the user specified their address:

123 Address Street
#789

Everything else seems normal and the IPN-handler is handling other notifications quite happily.

Anyone seen anything like this?

like image 632
Shadow Radiance Avatar asked Nov 22 '10 18:11

Shadow Radiance

2 Answers

Okay, so I've found my error, and yes, it is related to the newline in the address.

Basically I was doing this:

foreach ($post_array as $name => $value) {
  $value = urlencode($value);
  $post_string .= $name . '=' . $value . '&';
}
$post_string .= "cmd=_notify-validate";

When I needed to also convert the /n to a /r/n, like so:

foreach ($post_array as $name => $value) {
  $value = urlencode(str_replace("\n", "\r\n", $value));
  $post_string .= $name . '=' . $value . '&';
}
$post_string .= "cmd=_notify-validate";

Now PayPal is happy.

Le sigh.

like image 58
Shadow Radiance Avatar answered Oct 31 '22 15:10

Shadow Radiance

Update 2018, since I just hit my head against this bug AGAIN after updating a site from CI v2 to CI v3...

Starting in CodeIgniter v3, newline standardization is now off by default (was previously ON by default). And as of CI v3.1.3, standardize_newlines is considered deprecated, so time to wean off it if you haven't already.

The result of this was that the first time my IPN script had to process an address with a line break in it, Paypal's response was that it was invalid.

Took a while to figure out, since I didn't realize that the newline standardization default was different. But the solution is to simplify the code that's concatenating that response string to send back to Paypal, by just taking out the (str_replace("\n", "\r\n", $value) part and replacing it with just $value (still doing the urlencode though).

So it's back to how it should have worked in the first place, essentially... and now PayPal is happy again.

like image 24
Dr Marble Avatar answered Oct 31 '22 15:10

Dr Marble
Sign in to Comment

Related questions

How to determine breadcrumbs for products with multiple categories?
PHP: can one determine the parent array's name and key from a reference to an array element?
Split array into unique pairs
Can I use dynamically created form fields with the Security Component in CakePHP 1.3?
need to read data from a log... tail, grep and inotifywait
Store UTC date time in database
Select DISTINCT from multiple columns of multiple tables with PHP and MySQL
inner join mysql tables
How is http post method implemented?
Curl PHP File Upload
Up/down voting script
How to use a php script to grab rss feed content
Should I rebuild my PHP website with a document database in order to improve performance?
How to prevent PhpStorm to save file on exit without prompt?
Calculate average without being thrown by strays
PHP deprecated warnings on Drupal pages despite turning them off in php.ini
php request url without waiting for response
PHP clear browser cache to avoid form data resend after refresh
Simplify a nested array into a single level array [duplicate]
simplest, shortest way to count capital letters in a string with php?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!