Hi,
I'm having an issue on M2.3.6 PayFlow. I am trying to work with PayPal support, but they haven't been very good to this point.
I am using the instructions here:
https://docs.magento.com/user-guide/v2.3/payment/paypal-payflow-pro.html
First, as per instructions above: Step 2: Begin Magento Configuration Then Step 3 - Complete the Required PayPal Settings #2 - User The ID of an additional user who is set up on your PayPal account, I setup a second admin user in manager.paypal.com and used that for the Vendor field when configuring it in admin.
That resulted in every transaction I put through on the website declining. But, there was no failed order in my admin or in PayPal as declined.
PayPal support told me to use the primary/initial login for Vendor in confiration, and that solved that issue, but now it just spins out, but it seems to be communicating. Please see this video:
https://www.screencast.com/t/fvTIbsaHeO
I read several other threads on M2.2 and other version numbers with ideas such as:
- configure Return URL Method in your manager.paypal.com account: Service Settings -> Hosted Checkout Pages -> Set Up -> Payment Confirmation section.
I set this to https://www.vulcansrest.com/checkout/onepage/success It didn't help.
I am getting a number of errors like:
Refused to send form data to 'https://payflowlink.paypal.com/'; because it violates the following Content Security Policy directive: "form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net 'self' 'unsafe-inline'". Refused to load the script 'https://www.google.com/recaptcha/api.js?onload=globalOnRecaptchaOnLoadCallback&render=explicit' because it violates the following Content Security Policy directive: "script-src assets.adobedtm.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com video.google.com vimeo.com www.vimeo.com js.authorize.net jstest.authorize.net js.braintreegateway.com cdn-scripts.signifyd.com www.youtube.com 'self' 'unsafe-inline' 'unsafe-eval'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback. Refused to frame 'https://payflowlink.paypal.com/' because it violates the following Content Security Policy directive: "frame-src 'self' geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com".
Here is a screenshot:
https://www.screencast.com/t/yZ2DrWxqt
The url is https://www.vulcansrest.com/ if you want to see for yourself.
Thanks in advance for any help you can provide.
Kory
Hi, I am having the same issue?
Did you get a solution for this?
I am on Magento 2.4.3
Getting the following issue today out of nowhere. We did not change anything on our end.
payflowlink.paypal.com/:1 Failed to load resource: the server responded with a status of 503 (Service Temporarily Unavailable)
Getting this in the console:
Refused to send form data to 'https://payflowlink.paypal.com/' because it violates the following Content Security Policy directive: "form-action secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.amazon.com *.amazon.co.uk *.amazon.co.jp *.amazon.jp *.amazon.it *.amazon.fr *.amazon.es *.amazon.de *.yotpo.com 'self' 'unsafe-inline'".
[Report Only] Refused to frame 'https://payflowlink.paypal.com/' because it violates the following Content Security Policy directive: "frame-src 'self' fast.amc.demdex.net secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com *.amazon.com *.amazon.co.uk *.amazon.co.jp *.amazon.jp *.amazon.it *.amazon.fr *.amazon.es *.amazon.de *.payments-amazon.com *.payments-amazon.co.uk *.payments-amazon.co.jp *.payments-amazon.jp *.payments-amazon.it *.payments-amazon.fr *.payments-amazon.es *.payments-amazon.de *.dotdigital-pages.com *.dotdigital.com cdn.dnky.co webchat.dotdigital.com *.google.com *.addthis.com *.pinterest.com *.yotpo.com".
[Report Only] Refused to frame 'https://payflowlink.paypal.com/' because it violates the following Content Security Policy directive: "frame-src 'self' fast.amc.demdex.net secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com *.amazon.com *.amazon.co.uk *.amazon.co.jp *.amazon.jp *.amazon.it *.amazon.fr *.amazon.es *.amazon.de *.payments-amazon.com *.payments-amazon.co.uk *.payments-amazon.co.jp *.payments-amazon.jp *.payments-amazon.it *.payments-amazon.fr *.payments-amazon.es *.payments-amazon.de *.dotdigital-pages.com *.dotdigital.com cdn.dnky.co webchat.dotdigital.com *.google.com *.addthis.com *.pinterest.com *.yotpo.com".
Getting the following in the network section
<HTML> <HEAD> <TITLE>Weblogic Bridge Message </TITLE> </HEAD> <BODY> <H2>Failure of server APACHE bridge:</H2><P> <hr>No backend server available for connection: timed out after 10 seconds or idempotent set to OFF. <hr> </BODY> </HTML>
i same problem, how to fix it?
Disable Magento_Csp extension and check it