Authorize.Net Hosted Checkout
$80.00
Payment plugin for Authorize.Net with PCI compliance
Accept Payments Securely with Authorize.Net Hosted Checkout
The Authorize.Net Hosted Checkout plugin integrates the Authorize.Net Accept Hosted payment gateway directly into your nopCommerce store. At checkout, customers are redirected to a fully hosted payment page served by Authorize.Net, where they enter their card details in a secure environment — completely outside your server.
This approach keeps sensitive card data off your infrastructure, significantly reducing your PCI compliance scope. The plugin handles the full payment lifecycle: redirect, callback, real-time webhook processing, order status updates, capture, refund, and void — all managed from within nopCommerce.
Key Benefits
- Reduced PCI compliance burden — card data is collected on Authorize.Net's servers, never touching your store.
- Flexible order creation — choose whether orders are created before the redirect or only after confirmed payment, giving you full control over your order flow.
- Automated order status management — real-time webhook events from Authorize.Net update payment status automatically, eliminating manual reconciliation.
- Full payment operation support — capture, full refund, partial refund, and void transactions directly from the nopCommerce admin panel.
- Optional payment surcharge — apply a fixed or percentage-based additional fee at checkout when needed.
- Sandbox mode included — test the complete payment flow safely before going live.
Main Features
- Hosted checkout redirect — customers are sent to Authorize.Net's hosted payment page via a secure full-page POST redirect; no card data passes through your server.
- Two transaction modes — choose between Authorize Only (capture later from admin) or Authorize & Capture (charge immediately at checkout).
- Two order creation modes — BeforePayment creates the order on redirect; AfterPayment creates the order only after a successful payment webhook is received.
- Real-time webhook processing — the plugin registers a webhook with Authorize.Net and listens for payment events, validating each payload using HMAC-SHA512 signature verification.
- Capture, refund, and void from admin — perform full and partial refunds, capture prior authorizations, and void transactions without leaving nopCommerce.
- Visa Click to Pay support — optionally enable Visa Click to Pay on the hosted payment form by providing an API key.
- Bank Account payment option — allow customers to pay via bank account in addition to credit and debit cards on the hosted form.
- CAPTCHA on hosted form — reduce fraudulent payment attempts by enabling CAPTCHA on the Authorize.Net payment page.
- Configurable billing address and email fields — control whether billing address and customer email fields are shown or required on the hosted form.
- Additional fee support — add a fixed or percentage-based surcharge to the order total at checkout.
- Webhook management from admin — create and remove Authorize.Net webhook subscriptions directly from the plugin configuration page.
- Debug logging — enable file-based debug logging to the App_Data folder; download or clear the log file from the admin panel.
- Duplicate DLL detection — the plugin detects conflicting Authorize.Net SDK files from other installed plugins and warns the administrator.
- Per-store configuration — settings are isolated per store, supporting nopCommerce multi-store deployments.
Why Buy This Plugin
Building a reliable Authorize.Net integration from scratch requires handling secure redirects, webhook signature validation, order lifecycle management, refunds, voids, and multi-mode transaction flows — work that takes weeks and carries ongoing maintenance overhead. This plugin delivers a production-ready integration that covers all of these scenarios out of the box, with a clean admin interface and compatibility with nopCommerce's native order management.
- No custom development needed — install, configure, and accept payments.
- Covers the full payment lifecycle: authorize, capture, refund, partial refund, and void.
- Webhook-driven automation removes the need for manual payment status checks.
- Sandbox mode lets you validate the integration before going live.
- Ongoing compatibility maintained for nopCommerce.
How It Works
- Configure credentials — enter your Authorize.Net API Login ID and Transaction Key in the plugin settings. Select your transaction mode (Authorize Only or Authorize & Capture) and your preferred order creation mode.
- Set up webhooks — click the Get Webhook ID button in the admin panel. The plugin registers a webhook with Authorize.Net and stores the Webhook ID and Signature Key for secure event validation.
- Customer checks out — at checkout, the customer selects the Authorize.Net Hosted Checkout payment method and is redirected to the Authorize.Net hosted payment page, where they enter their card or bank account details.
- Payment is processed — Authorize.Net processes the payment and sends the customer back to your store. In AfterPayment mode, the plugin waits for a webhook event before creating the order.
- Order status is updated automatically — incoming webhook events are validated and processed in real time. The nopCommerce order is marked as authorized or paid accordingly, with transaction details saved as an order note.
- Manage payments from admin — capture, refund (full or partial), or void transactions directly from the nopCommerce order detail page without accessing the Authorize.Net dashboard.
Compatibility / Requirements
- Supported nopCommerce version: 4.90, 4.80, 4.70, 4.60, 4.50, 4.40, 4.30
- License — a serial number is required for production use; a 30-day trial with up to 100 payments is available for evaluation.
- Authorize.Net account required — an active Authorize.Net merchant account with API access (Login ID and Transaction Key).
- Webhook Signature Key required — must be obtained from the Authorize.Net merchant portal and entered in the plugin settings to enable secure webhook validation.
- Visa Click to Pay — requires a Visa Click to Pay API key and Authorize.Net account configuration; optional feature.
- Bank Account payment option — availability depends on your Authorize.Net merchant account setup; the plugin sends the configuration flag to the hosted form.
