简体繁体 English

带有定期付款的远程信用卡存储（可能是 PayPal）

[英]Remote Credit Card storage (probably PayPal) with recurring payments

原文 2011-06-14 08:21:58 4 2 paypal/ credit-card/ payment-processing/ subscriptions/ recurring-billing

Well, I'm designing an online service that needs subscription in order to be used by the end user.好吧，我正在设计一个需要订阅才能被最终用户使用的在线服务。 It has a Free basic plan and then the user has several paid plans that are more feature rich.它有一个免费的基本计划，然后用户有几个功能更丰富的付费计划。

Subscriptions are monthly or yearly (user's choice).订阅是每月或每年（用户选择）。

By client spec, the service should have two paths to handle payments - credit cards processing or PayPal subscriptions.根据客户端规范，该服务应该有两种处理支付的途径——信用卡处理或 PayPal 订阅。 I'm about to handle the PayPal subscriptions, IPN and everything but I have worries about the credit cards.我即将处理 PayPal 订阅、IPN 和一切，但我担心信用卡。 I know how to make charges against CC with PayPal's API and I know very well that I can not store any sensitive information, so my idea is to use 3rd party service to store the credit cards through some secure API and then build a CRON job that will run every day to check if a subscription is about to expire based on some criteria and if so, charge for the next billing period.我知道如何使用 PayPal 的 API 对 CC 进行收费，而且我非常清楚我不能存储任何敏感信息，所以我的想法是使用 3rd 方服务通过一些安全的 API 来存储信用卡，然后构建一个 CRON 作业将每天运行以根据某些标准检查订阅是否即将到期，如果是，则为下一个计费周期收费。

Well, I have stored credit cards with Authorize.net in the past for different product.好吧，我过去曾在 Authorize.net 上为不同的产品存储过信用卡。 Their API allowed to create user profiles there (for which you obtain internal userid to keep), send a CCs to store (for which you obtain internal cc id to keep) and whenever you wanted you could do a charge against that id through the API.他们的 API 允许在那里创建用户配置文件（您获取内部用户 ID 以保留），发送 CC 存储（您获取内部 cc id 以保留），并且您可以随时通过 API 对该 ID 进行收费. But it was only when the user consciously submitted a form "pay for this with this credit card (last 4 digits retrieved from Authorize.net)" - so charging them with cron job in the background might lead to legal issues, although we would do that only for a service they consciously subscribed for.但是只有当用户有意识地提交了一个表格“用这张信用卡支付这个（从 Authorize.net 检索到的最后 4 位数字）”时——所以在后台向他们收取 cron 作业可能会导致法律问题，尽管我们会这样做那只是为了他们有意识地订阅的服务。

In short - I would like to know if having recurring payments with cron job on credit cards stored on remote service is the path to go (if not, please, recommend something).简而言之-我想知道在存储在远程服务上的信用卡上使用 cron 作业进行定期付款是否是通往 go 的路径（如果没有，请推荐一些东西）。 And if it is, I read that PayPal have a service to store credit cards in a way similar to Authorize.net but after extensive research I couldn't find any spec, any docs or any samples on how to do that.如果是这样，我读到 PayPal 有一项服务来以类似于 Authorize.net 的方式存储信用卡，但经过广泛的研究，我找不到任何规范、任何文档或任何关于如何做到这一点的示例。 Not that I can not do it with Authorize.net but PayPal seems to be technically much better compared to what I remember from Authorize.net.并不是说我不能用 Authorize.net 做到这一点，而是 PayPal 在技术上似乎比我记得的 Authorize.net 好得多。

2 个解决方案

Work with the API your payment processor provides;使用您的支付处理器提供的 API； some do have a solution for recurring billing using credit cards.有些确实有使用信用卡定期计费的解决方案。 Paypal have this: https://www.paypal.com/pdn-recurring . Paypal 有这个： https://www.paypal.com/pdn-recurring 。 Not sure about Authorize.Net - quick google found http://www.authorize.net/solutions/merchantsolutions/merchantservices/automatedrecurringbilling/ .不确定 Authorize.Net - 快速谷歌发现http://www.authorize.net/solutions/merchantsolutions/merchantservices/automatedrecurringbilling/ 。 Generally, in this model you set a billing schedule (eg "monthly"), and the payment provider does the rest - no CRON jobs.通常，在此 model 中，您设置计费时间表（例如“每月”），支付提供商执行 rest - 没有 CRON 作业。 You do have to deal with a failed payments.您确实必须处理失败的付款。

Look at Spreedly Core.看看 Spreedly Core。 It is a secure CC vault that connects to more than 30 gateways - like PayPal, Stripe, Authorize.net etc. It's another option to achieve what you're aiming for.它是一个安全的 CC 保险库，可连接到 30 多个网关 - 例如 PayPal、Stripe、Authorize.net 等。这是实现您的目标的另一种选择。