Authorize.net will stop supporting MD5 based hash usage

Hi there,

One of our clients has just forwarded me this email. I think it might be important for us as our POS also use authorize.net as a payment gateway.

Please find the content below:

On March 14, 2019, Authorize.net will stop supporting MD5 based hash usage (http://email2.magento.com/E0s0G1rZGEQ0q0jD2j05X0w) .

Magento’s implementation of the Authorize.Net Direct Post payment method uses MD5 based hash and this change will result in Magento merchants not being able to process payments using Authorize.Net Direct Post.

This issue affects all Magento versions, Magento 1 and Magento 2, Magento Commerce, Magento Commerce Cloud, and Open Source.

If you use Authorize.Net, take the following action to avoid disruption:

  1. Apply a patch provided by Magento
  2. Replace the existing MD5 hash with a Signature Key (SHA-512) in the Magento Admin configuration settings.
    (This patch was released on March 1, and instructions can be found on the Magento Help Center (http://email2.magento.com/VQG0100sjw0D200GX5jrFq0) .)
    The new integration will also be implemented in Magento 2.3.1, expected at the end of March.
    Magento Customer Support is available to answer any questions you have.

Regards,
The Magento Team

4 Likes