1

我已将贝宝快速结帐与我的应用程序集成。几天前,我收到了来自 Paypal 的以下电子邮件。

Dear Customer,

In keeping with industry standards set by the Certification Authority/Browser (CA/B) Forum, PayPal will discontinue supporting 1024-bit key length certificates and will migrate to 2048-bit certificates before the end of 2013.

We have completed the installation of 2048-bit certificates for all API endpoints in our PayPal Sandbox and Payflow Pilot environments, and we will be doing the same for our production environments starting on August 6, 2013.

We strongly encourage merchants to thoroughly test any existing integration(s) in the PayPal Sandbox and/or Payflow Pilot environments to ensure this migration will not cause any unforeseen issues.

Please have the team or person responsible for your integration refer to the following:

If you need to import the new PayPal Sandbox and/or Payflow Pilot server certificates to your application or system truststore, you can download production and Sandbox certificates from https://ppmts.custhelp.com/app/answers/detail/a_id/952.

If you don’t typically import the server certificates to your truststore, you can proceed with testing with no other action required.

If you have any questions, please contact PayPal Merchant Technical Services by filing a ticket; refer to PP-LIVE-3503. You may also visit our Live Site Status blog.

Sincerely,

PayPal

我正在使用 API 签名而不是证书。所以,我真的不需要在这里做任何事情,对吧?

4

1 回答 1

2

更改的不是 API 证书,而是更改为 2048 的端点证书。因此,您的 API 凭证是否包含 API 签名或 API 证书都无关紧要。

如果您以某种方式存储和验证 PayPal 的 API 端点 SSL 证书与(相同)SSL 证书的本地存储副本,则只需要更改任何内容。通常这是在所谓的“信任库”中完成的。
由于 PayPal 的 API 端点证书会更改,因此您需要相应地更新信任库中的证书。

所以是的,如果您只是使用 API 签名或 API 证书进行 API 身份验证,则无需更改任何内容。

于 2013-07-24T13:23:55.467 回答