Support

Admin Tools

#13498 blocking IPN callbacks?

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by on Wednesday, 07 November 2012 18:00 CST

Tuesday, 11 September 2012 01:32 CDT

user47161
Joomla! version: 1.5.26
PHP version: 5.3.16
MySQL version: 5.1.63-cll
Host: nethotel.at
Admin Tools version: 2.2.9

Description of my issue: I have issues with another component (nBill) that cannot process incoming paypal payments automatically. The developer said, that it is not an issue of nBill but of some security settings on my server. That's why I am asking you, if your Admin Tools are blocking IPN callbacks in any way?

Here are the last two replys of nBills developer, maybe they help you to understand the issue?
-----
The conflict is not with nBill, it is with Paypal's IPN callbacks. I can understand your scepticism, as it may sound like I am 'passing the buck'. To demonstrate the problem, if you open the attached page with a browser, you can perform a spoof IPN callback.
I don't know if Admin Tools Professional will intercept these callbacks or not - usually when an HTTP response code of 403 is quoted in an error, that indicates the Apache server software is rejecting the page request, but it is possible that another security tool could hijack the Apache response codes. Perhaps you can temporarily disable ATP while you do a spoof post and see if that resolves it?
-----
The fact is there is no problem in nBill. Over 1000 people are using nBill, most of them with Paypal, and nobody else is experiencing this issue. The IPN spoof demonstrates that nBill is processing callbacks correctly. There must be some issue with the connection between Paypal and your server. Last time I tested it, as I said before, your server was responding with a 'forbidden' error, but still sending a 200 status code to Paypal. This is likely due to some security feature of your hosting, but that is outside of my control

Any idea if your component causes this issue?

Regards,
Michael

Tuesday, 11 September 2012 05:45 CDT

nicholas
Yes, I actually do think it's possible. First things first. If you are using our .htaccess Maker please ask nBill's author how the IPN is handled. If it's handled by a PHP script which runs outside Joomla! –i.e. not loaded through Joomla!'s index.php file– then he needs to tell us the path of the PayPal IPN handling script as we'll have to add it to the exceptions list of Admin Tools' .htaccess Maker.

If this is not the case you should be able to the block and the reason for the block in Admin Tools' Security Exceptions Log. Just tell me the Reason and URL displayed there and I'll help you fix that.

Nicholas K. Dionysopoulos

Lead Developer and Director

πŸ‡¬πŸ‡·Greek: native πŸ‡¬πŸ‡§English: excellent πŸ‡«πŸ‡·French: basic β€’ πŸ• My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Tuesday, 11 September 2012 08:20 CDT

user47161
The answer of the author of nBill: "It is handled through Joomla's index.php file."

Tuesday, 11 September 2012 09:17 CDT

nicholas
OK, in that case we can forget about the .htaccess Maker, it's irrelevant.

Try to replicate the issue after disabling the "System - Admin Tools" plugin. If you can still replicate the issue, it is not caused by Admin Tools. Disabling that plugin means that Admin Tools code (including the Web Application Firewall) is not running on your site. If that did stop the issue from occurring, we'll have to do some troubleshooting.

First go to Admin Tools, Web Application Firewall, Configure WAF. Make sure "Log security exceptions" is set to Yes; if it's not, set it to Yes and click on Save. Now try reproducing your issue. Immediately after that, please go to Admin Tools, Web Application Firewall, Security Exceptions Log and go to the last page. The last log entry should have the date and time of when the issue occurred. Please copy the Reason and Target URL here so that I can help you.

Nicholas K. Dionysopoulos

Lead Developer and Director

πŸ‡¬πŸ‡·Greek: native πŸ‡¬πŸ‡§English: excellent πŸ‡«πŸ‡·French: basic β€’ πŸ• My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Monday, 08 October 2012 07:02 CDT

user47161
Hello,
sorry for the delay. It was very hard to find somebody who was willing to test my site with his paypal account.
The result: PayPal Payments work when Admin Tools are turned off by disabling the admin tools plugin. When Admin Tools are active, PayPal Payments cannot be processed automatically. The issue can be replicated easily with activated admin tools plugin.

But I am afraid, that troubleshooting will not be easy, because your WAF did not produce any security exceptions log, though it seemed to block something.

Here are the details:

With disabled admin tools, the nBill component processed the paypal payment immediately and correctly. BUT it produced two runtime error messages like this:

Im Frontend von nBill ist ein Fehler aufgetreten. Genauere Informationen unten:



Billing Version:

Service Pack:

Domain: http://nethotel.at

Date/Time: 08-Oct-2012 06:10:39 am

IP Address: 173.0.81.1

Page: http://nethotel.at/index.php?option=com_nbill&action=gateway&task=ipn&gateway=paypal&Itemid=1

Referrer:

Error Log ID: 4

Error Message: date() [<a href='function.date'>function.date</a>]: It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected 'America/New_York' for 'EDT/-4.0/DST' instead

File Name: /home/nethotel/public_html/administrator/components/com_nbill/framework/classes/nbill.common.class.php

Line Number: 1182

PHP Version (and OS): 5.3.16 (Linux)

CMS: Joomla!

CMS Version: 1.5.x

and
Im Frontend von nBill ist ein Fehler aufgetreten. Genauere Informationen unten:



Billing Version:

Service Pack:

Domain: http://nethotel.at

Date/Time: 08-Oct-2012 06:10:39 am

IP Address: 173.0.81.1

Page: http://nethotel.at/index.php?option=com_nbill&action=gateway&task=ipn&gateway=paypal&Itemid=1

Referrer:

Error Log ID: 5

Error Message: mktime() [<a href='function.mktime'>function.mktime</a>]: It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected 'America/New_York' for 'EDT/-4.0/DST' instead

File Name: /home/nethotel/public_html/administrator/components/com_nbill/framework/classes/nbill.common.class.php

Line Number: 1177

PHP Version (and OS): 5.3.16 (Linux)

CMS: Joomla!

CMS Version: 1.5.x
.

When admin tools is active, nBill does neither process paypal payments nor send out runtime error messages!
Admin Tools seemed NOT to produce any security exceptions log, though I set "YES" in the configuration as you told me to do. The WAF Exceptions Log seems to be completely empty.

Monday, 08 October 2012 07:09 CDT

nicholas
First, please do upgrade to Admin Tools 2.2.10.

Actually, the runtime error messages are:
a. not errors, they are warnings. It means that nBill is using an unsafe way of determining the current date and time.
b. unlikely to happen with Admin Tools. Admin Tools actually tries to set the default timezone when it's not set. We do it so as not to have these warnings produces by Admin Tools or any other component. Maybe these errors are generated in exactly the opposite case, i.e. when Admin Tools is not enabled?

In any case, this URL gives us the exact information we want in order to disable WAF for nBill:
http://nethotel.at/index.php?option=com_nbill&action=gateway&task=ipn&gateway=paypal&Itemid=1

Please go to Admin Tools, Web Application Firewall and click on "WAF Exceptions", then click on "New" in the toolbar. Enter the following:
Component: com_nbill
View: Leave blank
Query Parameter: Leave blank
and click on Save & Close.

Please note that this completely disables Admin Tools WAF for nBill. There should be no other conflict.

If that still doesn't work, I can't do anything else to help you. We have already stopped supporting our software on Joomla! 1.5 which means that we can no longer offer to debug the issue directly on your site.

Nicholas K. Dionysopoulos

Lead Developer and Director

πŸ‡¬πŸ‡·Greek: native πŸ‡¬πŸ‡§English: excellent πŸ‡«πŸ‡·French: basic β€’ πŸ• My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Wednesday, 07 November 2012 18:00 CST

System Task
system
This ticket has been automatically closed. All tickets which have been inactive for a long time are automatically closed. If you believe that this ticket was closed in error, please contact us.

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!