Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Wallee Fingerprint Script in Magento 2.4.7 Checkout #38

Open
mischi99 opened this issue Jun 13, 2024 · 4 comments
Open

Wallee Fingerprint Script in Magento 2.4.7 Checkout #38

mischi99 opened this issue Jun 13, 2024 · 4 comments

Comments

@mischi99
Copy link

We have updated the Wallee payment to the latest version, 2.1.14.

image16
image17

On the website, there is only one block left that does not load an additional script correctly. Therefore, Magento complains about:

  • The method of adding the script
  • The remote script that Wallee tries to upload.

image15

As a result, Magento blocks the "fingerprint" script.
https://fingerprint.com/

They add this script aggressively, almost like a hacker would. We can't fix it because the process is embedded in a script downloaded from the Wallee server.

image18

The payment works, but the "fingerprint" script doesn't collect information about the current customer.

@Dominik-Niziol
Copy link

Hello,

Thank you for your message.

I have involved our experts and we are working on a solution. I will get back to you with an update as soon as possible.

Thank you for your patience and understanding for the longer processing time.

Sincerely,
Dominik

@Dominik-Niziol
Copy link

Hello,

In order to analyse your request we would need more informations.

Could you please expand on what settings you are using in our plugin and provide us with a detailed instruction on how to reproduce the error? Could you also please provide us with the URL/which script is blocking?

Thank you in advance for your response.

Sincerely,
Dominik

@mischi99
Copy link
Author

Hello @Dominik-Niziol

To repeat the problem: Magento needs to be updated to the latest version: 2.4.7-p1

The update introduced new CSP security features.

CSP must be enabled on the site.
https://developer.adobe.com/commerce/php/development/security/content-security-policies/

Blocked script:
https://gmtech.mfgroup.ch/fingerprint/cdn?session=15c3f134-1459-4fdb-9979-cb223581a322&merchant=2000

Best regards

@Dominik-Niziol
Copy link

Dear @mischi99

We have added a new option in the configuration to disable the fingerprint setting. If you are still having issues you can disable it with the following steps in Magento Stores -> Sales -> wallee Payment -> Checkout

Best regards

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants