views:

80

answers:

0

I recently inherited a Rails site that uses ActiveMerchant for e-commerce transactions through CyberSource as a merchant gateway. A few days ago, I received an email from CyberSource informing me that CyberSource's SSL authority, Entrust, is mandating the use of higher-strength SSL certificates, and that in order for SOAP API calls to be valid past Feb 22, 2010, the new SSL certificates need to be trusted. The email also contained links to the new Root, First Intermediate, and Second Intermediate certificates, which are all of the form "----BEGIN CERTIFICATE-----", followed by a bunch of alphanumerics, followed by "-----END CERTIFICATE".

I'm really not sure what to do here. Though I've got some Rails experience, I've never used ActiveMerchant before (with CyberSource or anyone else), and I need to upgrade these SSL certificates ASAP. To make things worse, there's no test server set up for the Rails app, so I can't run any tests to ensure that the changes were made correctly. (And setting up a test db isn't really an option either--there's a lot of bureaucratic red tape standing squarely in the way of that approach.)

Can anyone with ActiveMerchant experience tell me what I need to do with these 3 certificates in order to make CyberSource happy with my API calls?

Thanks in advance!

Justin