Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.Other modules like commerce_payment_example and commerce_paypal do load their actual payment forms inline with the selection of the payment method. commerce_saferpay presents the credit card form on the Off-site payment redirect pane for business account. This is no the desired behavior for my use case since I do not want the payment to be on a extra step.
How could we implement this? Or is there a reason why it's not implemented this way?
Comments
Comment #1
berdirThe problem is that the payment form does a direct POST to Saferpay so that we never ever store the credit cards anywhere (form cache...). Saferpay *does* return anything to the confirmation page, but it would be rather complicated to then somehow go back to the checkout process with the correct values, we would have to fake a lot of stuff.
Comment #2
miro_dietikerPlease show us a solution that is PCI compliant and provides a direct CC form in Drupal Commerce.
Comment #3
luksakI don't know if commerce_paypal is PCI compliant, but it does display the credit card form directly after the payment method selection.
Comment #4
berdirPaypal does, just like any other that I know, a normal, internal form submit to Drupal and then sends an API call to Paypal. I don't think that is PCI compliant because the credit cart information is for example stored in the cache_form table.
Saferpay explicitly doesn't work like that, which has the side effect that it needs to be on it's own page, as a separate step.