Authorize.Net CIM with Recurring Profiles for Magento

• Added protection to frontend My Payment Data page to help prevent abuse. (Will now require order history to use, and block after numerous failures.)
• Added settings check for corrupted API credentials.
• Added support for browser CC autofill.
• Added support for pulling expiration date and CC BIN from the CIM API.
• Fixed legacy card handling when migrating from Hosted CIM.
• Fixed multishipping checkout when adding a new card with Accept.js enabled.
• Fixed possible Accept.js error with CCV disabled.
• Fixed possible PHP error on checkout failure with Accept.js enabled.
• Modified legacy card importer to pull expiration date.

• Added 'save info' payment action to save payment info on checkout without authorizing or capturing funds.
• Improved Accept.js user experience. Errors and behavior will be better communicated, and 'two clicks to submit' behavior should be eliminated.
• Improved Accept.js compatibility with some one-step-checkout extensions.
• Fixed exceptions when billing multiple orders with address changes in a single request.
• Fixed unintended extra card validation on update of a duplicate card on checkout.

• Fixed Accept.js invalid token errors on card resync during capture.
• Fixed Accept.js invalid token errors on edit and reorder.
• Fixed Accept.js token expiration if on checkout review more than 15 minutes.
• Fixed Accept.js rejecting separators in CC numbers.
• Fixed Accept.js error messages to go through Magento's JS translation.
• Fixed a card synchronization issue when a checkout error happens after updating billing address.
• Fixed possible PHP warning if TokenBase module is enabled without any TokenBase payment method.
• Changed CCV fields to apply to transaction when Accept.js is enabled.
• Added multi-line street support to My Payment Data.

• Added 3D Secure support during checkout for Verified by Visa and MasterCard SecureCode, via Mage_Centinel.
• Fixed a potential error on partial invoice with failed or disabled reauthorization.
• RP: Improved performance of recurring profile updates during checkout under large scale (thanks Bob).

• Fixed a compatibility issue with PHP 5.2.
• Fixed gateway errors during reauthorization preventing online capture of the remainder.
• Fixed adding a new card on the card management page that was previously stored failing to restore it as active.
• Changed refund API call to use createTransaction.
• Changed transaction update (fetch) to maintain consistent data keys for integration purposes.

• Fixed duplicate cases not being identified when customerPaymentProfileId is returned in the response, resulting in a card never being updated with new info (expiration date) during checkout.
• Fixed the card merge process such that the new data is retained rather than the old data, when handling duplicate cards.

• Added new Authorize.Net 'createTransaction' API call, with numerous benefits.
• Added a setting to disable reauthorization on partial invoice.
• Added a setting to control whether the 'save card' checkbox is selected on checkout.
• Added new SSL certificate authorities per the Authorize.Net production changes.
• Improved Magento order transaction handling, for better void behavior and access to transaction info from the Magento Admin order pages.
• Improved error handling for card edits.
• Improved shipping address handling (no longer a separate request; won't cause problems if address changes during order processing).
• Improved legacy data migration via an index on sales_flat_order.ext_customer_id.
• Changed gateway to use the new Akamai endpoint (api2.authorize.net).
• Fixed a potential namespace error during XML parsing.
• Removed gateway timeout on transaction requests, to prevent compounded errors during Authorize.Net performance issues. (15 sec timeout is still present for non-transaction requests.)
• API: Fixed 'updateCard' request not setting customer data on new cards.
• API: Fixed 'updateCard' request not returning the affected card ID.
• API: Fixed 'updateCard' request throwing errors for SOAP, and not working with country restrictions.
• RP: Fixed order confirmation email not sending on the first billing when using custom start dates.

• Compatibility fix for Magento patch SUPEE-6285.
• Fixed AVS/CCV response status being overwritten by follow-up transactions, going forward.
• Fixed partial invoicing reporting the order tax rather than invoice tax amount.
• Fixed refund reporting the order shipping rather than credit memo shipping amount.
• Fixed a configuration scope issue on admin customer card create/edit.

Be sure to update any copies of our templates when upgrading to this version! Failure to do so will break checkout.

• Added ACH (eCheck) support.
• Improved security of stored card use via card hashes, and fixed errors with some integrations caused by previous security checks.
• Improved error handling during checkout to send the user back to the payment info step when appropriate.
• Improved handling of stored card data that is missing or invalid.
• Fixed 'no direct response' error message when encountering a missing CIM profile.
• Fixed broken expired-auth capture (regression in 2.0.2).
• Fixed a potential error on 'My Payment Data' page if the breadcrumbs block was removed from theme.
• Fixed a potential error during checkout on CE 1.7 with VAT group change enabled (thanks Laura).
• Fixed a potential notice and error for certain cases (including only free items).
• Fixed missing cc_type for legacy stored cards using transaction response data.
• Fixed potentially sending an invalid shipping address to CIM in some circumstances.
• Fixed invalid characters in item names being sent to Authorize.Net.
• Fixed missing 'company' field in My Account, and sending of company to Authorize.Net.
• RP: Added support for custom options with recurring profiles (Magento core bug/oversight).
• RP: Fixed RP edit form and shipping address changes.
• RP: Fixed RP card permissions for guest checkout.
• RP: Fixed errors on RP edit if original shipping address no longer exists.

• Fixed credit card validation rejecting expiration dates in the current year. (Important)
• Fixed a calculation error with line item discounts.
• Fixed inability to save cards from My Account if payment method is only active for certain countries.
• Fixed card save error messages not being communicated properly in all situations.
• Fixed the form not remembering entered data in My Account when certain errors occur on save.
• Fixed an address validation compatibility error with Magento CE 1.5-1.6.
• Fixed a date compatibility error with Magento CE 1.5.
• Fixed a setup compatibility error with Magento CE 1.5.
• Modified payment method to better handle an invalid data situation.
• RP: Fixed in_trial check to ensure all necessary data is present.

• Fixed guest cards displaying in the admin panel when creating a new customer order, or editing a guest order.
• Fixed the card management tab displaying in the admin panel when creating a new customer.
• Fixed an error in API schema (WSDL).
• Fixed an error preventing online cancel of authorization in CE 1.7 and prior.
• Fixed a compatibility error with PHP 5.2.
• Fixed a compatibility error with OneStepCheckout and guest checkout.

• RP: Added proper recurring profile edit functionality (change shipping address and payment info).
• RP: Added support for SARP 1.x.
• RP: Modified rebilling process to only auto-invoice if payment action is authorize+capture.
• RP: Fixed time handling with RP next billing date changes.
• Added support for AFDS (fraud review).
• Modified account pages to always force SSL (thanks Robbie).
• Modified 'card in use' logic to only catch pending orders.
• Fixed an initialization error when viewing CIM transactions with the payment module disabled.
• Fixed a validation error on the customer edit form.
• Fixed an error with card saving and partial captures.

• RP: Fixed billing failure to suspend profiles instead of cancel (consistent with the setting description).
• Modified frontend 'My Account' form to use Magento region library for states and countries.
• Modified gateway class to strip additional illegal characters.
• Fixed authorize-then-capture billing removing customer cards on invoice.
• Fixed PHP notice on the admin order form.

• Fixed compatibility issue with Magento's Compilation functionality.
• Added admin notification support for extension updates.

• Added the option to save or not save a card on checkout (for non-recurring orders).

• RP: Fixed fatal error in billing cron.
• Fixed JS error on admin customer card management.
• Modified checkout process to update billing address on existing cards.
• Modified checkout to not provide the stored card option to guests, for security reasons.
• Added transaction info to additional_information in the payment model, consistent with the default Authorize.Net model for integration purposes.

• RP: Fixed error when creating a nominal admin order with 'send email confirmation' checked.
• RP: Fixed recurring orders not sending order confirmations.
• Added code to prevent cards from being modified or deleted while attached to an open order.
• Fixed text strings in 'Manage My Cards' not using the language abstraction.

• RP: Fixed billing error, incorrect condition check on recurring profile length.
• RP: Fixed handling of 'paid' amounts on recurring profile orders, allowing credit memos to be used properly.
• RP: Modified virtual recurring profile orders to complete automatically, as per standard Magento behavior.
• Fixed the inactive setting not behaving as expected.

• Added code to handle 'not found' CIM profiles after changing between live and test Authorize.Net accounts.
• Added better error handling and notifications on invalid Login ID/Transaction Key.
• Fixed API error with potential undefined parameters.
• Improved the error message on card verification failure.
• Modified payment model to log all transaction results regardless of success/failure.
• Modified countries setting to only show when needed.