Autify Digital Ltd Lloyds Cardnet Gateway

Breytingarsaga

3.0.12 –

• Compliance: Renamed all script, style, and AJAX action handles to use unique „autify-lloyds-“ prefix to meet WordPress plugin directory naming standards
• Compliance: Updated nonce names, transient keys, and lock keys with plugin-specific prefixes to prevent namespace collisions
• Compliance: Renamed global JavaScript variables with „autifyLloyds“ namespace to avoid global scope conflicts
• Security: Added nonce verification for Apple Pay and Google Pay payment processing AJAX requests (CSRF protection)
• Security: Added recursive sanitization of webhook data using sanitize_text_field() across all webhook handlers
• Security: Added input sanitization for $_GET parameters in admin pages using sanitize_text_field() and wp_unslash()
• Security: Added JSON validation and error checking in PaymentJS webhook handler
• Security: Added header value sanitization in PaymentJS webhook processing
• Fix: Added null-safety checks for wc_get_order() across all payment handlers to prevent fatal errors on missing orders
• Fix: Added isset() guards for AVS/CVV response fields, cart totals, and shipping address data to prevent undefined index notices
• Fix: Improved JSON decode error handling in Google Pay payment data processing
• Fix: Added proper validation for shipping methods array access and WP_Query availability checks
• Enhancement: Order not found errors now display user-friendly notices and redirect to checkout instead of failing silently
• Enhancement: Improved transaction notification URL validation for incomplete webhook data
• Code Quality: Removed legacy deleteOldLogFiles() method from Gateway Helper
• Code Quality: Updated CSS file references to use prefixed filenames

3.0.11 –

• Compliance: Removed hard-coded „Powered by“ credit link from public-facing payment form to comply with WordPress plugin directory attribution guidelines
• Compliance: Updated External Services section with full disclosure of all third-party services including Terms of Use and Privacy Policy links
• Compliance: Added disclosure for Fiserv Checkout Solution, Apple Pay, Google Pay, and Autify Digital License API external services
• Compliance: Added Fiserv Terms of Use and Privacy Notice links for First Data / IPG Online and Payment JS services
• Fix: Google Pay Shipment issues

3.0.10 –

• Performance: Removed flush_rewrite_rules from every page load, now only runs on plugin activation/deactivation
• Code Quality: WordPress PHPCS compliance improvements
• Enhancement: 3DS Flow Improvements

3.0.9 –

• Code Quality: WordPress PHPCS compliance improvements
• Feature: Configuration to enable or disable subscription
• Bug Fix: Double Subscription Request

3.0.8 –

• Code Quality: WordPress PHPCS compliance improvements
• Bug Fix: GET method call curl issue for the decline transaction

3.0.7 –
– Feature: Transaction Reports table with advanced filtering (status, payment method, date range)
– Feature: CSV export functionality for transaction reports with all filters applied
– Feature: Full-text search across all transaction columns (Order ID, Amount, Status, Card Details, IPs, etc.)
– Feature: Transaction summary statistics showing total transactions, amounts, and refunds
– Feature: Traffic light verification status indicators (CVV, Street, Postcode checks) in reports
– Feature: Transaction details meta box on WooCommerce order view page with payment and fraud details
– Feature: Cardnet Status column in WooCommerce order grid with payment status, verification indicators, and card info
– Enhancement: License sync cron job for automatic license validation
– Enhancement: Unified refund processing across all payment methods (Card, Apple Pay, Google Pay)
– Enhancement: Centralized table name management in gateway helper
– Enhancement: External CSS file for admin styles instead of inline styles
– Enhancement: Support for both legacy post-based orders and HPOS (High-Performance Order Storage)
– Code Quality: WordPress PHPCS compliance improvements
– Code Quality: Added translator comments for i18n strings with placeholders
– Code Quality: Proper variable prefixing for WordPress coding standards
– Code Quality: Added phpcs:ignore comments for WooCommerce core hooks usage
– Dev: Comprehensive unit test coverage for new features
– Dev: Refactored verification status methods to camelCase naming convention

3.0.6 –
– Security: Fixed security vulnerabilities with proper sanitization of $_GET, $_POST, $_REQUEST data
– Security: Added proper validation and sanitization using sanitize_text_field() and wp_unslash()
– Enhancement: Made debug logging conditional – error_log() now only runs when WP_DEBUG is enabled
– Enhancement: Complete WooCommerce address line 2 support across all payment methods (Payment JS, Apple Pay, Google Pay, HPP)
– Enhancement: Comprehensive unit test coverage for all new features and validations
– Fix: Enhanced security for payment token handling and form processing
– Fix: Improved address data handling in redirect payment forms and wallet payments
– Dev: Updated all payment gateway classes with secure data handling practices
– Dev: Enhanced license manager with proper AJAX security and nonce verification
– Dev: Added comprehensive test suite covering address handling, and license management

3.0.5 –
– Enhancement: Full tokenization support for HPP/Redirect payment gateway – customers can now save cards for future use
– Enhancement: Smart 3D Secure handling with dynamic challenge indicators based on transaction type
– Enhancement: Improved code organization with dedicated helper methods for payment data building
– Enhancement: Subscription support improvements with proper token handling for recurring payments
– Fix: Duplicate token saving issue between webhook and order confirmation resolved
– Fix: Session dependency removed from webhook – now uses order meta for reliable server-to-server communication
– Fix: Improved shipping method calculation for wallet payments (Apple Pay and Google Pay)
– Fix: Shipping options now properly update based on customer location
– Fix: Shipping methods now respect WooCommerce zone restrictions and conditions
– Fix: Total calculation now uses backend-calculated values for accuracy
– Enhancement: Dynamic shipping option updates when address changes in wallet payments
– Enhancement: Proper tax and shipping recalculation based on selected address
– Enhancement: PO number building logic refactored for better maintainability
– Dev: Added modular payment request builders (buildPaymentRequestData, buildOrderData, build3DSecureData)
– Dev: Enhanced token storage with duplicate prevention mechanism
– Dev: Removed deprecated class-autify-lloyds-shop-page-handler.php file

3.0.4 –

• HPOS Declaration

3.0.3 –
– BugFix – Domain issue, as WooCommerce covers it already.
– Apple Pay removal of EMV, as this is not supported.
– Some Code improvements

3.0.2 –
– Feature: Adding Dynamic Order Data configuration and Clear Cookies for My account

3.0.1 –
– Fallback to Hosted Payment Method Support
– A configuration option has been added in Payment JS to enable or disable logging.
– The logger has been standardized to use the WooCommerce logging system, ensuring consistency across all WooCommerce payment methods.

3.0.0 –

• On-site Wallets: We can process on-site payments via Google Pay or Apple Pay directly from the product, cart, and checkout pages.
• Tokenisation: The customer can save their cards for future transactions.
• Subscription: The merchant can accept the subscription of the order via Card payments. The Wallets will not show up if there are subscription products in the cart.
• MOTO: The merchant can make an MOTO transaction by logging into the Administrator account.

2.0.14 – Fix column addition issue and remove sleep() function
2.0.13 – Load Domain translation issue
2.0.12 – Added configuration for the Order ID suffix as timestamp.
2.0.11 – Fix for country restriction for Embedded Payment and GooglePay Wallet issue.
2.0.10 – Added configuration to pass the order ID or not