Hi ho,
I've just spent the past 4 months building an online shopping cart using PHP and MySQL. It's been a slow process and at times, a bit of a nightmare, but at last I'm at the stage where I can finally have users selecting items, deleting items, going to the shopping cart, viewing the total price and so on.
Anyway, there is one last hurdle that I need to get over before I can declare my little shopping cart finished.... the checkout process.
Could someone please give me a few pointers as to the best route to go?
I know that the typical response to that kind of question is to say "it depends on what type of merchant account you have... bla bla bla..."
-but in my case, it's literally just a pretend shop and I'm just using it for practice. For the sake of simplicity I'm also working under the assumption that the shop administrator would have a credit card number punching machine in his office (so there's no need for me to worry about integrating the cart with some kind of online credit card processing service).
So, in other words, all I need to do is to figure out the best way of obtaining customer credit card details SECURELY.
Could someone please advise me of the best way to do this?
I'd be particularly interested to find out what the norm is when someone submits credit card details on an online shop. Does that info get stored on a database or is the information sent to the shopkeeper via some kind of secure email system?
And what about the other customer details, such as shipping address, postcode and so on? Does that get the same treatment as the credit card details or does that slightly less sensitive info just get stored onto a MySQL database?
Thanks!
