why is it so scary to do the online payment thing :s
its simple ... lets state some facts:
* I'm not going to store any credit card info.
* I'm only sending the amount, order id to the payment gateway.
* The result will be either accepted or not accepted.
* Before updating the DB, I should check if its a double post (sometimes the payment gateway sends back the result more than once).
* DB connection entries are encrypted in the config file (ASP.NET).
What else ... ? isn't simple? is it scary because its simple or maybe because it involves money?
Have you ever developed something like that? I have already done everything but I keep reviewing the things I have done serveral times in my head ..