Use of the SofortIdent extension

The AgeCheck extension allows to add age restrictions to your stores products. It enables your store to:

  • Add age limit to any of your stores products.
  • The store cart and order preparation (frontend through your customer or through a administrator backend order creation) is checked for products with age limit and the product is removed from the cart or order whenever the customers current age is insufficient. (Requires to collect Date Of Birth from your customers)
  • To force your visitors to register or login prior to adding a product to the cart, or performing checkout (to ask for his Date Of Birth before first purchase).
  • To perform a optional automatic Age Verification (for customers from Germany) using the SofortIdent web service. This extension provides a interface to the SofortIdent service only, and otherwise unrelated to the SofortIdent service provider.
  • To allow customers to upload a document for verification of his Date Of Birth from your stores administrator backend. Such requests are monitored and a store notification (with optional email message) is created for each of these requests.
  • The result of a manual age verification using a submitted document is automatically sent to the related customers email address as store transactional email.





AgeCheck for Magento may not fully work with the following 3rd Party Extensions:

  • AJAX Cart extensions that add products to the cart using browser AJAX functions: Here the messages being returned from the Shopping Cart observation of AgeCheck may not be correctly processed by the related Cart extension.
  • Other Checkout extensions: Here the observation of the Cart may fail before the checkout process due to the 3rd party extension using controller calls that do not rely on the Magento core checkout functionality.
If you plan to use AgeCheck with such 3rd party extensions customization of the AgeCheck extension will be required to accomodate those 3rd party extensions. Such customization is available as Extended Support Service from us.



AgeCheck requires to carry over customer session data between unsecure and secure store pages (if mixed use is configured). To ensure this the following session cookie management option must be set:

  • System » Configuration » Web » Session Cookie Management » Use HTTP Only to No



Create a Catalog Attribute storing the minimum age requirement for products

Create a Catalog Attribute for the products to define the minimum age required for purchase of the product. Use Catalog » Attributes » Manage Attributes to create the related attribute.
You may choose any attribute code, set the Input Validation for Store Owner to Integer Number.

Assign the newly created attribute to the Attribute Set used for your products using Catalog » Attributes » Manage Attribute Sets.

Use this new attribute then in your products, set the minimum age if the product has a age limit for purchase. Leave the minimum age attribute empty for no limitation:


In the extensions configuration setting Catalog Attribute to use as age limit select the attribute to be use during product purchase.

Extension settings

The extensions configuration settings are found in System » Configuration » Customer Configuration » Customer Age Verification (using SofortIdent)



Perform verification of Date of Birth using SofortIdent

Select if your store shall use the verification using SofortIdent.

Hash-Algorithm to use

Select the Hash-Algorithm the extension shall use for verification. Needs to be identical with the Input check algorithm of the SofortIdent project being used. The default used by SofortIdent is SHA1.


Catalog Attribute to use as Age limit

Select the Catalog Attribute that has the age limit stored for performing the purchase check if the customer is allowed to purchase a single product with his current age.

Have customers age checked

Select where age verification against the products placed in the customers cart is being performed:

before Cart

Age verification is done before a product is added to the cart, only if the product being added has a defined age limit.
For a product with defined age limit the customer is asked to login/register (if not already logged in) to have him identified.

All other products will be added to the cart without verification or required login.

before Cart (and force login)

Same as before Cart instead that login/registration is being forced an any product being added to the cart.

before Checkout

Age verification is done before the Checkout. If the cart has one or more products that have a defined age limit the customer will be asked to login/register before actually allowing him to checkout his cart.

If age limited products are removed from the cart, due to the customers verified age not being sufficient, then the customer is redirected to his cart to verify its content.

before Checkout (and force login)

Same as before Checkout, the customer is forced to login/register before actually allowing him to checkout his cart.

Redirect after required login/registration on adding product to cart

Allows to select where to redirect the customer when being forced to login/register when adding a product to the cart.

Allowed file formats for upload of ID-Documents

Define the file formats (file extensions) allowed to use for uploading ID-Documents of customers.
Please separate file extensions with comma ',' and only use the extensions without leading dot '.'.

Notification type on Document verification request

The customers account administration allows the send the customer a notification about his age verification request (when having submitted ID-Documents).
Whenever a customer uploads such ID-Document, a notification message is added to the Administrator Notifications about this Age Verification Request.
Select which type of Administrator Notification shall be generated on this event.

Notification Email Sender

The customers account administration allows the send the customer an email notification about his age verification request (when having submitted ID-Documents).
Select which Email Sender address shall be used for these email messages.

Notification Email Template on valid DOB

Select the transactional email template being used for the email notifications to customers when having a valid DOB verification.

Notification Email Template on invalid DOB

Select the transactional email template being used for the email notifications to customers when having a invalid DOB verification.

Notification Email Template on unknown DOB

Select the transactional email template being used for the email notifications to customers when having a unknown DOB verification.

Allow SofortIdent for

Select the countries for which the SofortIdent verification shall be offered to your stores customers.
To disable any SofortIdent verification, select – SofortIdent disabled – located on top of this list.

SofortIdent Customer Number

Enter the Customer Number given to you by SofortIdent, used by you to login to your SofortIdent account.

SofortIdent Project Number

Enter the Project Number of the SofortIdent Project the extension shall use for verification.

SofortIdent Project Password

Enter the Project Password of the SofortIdent Project the extension shall use for verification. Needs to be identical with the Project Password of the SofortIdent project being used.

SofortIdent Notification Password

Enter the Notification Password of the SofortIdent Project the extension shall use for verification. Needs to be identical with the Notification Password of the SofortIdent project being used.

SofortIdent Testing mode

Set to Yes when testing your store with the SofortIdent test customer data as described in the SofortIdent API here.

With active Testing Mode there is also a log file sofortident.log generated in your stores var/log directory showing the data sent and received from the SofortIdent service.

You may use that log file to monitor the data exchange of the extension with the SofortIdent service to identify communication issues.

SofortIdent Log

Allows to log the outgoing and incoming data exchange with SofortIdent to be logged into a logfile, located in var/log/sofortident.log.

Extension Check

This shows if there are any potential issues on your extension installation. With the SofortIdent options being fully configured, there is also a Link shown to test your current SofortIdent configuration.

When having changed any configuration option please first use Save to save your configuration, and then proceed to use the link as it is then updated with your configuration changes.

The following describes the necessary settings on the SofortIdent Web Service side if using the optional automatic age verification process of the SofortIdent Web Service. Please understand that we are not able to provide support in creating or setup of your SofortIdent account and related project.

The following are the relevant configuration settings of your SofortIdent project, and to be made accordingly on the SofortIdent project to be used on the My Projects page of your SofortIdent account:

Base Settings

Test Mode

Enable Test Mode to test your SofortIdent project with the extension. You may need to enable Test Mode also in the extensions configuration.

When testing your SofortIdent project you may experience following message when being redirected to the SofortIdent pages from the store during a verification process:

The transmitted input hash does not correspond to the input hash calculated by us. If you are the shop operator, please check the project password in your shop system. It must match the project password in your merchant menu.

The customer data when testing needs to correspond exactly with the test data defined in the SofortIdent project. If this message still appears, then enable Test Mode of the extensions configuration.

Website

Enter the URL of your stores website. Use the insecure or secure URL of you store, as to your preferences.

Return URL

Is the URL the customer will be redirected to upon complete verification of his Date of Birth, or when any other message page is shown by the SofortIdent service.

Pointing SofortIdent to the following return URL will provide the feature that the extension will return the customer to his account page, or the main store page, depending on where the verification process originally was initiated.

Return URL

Insecure:   http://<your-store>/sofortident/notification/return?id=-USER_VARIABLE_0-

Secure:    https://<your-store>/sofortident/notification/return?id=-USER_VARIABLE_0-



Automatic Redirection

Check if you want automatic redirection away from the SofortIdent pages back to your stores pages.

Extended Settings

Non-Changeable Parameters

The extension will never update the Customers Name, Address or Date of Birth being returned from the SofortIdent service. If you wish to disable the possibility for your customers to change their Name, Address or Date of Birth during the SofortIdent verification on the SofortIdent pages check the the data items that shall be protected.

Notifications

Results from SofortIdent verification processes are sent back to your store as notifications. These are processed automatically by the extension and the related customer accounts are updated with the verification results.

Use the following notification URL, insecure or secure as to your preferences:

Notification URL

Insecure:    http://<your-store>/sofortident/notification

Secure:      https://<your-store>/sofortident/notification


Set the Method for the Notification to POST.

Passwords and Hash Algorithm

Project Password

Create a Project Password and use it on the extensions configuration as the Project Password.

Notification Password

Create a optional Notification Password and use it on the extensions configuration as the Notification Password. This password is used for the data checks on the SofortIdent notifications returning to the extension.

Input Check

Select the Hash Algorithm you want to use for the data checks to be performed. Ensure to use the same Hash Algorithm in the extensions configuration as selected here.



You need to modify the template files of your store to make full use of this extension.