eSec Web Proxy Model

The Web Proxy Model provides a higher level of security and more reliability than the Web Redirect Model, but is more susceptible to interoperability issues with 3rd party application environments. The integration requirements are identical to the Web Redirect Model, i.e. the addition of some HTML code to the merchant's Web site, and providing a response page or script to receive and process transaction results. Merchants may choose to switch between the Web Proxy Model and the Web Redirect Model with minimal change to their Web site.

The Proxy Model is used by the SSL Interface product.

Like the Web Redirect Model, a Web page containing the HTML code is sent to the client's browser from the merchant's Web site. When the client submits their purchase request, the browser transmits the request as a HTTP GET or POST request to the Payment Server and waits for a reply.

The Payment Server sends the transaction response to the merchant's Web site by invoking the response page or script directly as a HTTP GET request, bypassing the client's browser. The Web page generated by the merchant's response page or script is then relayed to the client's browser as the transaction response page. This is an important point to note, as the page that will be displayed in the client's browser is generated by the merchant's Web site, not by the Payment Gateway.

This model is more complex that the Browser Indirect Model however it provides some significant advantages. The delivery of transaction results leaves footprints in Payment Gateway logs, allowing transaction issues to be easily traced. The transaction path is less reliant on the customer's browser, thus improving the overall reliability of the service and providing a better result delivery mechanism.

The primary disadvantage is an incompatibility with some 3rd party application environments that rely on cookies or other such mechanisms for passing session or state information. The Web Proxy Model is not supported for use with such application environments.