Most of the time our client has been having orders placed through their site working exactly as designed, using Commerce 2 on Drupal 8. Authorize.Net is their exclusive payment gateway and has been so for a few years now (their old ecommerce site used WordPress while using the same Authorize.net account).

But we’ve had two attempted orders this month alone – one of them a few hours ago – that can only be described as some sort of “burp”.

What happens is that the client gets an email notification from Authorize.Net with the subject line “Merchant Email Receipt”.

It starts off saying “************* TEST MODE *************” and then says:

========= ORDER INFORMATION ========= Invoice : none Description : Test transaction for ValidateCustomerPaymentProfile. Amount : 1.00 (USD) Payment Method: (specific card type here)  xxxxNNNN Transaction Type: Authorization Only  ============== Line Items ==============  ============== RESULTS ============== Response : This transaction has been approved. Auth Code : 000000 Transaction ID : 0 Address Verification : AVS Not Applicable 

Meanwhile, back at the website, the customer’s order is still sitting in the Cart tab (Home -> Administration -> Commerce -> Orders). And in today’s case, under the OPERATIONS column it says “Unlock”.

So why are we getting situations where a test charge is being made to Authorize.net, it reports that test back to the client in an email, and it didn’t talk back to the website so that the customer could complete the order? (Yet most other orders are working correctly.)