Apple Pay domain verification fails due to unexpected well-known file size
Closed this issue · 5 comments
Describe the bug
When installing WooCommerce Square on a fresh site, Apple Pay domain verification will fail. When inspecting the logs, the failure is a result of the .well-known/apple-developer-merchantid-domain-association file being 24 bytes larger than expected:
2024-05-17T23:20:20+00:00 Notice Error: Unable to verify domain freely-ruling-cardinal.jurassic.ninja - response = Array
(
[errors] => Array
(
[0] => Array
(
[category] => INVALID_REQUEST_ERROR
[code] => BAD_REQUEST
[detail] => Invalid domain `example.com`: expected GET https://example.com/.well-known/apple-developer-merchantid-domain-association to return 9098 bytes but instead returned 9122.
[field] => domain_name
)
)
)
This same error is not present on sites that have successfully verified their domain previously, even when deleting the well-known file and regenerating it by disabling and re-enabling digital wallets.
To reproduce
- Spin up a fresh site.
- Install WooCommerce Square.
- Connect to a Square account.
- Assign the location.
- Enable Square as a payment method.
- Ensure that digital wallets are enabled.
- Check the notice:
Apple Pay is not available with Square - there was a problem with registering your store domain with Square/Apple Pay. View the Square logs to find out what caused the registration to fail.
- Review the logs.
- Determine that domain verification failed because the
well-knownfile is9122bytes.
Expected behavior
Either:
- The domain verification file is reduced to the expected
9098bytes. - The domain verification process works when the file is
9122bytes (like it did previously).
Additional details
8206303-zen
8191881-zen
Given that...
- Square 4.6.1 was released over a month ago.
- Domain verification is handled outside of the plugin.
- Sites that have previously been registered do not encounter any errors with a file that is 9122 bytes.
- Other payment providers have different size files (e.g., Stripe's is 9094 bytes).
...I'd say that this is an issue with Square/Block and not Apple or our integration.
We checked with the Square team in p1715992183595699-slack-CMKCR9H1C to see if this is a configuration change they made on their end.
The Square/Block team send this out to developers
We are reaching out to inform you about an update impacting Apple Pay via the Web Payments SDK. This change may require you to update your integration immediately to ensure you can continue accepting Apple Pay seamlessly.
Square provides Web Payments SDK developers with a domain verification file, which is used to register and verify domains to accept Apple Pay.
We were informed by Apple that the contents of this domain verification file have expired, requiring us to replace it with a new file.
We noticed that you register domains regularly using the Register Domain API. If you are storing copies of the outdated file, you will need to update them with the new one as soon as possible to ensure any new domains registered can be successfully approved for Apple Pay. You can download the new file here. We recommend that you do not store copies of this file for longer than 24 hours, as it can be updated again in the future.
Existing domains registered with the old file are not impacted by this change.
@csmcneill thanks for that update from Square, I'm bumping this to critical and will likely work to get a hotfix release out ASAP to cover this.
Also noting that #113 may be related
I downloaded the verification file from the square dashboard while testing the other issue so it appears this isn't related.
8228454-zen