Jason Judge

Also noticed the DPM and SIM callbacks do not do a signature check on what is received from the gateway. I think when this was first written, there were no...

@OnBelayWebSolutions Good question, and I honestly don't know. I've never used CIM so have little experience with it. It has just been along for the ride with the other APIs....

It gives you 99% confidence, but you never know what differences there are between the sandbox and production. For a start, changes are always rolled out to the sandbox before...

I'm closing this now, as we have had it running in production for four days, and not had any issues so far. Any problems, please raise a new issue.

Another reminder from Authorize.Net this morning. The linked article is worth reading. Note that this driver does not use signature validation everywhere that it could (or should!) so not all...

Well spotted https://github.com/thephpleague/omnipay-authorizenet/blob/c109d81bc2cdbee8705fe9e4f99ba55841485286/src/Message/SIMCompleteAuthorizeRequest.php#L24 There are quite a few tests that test md5 hashes too, and need updating. For he record, I don't use SIM and so do not have in-depth...

In your `reponsitories` array you can also use a `path` entry and point it at a local copy of the package outside the `vendors` directory. That's probably more suited to...

I'll try to have a play with your PR later today and see what tests can be written. Tests will make it easier and safer to refactor, and it would...

Yes you are right, the `lineItems`/`ItemBag` seems to have been totally overlooked.

As an aside, AIM is now called ["Payment Transactions"](http://developer.authorize.net/api/upgrade_guide/). AIM looks to be a name being slowly phased out. I'm wondering if the old AIM should have been left untouched...