# multisafepay/magento2

> MultiSafepay module suite for Magento 2

`composer require multisafepay/magento2`

Canonical URL: https://packagento.com/multisafepay/magento2

## At a glance

- **Vendor**: multisafepay (https://packagento.com/multisafepay.md)
- **Latest version**: 4.2.0 — released 2026-05-18
- **Pricing**: Free
- **Package type**: Metapackage (bundle of modules)
- **Status**: active, accepting new buyers

## Installation

Packagento is licence-gated, so even free packages need a licence on a project before Composer can resolve them.

1. **Sign in or create an account** at https://packagento.com/customer/account/.

2. **Add the package to your account.** Open https://packagento.com/multisafepay/magento2 and complete the free checkout. A licence is minted automatically.

3. **Create or pick a project, then activate the licence on it.**
   - Projects represent the Magento installs you deploy to. Manage them at https://packagento.com/projects/.
   - Activate the new licence on the project you'll deploy this package to. Activation is what generates the Composer credentials scoped to that project.

4. **Add the project credentials to your Magento codebase.**

   Grab the project's public + private key from https://packagento.com/projects/ (open the project, then its Credentials tab), and add them to `auth.json`:

   ```json
   {
     "http-basic": {
       "packagento.com": {
         "username": "ppk_live_...",
         "password": "psk_live_..."
       }
     }
   }
   ```

   Add the Packagento Composer repository to `composer.json`:

   ```json
   {
     "repositories": [
       { "type": "composer", "url": "https://packagento.com" }
     ]
   }
   ```

5. **Install and apply.**

   ```bash
   composer require multisafepay/magento2:*
   bin/magento setup:upgrade
   bin/magento setup:di:compile
   bin/magento cache:flush
   ```

## What it does

MultiSafepay module suite for Magento 2

## README

<p align="center">
  <img src="https://www.multisafepay.com/fileadmin/template/img/multisafepay-logo.svg" width="400px" position="center">
</p>

## MultiSafepay plugin for Magento 2

[![Build](https://img.shields.io/github/actions/workflow/status/multisafepay/magento2/phpcs.yml?style=for-the-badge)](https://github.com/MultiSafepay/magento2/actions)
[![Codecov](https://img.shields.io/codecov/c/github/multisafepay/magento2-core?style=for-the-badge)](https://app.codecov.io/gh/MultiSafepay/magento2-core)
[![Latest stable version](https://img.shields.io/github/v/release/multisafepay/magento2?style=for-the-badge)](https://packagist.org/packages/multisafepay/magento2)
[![Total downloads](https://img.shields.io/packagist/dt/multisafepay/magento2?style=for-the-badge)](https://packagist.org/packages/multisafepay/magento2/stats)
[![License](https://img.shields.io/github/license/multisafepay/magento2?style=for-the-badge)](https://github.com/MultiSafepay/magento2/blob/master/LICENSE.md)

Easily integrate MultiSafepay payment solutions into your Magento 2 webshop with our free plugin.
The latest release includes unit/integration testing and it is built on the Magento payment provider gateway structure.

Before you get started, read MultiSafepay Docs - [Magento 2](https://docs.multisafepay.com/docs/magento-2) for:

- Supported payment methods
- Upgrades from version v1.14 and below

### About MultiSafepay

MultiSafepay is a collecting payment service provider, which means we take care of electronic contracts, technical details, and payment collection for each payment method. You can start selling online today and manage all your transactions in one place.

### Prerequisites

- You will need a [MultiSafepay account](https://testmerchant.multisafepay.com/signup). Consider a test account first.
- Magento Open Source version 2.3.6+ & 2.4.x
- PHP 7.2+

### License
[Open software license (OSL 3.0)](https://github.com/MultiSafepay/Magento2Msp/blob/master/LICENSE.md)

### Modules

The plugin consists of several modules:

- [multisafepay-magento2-core](https://github.com/MultiSafepay/magento2-core): Provides core functionalities
- [multisafepay-magento2-frontend](https://github.com/MultiSafepay/magento2-frontend): Enables payment gateways in the Magento checkout
- [multisafepay-magento2-adminhtml](https://github.com/MultiSafepay/magento2-adminhtml): Enables/disables payment gateways and edits settings in the Magento backend
- [multisafepay-magento2-msi](https://github.com/MultiSafepay/magento2-msi): Handles stock when MSI is enabled
- [multisafepay-magento2-catalog-inventory](https://github.com/MultiSafepay/magento2-catalog-inventory): Handles stock when MSI is disabled
- [multisafepay-magento2-graphql](https://github.com/MultiSafepay/magento2-graphql): Extends and adds GraphQL queries and mutations
- [multisafepay-magento2](https://github.com/MultiSafepay/magento2): Meta package that installs all above modules

#### Module dependencies
The meta-package has a dependency on MSI. This means the MSI modules must be available (but not necessarily enabled) in your store.

If you have removed MSI (e.g. with a composer-replace trick like [yireo/magento2-replace-inventory](https://github.com/yireo/magento2-replace-inventory)), you can't install the meta-package. To integrate with MultiSafepay, instead of installing the meta-package, install the magento2-frontend module and the magento2-catalog-inventory module.

The magento2-frontend module has a dependency on the magento2-core and magento2-adminhtml modules, so they are all installed together. In some cases, you also then need a stock-handling module. Since MSI is not available, you can install the magento2-catalog-inventory module instead.

The installation process is the same for the Adobe Commerce version.

### How to install

1. For developers, we recommend installing the composer packages separately so you can finetune which modules you need.

For merchants, we recommend installing the whole package via composer:

```
composer require multisafepay/magento2
```

2. To enable all MultiSafepay modules, run the following:
   
```
php bin/magento module:enable MultiSafepay_ConnectCore MultiSafepay_ConnectAdminhtml MultiSafepay_ConnectFrontend
```

3. When you disable MSI in Magento 2, you must also disable the MultiSafepay MSI module by running:
```
php bin/magento module:disable MultiSafepay_ConnectMSI
```

4. If you have a Magento 2 environment with MSI disabled, to enable the MultiSafepay CatalogInventory module instead, run:
```
php bin/magento module:enable MultiSafepay_ConnectCatalogInventory
```

5. Run the following commands:
```
php bin/magento setup:upgrade
php bin/magento setup:di:compile
php bin/magento setup:static-content:deploy
```

#### Versioning

This package installs multiple modules that are available in other repositories via composer.
Unlike the separate modules it installs, it does not adhere to semantic versioning.
To find out which version you are running for the seperate modules, run the following:

```
composer show -v | grep multisafepay
```

### Support

- Create an issue on this repository.
- Email <a href="mailto:integration@multisafepay.com">integration@multisafepay.com</a>
- Start a conversation on our Magento Slack channel [#multisafepay-payments](https://magentocommeng.slack.com/messages/multisafepay-payments/).

### Contributors

If you see an opportunity to make an improvement, we invite you to create a pull request, create an issue, or email <integration@multisafepay.com>

As a thank you for your contribution, we'll send you a MultiSafepay t-shirt, making you part of the team!

### Want to be part of the team?

Are you a developer interested in working at MultiSafepay? Check out our [job openings](https://www.multisafepay.com/careers/#jobopenings) and feel free to get in touch!

## Changelog

All notable changes to this project will be documented in this file.

### [4.2.0] - 2026-05-18
#### Added
- PLGMAG2V2-906: Added a new controller that can be used to retrieve a MultiSafepay API Token

#### Fixed
- PLGMAG2V2-906: Fixed an issue where a 'Temporary Unavailable' message would be shown after being idle in the checkout for a while, due to the API token expiring and not being refreshed

### [4.1.0] - 2026-04-29
#### Added
- PLGMAG2V2-893: Prevent duplicate completed webhooks from overwriting order totals
- DAVAMS-990: Added used card info to Apple Pay and Google Pay payment methods
- PLGMAG2V2-890: Added prerequisite acknowledgement validation for Apple Pay and Google Pay direct buttons configuration activation

#### Fixed
- PLGMAG2V2-900: Fixed PriceUtil tax calculations for sales display settings
- PLGMAG2V2-904: Fixed issue where gift cards were always using the fallback icon

#### Changed
- PLGMAG2V2-887: Changed instances where we were using getRealOrderId() to getIncrementId()
- PLGMAG2V2-891: Handle ApiException in GetNotification

### [4.0.0] - 2026-03-17
#### Added
- PLGMAG2V2-888: Implemented token-based redirect handling and removed the dependency on the checkout session when redirecting to the payment page.

### [3.16.0] - 2026-02-18
#### Added
- DAVAMS-913: Added several EAA improvements

#### Changed
- PLGMAG2V2-886: When retrieving the order for GET notification requests, we now first check if the transaction Order ID matches the Magento Order ID
- PLGMAG2V2-884: Changed when to retrieve issuers and the api_token from the MultiSafepay API, e.g. it will not happen on the cart page anymore
- DAVAMS-954: Rebranded iDEAL - Wero and in3

#### Fixed
- PLGMAG2V2-885: Fixed an issue with E-invoicing Payment Component Direct transactions not being able to be placed

### [3.15.0] - 2026-01-21
#### Added
- PLGMAG2V2-871: Added changes that enable Google Analytics cross browser/device tracking
- PLGMAG2V2-881: Added a REST API endpoint to trigger the notification through the Magento 2 API

#### Fixed
- PLGMAG2V2-882: Fixed an issue where an old cart overwrites new cart items when an order was previously placed but not finished

#### Changed
- PLGMAG2V2-861: MultiBanco now initialises in pending state
- PLGMAG2V2-880: Improved the logs for the 'cancel' & 'success' controllers

#### Removed
- PLGMAG2V2-810: Deprecated the Sofort payment method

### [3.14.0] - 2025-09-12
#### Changed
- PLGMAG2V2-872: Changed it so that payment links for bank transfer transactions are immediately added as an order comment, instead of on 'Initialized' status notification
- PLGMAG2V2-867: Improved when to save the quote on the Cancel controller, it will now save if the payment actually has any additional information that needs to be removed
- PLGMAG2V2-868: Updated the American Express fallback icon to the latest version

#### Removed
- DAVAMS-918: Deprecated Zinia payment method

### [3.13.1] - 2025-08-22
#### Fixed
- PLGMAG2V2-864: Fixed automatic gateway detection switch for generic giftcards
- PLGMAG2V2-855: Fixed an issue with restoring the cart when using the browser back button on the payment page for Amasty Checkout (Pro) (Now also fixed for Magento version 2.3.7)

### [3.13.0] - 2025-07-29
#### Added
- PLGMAG2V2-852: Added support for Bancontact WIP in Magento Vault
- PLGMAG2V2-859: Added CODE_OF_CONDUCT.md

#### Fixed
- PLGMAG2V2-860: Fixed an issue where some orders do not have correct values after invoice creation with a specific Amasty Checkout Pro configuration
- PLGMAG2V2-862: Fixed CancelOrder process error when transaction_id param can not be found, thanks to @CanvasCompanyHylke

### [3.12.0] - 2025-07-09
#### Added
- PLGMAG2V2-850: Added customer company name to the order request
- PLGMAG2V2-856: Added logging for payment component requests

_(Changelog truncated for .md surface. Full history on https://packagento.com/multisafepay/magento2.)_

## Recent Versions

| Version | Released |
|---|---|
| 4.2.0 | 2026-05-18 |
| 4.1.0 | 2026-04-30 |
| 4.0.0 | 2026-03-18 |
| 3.16.0 | 2026-02-18 |
| 3.15.0 | 2026-01-22 |
| 3.14.0 | 2025-09-15 |
| 3.13.1 | 2025-08-22 |
| 3.13.0 | 2025-07-29 |
| 3.12.0 | 2025-07-09 |
| 3.11.0 | 2025-05-20 |

Showing 10 of 73 versions. Full release history on https://packagento.com/multisafepay/magento2.

## Dependencies

### Require

| Package | Constraint |
|---|---|
| multisafepay/magento2-adminhtml | 1.38.0 |
| multisafepay/magento2-catalog-inventory | 1.0.3 |
| multisafepay/magento2-core | 3.19.0 |
| multisafepay/magento2-frontend | 3.0.1 |
| multisafepay/magento2-msi | 1.0.2 |

## Quality

Latest release (4.2.0) fails the Packagento QA pipeline. Verdicts below are per-cell (Magento line × PHP version) for the matrixed tools, and run-once for the static / security tiers.


### Compatibility

Each Magento line is installed on its supported PHP versions, then the module is built (DI compile + static-content deploy). Cells show passed / failed / untested; staircase gaps render as `–`.

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | not tested | not tested | – | – |
| 2.4.8 | – | not tested | not tested | – |
| 2.4.9 | – | – | not tested | not tested |


### Code Quality

Advisory checks against the module's source. Never affect the Compatibility verdict — a phpcs finding can't make a module incompatible.

#### Static Analysis

Coding standards (phpcs), mess detection (phpmd), copy-pasted code (cpd), PHP cross-version compatibility, composer.json validity. Each runs once for the whole module.

| Tool | Status | Findings | Summary |
|---|---|---|---|
| PHPCS | N/A | 0 | metapackage ships no source of its own — phpcs skipped (#122) |
| PHPMD | N/A | 0 | metapackage ships no source of its own — phpmd skipped (#122) |
| Cpd | N/A | 0 | metapackage ships no source of its own — cpd skipped (#122) |
| PHP Compatibility | N/A | 0 | metapackage ships no source of its own — php-compatibility skipped (#122) |
| Composer validate | Info | 6 | valid; 6 advisory notes (composer validate --strict) |

#### PHPStan

Type-checks the module against a real Magento install. Re-runs per Magento + PHP version because resolvable symbols differ between releases.

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | 100 | 100 | – | – |
| 2.4.8 | – | 103 | 103 | – |
| 2.4.9 | – | – | 103 | 103 |


### Tests

Unit and integration suites run per Magento + PHP cell. Test failures speak to the module's behaviour, not its compatibility with a line, so they're reported here separately.

#### Unit Tests

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | N/A | N/A | – | – |
| 2.4.8 | – | N/A | N/A | – |
| 2.4.9 | – | – | N/A | N/A |

#### Integration Tests

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | N/A | N/A | – | – |
| 2.4.8 | – | N/A | N/A | – |
| 2.4.9 | – | – | N/A | N/A |


### Security

Dependency-advisory audit (composer audit) plus a source malware scan. A malware detection fails the version outright.

| Tool | Status | Findings | Summary |
|---|---|---|---|
| Composer audit | Pass | 0 |  |
| Malware scan | N/A | 0 | metapackage ships no source of its own — malware scan skipped (#122) |

## Licence and pricing

Free. A licence is still minted on checkout and bound to your project for Composer access — no payment step.

Refundable within 14 days of first purchase via https://packagento.com/account/refunds/.

## Install via Claude Code or any MCP client

The Packagento MCP server can run the licence + project + Composer steps above in one tool call:

```
purchase_and_install_packages(
  composer_names=["multisafepay/magento2"],
  project_id="proj_xxx"
)
```

This handles cart, checkout, licence minting, project activation, and writes auth.json credentials. Connect a client with `claude mcp add packagento https://mcp.packagento.com`. Full setup at https://packagento.com/docs/mcp-setup.

## Vendor

multisafepay is a Magento 2 vendor on Packagento. See https://packagento.com/multisafepay.md for their full catalogue.

