ShopSite Knowledgebase



March 11, 2021 email from USPS regarding 'USPS Web Tools Notice: Unsecure HTTP Endpoint Retirement'

Product: ShopSite Manager and Pro
Version: 14 sp2 and earlier
Platform: ALL

I received an email notification from USPS summarizing an upcoming change to their rate Web Tools services. Do these affect my ShopSite? Is there anything that I need to do?


These changes by USPS will affect all ShopSite Manager and Pro versions through 14 sp2 (the most current version as of this writing) using USPS real-time rates after the June 24th, 2021 deadline.

Patches are available for the order.cgi (goes in the Shopping Cart CGI Directory) and usps.cgi (goes in the ShopSite CGI Directory) for ShopSite 12 sp3 r4 (the newest v12x version) and ShopSite 14 sp2. All future versions will include this change without needing a patch.

Alternately, adding the following line to the shipdata.aa in the ShopSite Data Directory will cause ShopSite to use the new HTTPS secure endpoints which will also resolve the issue for versions 12 sp2 r4 and greater without applying the patch:

usps_url: https://production.shippingapis.com/ShippingAPI.dll

To upgrade, apply patches, or add the modified endpoint URL to the shipdata.aa file, please contact your ShopSite reseller.



The 3/11/2021 email sent to merchants by USPS is as follows:

Subject: USPS Web Tools Notice: Unsecure HTTP Endpoint Retirement

Hello,

This message explains some security improvements planned for the USPS Web Tools services. Effective June 24th, 2021, Web Tools will remove support for all unsecure HTTP endpoints. After this change, all requests to an unsecure HTTP endpoint will fail when attempting to access the Web Tools APIs and integrators may see an error message. To continue using the Web Tools APIs, all requests must be made using the secure HTTPS endpoints listed below. Integrators currently using an unsecure HTTP endpoint should transition as soon as possible to the appropriate secure HTTPS endpoint below to prevent any loss of service. This change will impact only the API endpoints; the API request and response schemas will not change.

This notice is being shared with all USPS Web Tools integrators. It is possible that no changes are necessary to retain Web Tools services. Please review the entire message carefully and share with your web developer, software vendor, and/or IT service provider to determine if your use of the Web Tools APIs will be affected.

Support for the following unsecure HTTP endpoints will be discontinued in all Web Tools environments. In advance of the retirement date, please update your endpoints to the secure HTTPS endpoints listed below.

Web Tools Unsecure HTTP Endpoints Retirement Schedule

EnvironmentUnsecure HTTP EndpointRetirement DateNew Secure HTTPS Endpoint
TESThttp://stg-production.shippingapis.com06/24/2021https://stg-production.shippingapis.com
PRODhttp://production.shippingapis.com06/24/2021https://production.shippingapis.com


Contact webtools@usps.gov with any questions or concerns.

Thank you,
USPS Web Tools Program Office
Visit us at: www.usps.com/webtools


Related Articles

No related articles were found.

Attachments

No attachments were found.

Visitor Comments

Article Details

Last Updated
2nd of April, 2021

Would you like to...

Print this page  Print this page

Email this page  Email this page

Post a comment  Post a comment

 Subscribe me

Subscribe me  Add to favorites

Remove Highlighting Remove Highlighting

Edit this Article

Quick Edit

Export to PDF


User Opinions



How would you rate this answer?




Thank you for rating this answer.

Continue