Powered by Adobe Commerce 2.4.2-p1

This extension is in our Payment category, and could affect the PCI compliance level of your store. It is the merchant’s responsibility to ensure the proper PCI compliance level of their store, as applicable by PCI regulations. The PCI Self-Assessment is one tool you can use when evaluating Payment extensions and how they may affect your PCI compliance level. For more information on Marketplace policies, please review the Marketplace Terms & Conditions.

Windcave Payments (Legacy Version)

This is an Integration with a Third Party Service. Other charges and fees may be required to use this extension on your Store


Back to top

This is a legacy version which was previously called Payment Express PxPay2, and is only for merchants who have started using the old extension and is not willing to upgrade to the newer one. If you are willing to install our new extension instead of the legacy one, please visit the new Windcave Payments product page. 


Windcave (formerly Payment Express) is a global leader in Omni-Channel payment solutions. Providing In-store, Unattended and Ecommerce solutions to top tier merchants around the world. Windcave sets out to provide a complete end-to-end payment solution with server uptime in excess of 99.99% reliability that can scale to suit all business needs. You can use the Windcave solutions to accept payments in 40+ currencies via 45+ processors in more than 30 regions around the world.

The Windcave Payments extension for Magento 2 provides a fully PCi-compliant payment solution that will redirect customers to a Hosted Payment Page that supports multiple Payment types including Credit/Debit Cards, Bank Payments (ACH, Interac, Account2Account) and Alternative payments (Alipay, WeChat Pay, OxiPay). The extension has full support for tokenization and rebilling of repeat customers to enhance your customer’s shopping experience. It also supports the processing of Completions and Refunds via the Magento order management screen. 


NOTE: The extension currently does not support Multishipping Checkout and multiple Completes.

NOTE: Please assess and evaluate suitability of the module for your business cases before using it in production environment. 


Account & Pricing

To use this extension a separate account is require. Sign Up for an account here. Additional fees apply for this service, select your region here for relevant rates: 

Alternatively, if you would like more information about how Windcave can help your business accept payments you can submit an enquiry here.



  • Windcave hosted payment page (PCI - SAQ -A compliant) or Merchant hosted (PCI – SAQ-A - EP compliant) 
  • In-built SSL cert using the latest TLS 1.2 technology on fully hosted solution.
  • All major card schemes supported - Visa/Mastercard/UnionPay/Amex/Diners/Discover/JCB
  • Integrated completion and refunds via Magento admin portal.
  • Additional Payment methods supported include Account2Account, ACH -echeck, Interac, PayPal, Alipay, WeChat Pay, OxiPay & Apple Pay on the web
  • Optional security measures including 3DSecure, AVS, Risk Management velocity rules and Captcha for security of your payments
  • Token creation with seamless rebilling at checkout - requires cvc for authentication. 
  • Manual (MOTO) payments, dashboard and reporting via Payline Management Portal.
  • Free Sandbox testing



PCI DSS is a comprehensive set of requirements created by the Payment Card Industry Security Standards Council for enhancing cardholder data security and to ensure the safe handling and storage of sensitive customer credit card information or data. Windcave Limited is a Level 1  Service Provider and is compliant to PCI DSS Version 3.2 standard. 

For further information see our Certifications and Compliance page.

The Payment Express plugin supports multiple Payment methods, please see below for a breakdown of the security details for each Payment method:

Payment Express PxPay2

The Payment Express PxPay2 Payment method is a PCI SAQ Level A integration using the Windcave PxPay 2.0 API. 

Using a Hosted Payment Page to accept sensitive card data, PxPay 2.0 provides a financially secure and compliant solution without exposing merchants to sensitive information. Instead of hosting a payment page on their own website, PxPay 2.0 allows merchants to redirect their customer to a payment page hosted by Windcave.

Payment Express PxFusion

The Payment Express PxFusion Payment method is a PCI SAQ Level A-EP integration using the Windcave PxFusion API.

PxFusion allows merchants to accept credit card details within a client side form on their own web page. The client side form posts sensitive data from the clients browser directly to Windcave to process the transaction, the user's browser is then returned to the merchant website in a way that is totally transparent to the cardholder. 

Complete (Capture) & Refund (Credit Memo)

If back end complete (capture) & refund (credit memo) transactions are required, both PxFusion and PxPay2 Payment methods require Windcave PxPost API credentials to be entered.

The back end PxPost integration allows merchants to process completes (captures) and refunds (credit memos) directly from Magento, no sensitive information is handled by the merchant website only unique transaction references which are used to complete/refund existing payments captured via PxPay2 and PxFusion payment methods.

Capture/Storage of Customer Data in Magento

Customer shipping/billing address data is entered into and stored in the Magento server, however no sensitive payment information is entered or stored in the Magento server for the Windcave Payments plugin.



For integration query’s and troubleshooting of pre-live account please contact devsupport@windcave.com 

For support of an active gateway please contact support@windcave.com

Alternatively you can call us at one of our global offices on any of the local numbers listed here.

Technical Specifications

Back to top

Seller profile

Windcave Limited

Seller contact



Windcave Payment Gateway

Current Version


Magento platform compatibility

Open Source (CE): 2.3 (current), 2.0 (obsolete), 2.1 (obsolete), 2.2 (obsolete)


Stable Build


17 October, 2020


Extensions, Payments & Security, Payment Integration

Quality Report

Back to top

Installation & Varnish Tests


Coding Standard


Plagiarism Check


Malware Check


Marketing Review


Manual Testing


All tests were conducted on the latest versions of Magento that existed for the compatible release lines at the moment of the extension submission. Latest versions of all other software were used, as applicable.

Release Notes

Back to top


  • Compatible with Open Source (CE) : 2.2 2.3
  • Stability: Stable Build
  • Description:

    - 0.12.4
    Fix the issue with using "pattern" on older versions of Magento
    Fix the issue where slow internet connection might break placing orders via Admin portal

    - 0.12.3
    Fix the issue with billing address being wiped out on failed PxFusion payment when Persistence is enabled

    - 0.12.2
    Limit the card number and CVC2 input length for PxFusion
    Limit the cardholder name length to 64 characters
    Added spacing when typing in the card number
    Decreased the width of card number and card holder
    Let cardholder select expiry year 15 years from the current day (instead of 10 years previously)

    - 0.12.1
    Use store timezone when recording Complete/Refund/Void transactions

    - 0.12.0
    Added configuration flag to enable enforced CVC for PxFusion rebilling
    Changed the error message displayed on failed payments. Using Cardholder HelpText where possible instead of Response Text
    Added Payment Failed emails triggering
    Fixed duplicate order confirmation emails issue

    - 0.11.0
    Changed the license to Windcave Public License
    Added the config flag that specifies where to redirect to on the payment failure

    - 0.10.0
    Added mode logging around waiting the transaction result for PxPay2
    Added new extension configuration fields to specify the folder for transaction locks

    - 0.9.1
    Added sending of billing address with the transaction for PxFusion

    - 0.9.0a
    Fixed duplicate payments with PxFusion when using One Step Checkout extension


  • Compatible with Open Source (CE) : 2.1 2.2 2.3
  • Stability: Stable Build
  • Description:

    - Added handling of order voiding/cancelling for PxPay and PxFusion
    - Added support of partial refund
    - Added error popup when failed to create PxPay session
    - Fixed Magento swagger issue
    - Fixed issue with PxPay failing if customer data contains special characters
    - Fixed "500 Internal Server Error" exception when there is an error to process Complete/Refund transaction
    - Fixed an exception when trying to create the order using Magento Admin UI
    - Fixed Payment Express payment methods being displayed when they are not configured


  • Compatible with Open Source (CE) : 2.1 2.2 2.3
  • Stability: Stable Build
  • Description:

    Fixed issue with PxPay 2.0 not working when PHP 5.x is used


  • Compatible with Open Source (CE) : 2.1 2.2 2.3
  • Stability: Stable Build
  • Description:

    - Changed the behavior of PxPay 2.0 payment method - the order is now created BEFORE redirecting to the PxPay 2.0 session. An old behavior is still available for the outstanding PxPay 2.0 sessions;
    - On cancelling/failing the payment, the order is cancelled and the cart is returned to its previous state;
    - When payment has failed or has been cancelled, a new transaction entry is now added for the order;
    - When the PxPay 2.0 session is closed but order is in Pending Payment state, the registered customer can go to My Account / My Orders, open the pending order and press "Finish the payment" to be redirected back to the PxPay session (Pending Payment order state has to be made visible in the storefront for that);
    - Fatal errors with PxPay 2.0 are now added as Admin notification;
    - New order state "Payment Authorized" has been added for PxPay 2.0. When transaction type is set to Authorize only, on successful authorization the order state will be switched to Payment Authorized;
    - Updated "Pay with Payment Express" logo to fix the blurriness;


  • Compatible with Open Source (CE) : 2.0 2.1 2.2
  • Stability: Stable Build
  • Description:

    Fixed issues that occur when the extension is used along with One Step Checkout extensions.


  • Compatible with Open Source (CE) : 2.0 2.1 2.2
  • Stability: Stable Build
  • Description:

    Fixed an error that occurs when trying to continue to PxFusion or PxPay 2.0 when Discount Code field is revealed


  • Compatible with Open Source (CE) : 2.0 2.1 2.2
  • Stability: Stable Build
  • Description:

    Using Json format to store the internal data.


  • Compatible with Open Source (CE) : 2.0 2.1 2.2
  • Stability: Stable Build
  • Description:

    Using Json format to store the internal data.


  • Compatible with Open Source (CE) : 2.0 2.1
  • Stability: Stable Build
  • Description:

    The module supports:
    1. Authorize now and Capture later
    2. Authorize & Capture immediately
    3. Refund
    4. Placing order via Magento admin panel


  • Compatible with Open Source (CE) : 2.0 2.1
  • Stability: Stable Build
  • Description:

    The module supports:
    1. Authorize now and Capture later
    2. Authorize & Capture immediately
    3. Refund
    4. Placing order via Magento admin panel


Back to top

The best place to start if you need help with a specific extension is to contact the developer. All Magento developers have both a contact email and a support email listed.

Contact Vendor

Q & A

Back to top


Back to top