Punchr Lite – PunchOut cXML Bridge for WooCommerce
Punchr Lite lets you connect an external procurement system (PunchOut / cXML) to a WooCommerce store.
Punchr Lite is intended for evaluation and validation of the PunchOut flow. It is not intended for production use. Production usage requires Punchr Pro.
It implements the essential PunchOut flow:
- The procurement system sends a PunchOutSetupRequest (cXML) to your WooCommerce site.
- Punchr Lite authenticates the request using HTTP Basic Authentication (Token / Secret).
- Punchr Lite creates a short-lived PunchOut session and returns a PunchOutSetupResponse with a StartPage URL.
- The user is redirected to your WooCommerce shop in PunchOut mode (checkout is blocked).
- When the user clicks “Return to Procurement”, Punchr Lite sends a PunchOutOrderMessage (cXML) back to the procurement system.
This plugin is designed for B2B merchants who need a simple, ERP-friendly PunchOut bridge with minimal configuration.
Main endpoints — POST /wp-json/punchr/v1/setup Receives a cXML PunchOutSetupRequest and returns a PunchOutSetupResponse (StartPage URL). — GET /wp-json/punchr/v1/start?sid=…&st=… Activates the PunchOut session and redirects the user to the WooCommerce shop.. — Front return handler Adds a “Return to Procurement” button in the cart and posts the PunchOutOrderMessage to the validated return URL.
Admin — Punchr Lite > Settings: single Buyer credentials (Token and Secret regeneration) — Punchr Lite > Logs: last 200 events — Punchr Lite > Upgrade to Pro
Documentation and technical details are available at: https://punchr.net
Upgrade to Punchr Pro
Punchr Lite is designed for a single Buyer and a basic PunchOut flow.
The Pro version adds advanced features for production and enterprise environments, including: — Multiple Buyers — Buyer-specific credentials and policies — Advanced catalog and pricing rules — Extended logs and diagnostics — Priority support
Punchr Lite is free for evaluation purposes only. Production usage requires Punchr Pro.
Privacy
Punchr Lite stores limited diagnostic data to help troubleshoot PunchOut sessions.
What we collect — IP address and User-Agent of requests recorded in plugin logs — Technical event information (event name, timestamp, HTTP status, message) — A SHA-256 hash of some XML payloads (payload content is not stored)
Where the data is stored — Data is stored locally in your WordPress database in custom tables created by the plugin (e.g. wp_wcpob_logs)
Data sharing — No log data is sent to the plugin author or any third party — The plugin sends a PunchOutOrderMessage (cXML) only to the return URL provided by your procurement system
How to remove data — All plugin data (including logs and credentials) is permanently removed when the plugin is uninstalled
Support & Bug Reports
If you encounter a bug or an unexpected behavior while using Punchr Lite, please contact us:
📧 bugs@punchr.net
When reporting a bug, please include: — Your WordPress version — Your WooCommerce version — Punchr Lite version — A short description of the issue — Relevant log entries (Punchr Lite > Logs)
We do our best to respond and fix issues quickly.