Why does the front end SDK not need my secret?

donkeykong
Contributor
Contributor

If I want to hit the Paypal API from my back end, I have to exchange my client id and secret for a temporary access token. How, then, do I only have to provide the client id to the front end SDK? How does the front end SDK make authorized API calls without the secret?

 

```

<script src="https://www.paypal.com/sdk/js?client-id=YOUR_CLIENT_ID">

// Replace YOUR_CLIENT_ID with your sandbox client ID

</script>

```

 

https://developer.paypal.com/docs/business/checkout/set-up-standard-payments/

 

Login to Me Too
0 REPLIES 0

Haven't Found your Answer?

It happens. Hit the "Login to Ask the community" button to create a question for the PayPal community.