API Security Questions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi there,
I am using PayPal Express for WooCommerce which required API details, no problem there, it's all working etc etc.
However, I have had the following questions from a client and to be honest, I'm not sure how to answer this one. Can someone point me in the right direction on this please?
- The API seems to allow someone to make payments both into (and more worryingly) out of our PayPal account!
- Also, the API potentially allows transactions from our PayPal account to be listed.
Any advice would be appreciated on this.
Thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Richfc, ExpressCheckout NVP / REST requires a set of credentials to perform any API operations, those credentials are not public and must not be shared, so only the merchant on his/her website and using his/her credentials can handle payments.
If they want they can grant third party API permissions, it means they allow a third party to run some API operation on their behalf, but this is the merchant decision and only the same merchant can allow that.
To make payment you have the Payouts API but it follows the same rules than above and also to enable this API you need a specific permission from PayPal.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi MTS_Andre, thanks for the info. Very useful.
Can you show me where we can set the API permissions?
Thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You are very welcome Richfc, here is how you can grant third party API permissions on your account, that would be valid for NVP ExpressCheckout.
Haven't Found your Answer?
It happens. Hit the "Login to Ask the community" button to create a question for the PayPal community.
- Need help to integrate Advanced Checkout (PPCP) With WHMCS in PayPal Upgrade Community
- Locale in 3D Secure in REST APIs
- Website using Paypal SDK - telephone question in SDKs
- Security header is not valid error message in woo commerce in NVP/SOAP APIs
- What happened to PayPal Buttons?! in PayPal Payments Standard