Hi, as you can tell from the title, I am using Paypal rest api (client side) to complete payments. I've noticed that it is childishly simple to change the payment value by user by simply going into the js file. any way to prevent that? Been looking for a solution everywhere with no luck. Thanks.
We noticed this too when we were thinking about switching to use the js-sdk. Instead, we use server-to-server API calls with their REST, to ensure the values we send them, and receive, have gone through proper channels and don't have any tampering.
Its a LOT of extra work to setup and develop, but in the long run, you feel more confident in the data you are sending paypal and getting back.