Hello
I have a Webshop and want to include PayPal.
I have inserted the binding link in the "Body" with the Client ID. Now it is visible in the HTML code. I think this is a security hole? If so, how can I fix it?
I also have a question about integration. I created my payment with the createOrder and onApprove functions. However, I don't have the "server side". I forward in the onApprove function to my own processing.
Can there be problems here that I have not implemented a server-side check or is the forwarding in the onApprove function sufficient?
I would be really glad if someone could help me. With the PayPal documentation I don't have a real overview.
Regrades GrodSG
