Security/Integration Question
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello
I have a Webshop and want to include PayPal.
I have inserted the binding link in the "Body" with the Client ID. Now it is visible in the HTML code. I think this is a security hole? If so, how can I fix it?
I also have a question about integration. I created my payment with the createOrder and onApprove functions. However, I don't have the "server side". I forward in the onApprove function to my own processing.
Can there be problems here that I have not implemented a server-side check or is the forwarding in the onApprove function sufficient?
I would be really glad if someone could help me. With the PayPal documentation I don't have a real overview.
Regrades GrodSG
Haven't Found your Answer?
It happens. Hit the "Login to Ask the community" button to create a question for the PayPal community.
- Paypal NVP/SOAP API - Pay in 4 instalment payments in NVP/SOAP APIs
- Passing Internal Order ID Between Webhooks (CHECKOUT.ORDER.APPROVED & PAYMENT.CAPTURE.COMPLETED) in REST APIs
- Using Paypal Smart Buttons for checkout sometimes fails with Debit/ Credit Cards Form in Braintree Client-side Integration (JS, iOS, Android SDKs)
- SetExpressCheckout 10003 error with ITEMCATEGORY=Digital in NVP/SOAP APIs
- Getting errors when integrating standard checkout with my web site. Probably a beginner problem. in SDKs