Nadia Krawczyk
Reputation: 119
Paypal custom data - safety issue
I've got paypal recurring payment buttons on my website.
I'm passing subscription type and user id through custom data.
It's reversed and base64 coded. But still someone can edit it and change subscription type or/and user id. Am I right?
Should i check payment amount and then verify type or what...
Is custom data field in paypal button safe to work with?
Upvotes: 0
Views: 77
Answers (1)
RichieHindle
Reputation: 281505
You should encrypt your payment buttons - see Securing Your PayPal Payments Standard Buttons.
Upvotes: 1
Related Questions
- security to consider in paypal call back php code
- Pass Custom data in PayPal form
- send custom data to PayPal and get it back once the transaction is completed
- Passing 'Custom' Value back from Paypal
- Securing/Validating Paypal Payments Pro Data on Custom Hosted Checkout Page and Submitting Custom Data to PayPal
- Handle data after user paid with PayPal
- How to secure data that needs to be used raw
- how to implement paypal code in robust way
- Data integrity when data is stored on our site and the user is taken to PayPal and back?
- How to keep PayPal variables secure