paypal encrypted buttons using lc

Mike Bonner bonnmike at gmail.com
Wed Jul 20 22:36:42 EDT 2016 

Yeah, I won't be generating the key through their site, it will be done by
me on a system controlled by me. (I've been playing with a droplet on
digitial ocean to try things out) I will probably end up with a virtual
linux box on my local machine.  As for sending a cert, no I don't believe
that is necessary.  Once the encryption is done its just a chunk of data
embedded in a regular paypal add to cart form. (exactly as can be generated
on the paypal site with their button builder.)  I will also likely store my
own buttons, pre-generated/encrypted.rather than generating them each page
show.

It did finally click with me that it is just a shell (exec) call to openssl
to generate the encrypted part of the button data, so i'm pretty sure I can
handle it now.

Essentially I hope to end up with an easy way for my friend to get buttons
set up, store them in a database and dynamically generate pages. Meeting
with them tomorrow to work through their paypal settings and discuss
options for getting this done.

Thanks for all the input.  Things are finally starting to gestalt.

On Wed, Jul 20, 2016 at 8:10 PM, Mark Wieder <mwieder at ahsoftware.net> wrote:

> On 07/20/2016 02:13 PM, Mike Bonner wrote:
>
> This is why I'm looking in to doing the encryption on my own.  (not
>> necessarily on the fly)  as described best here:
>>
>> https://www.stellarwebsolutions.com/en/articles/paypal_button_encryption_php.php
>>
>
> I'm coming in late to the party as usual, and I probably don't need to say
> it but I will anyway... I would never trust generating a private key to
> some anonymous website. Or any other website. Or anything that wasn't my
> own computer. Please don't do that.
>
> OK - I got that out of the way.
>
> From the looks of that web page, the openssl part looks pretty
> straightforward - set some local environment variables, then call openssl
> to encrypt the data, and send it on its way. On the other hand, if your
> call to paypal will require you to send a client certificate, LiveCode
> can't do that yet. But it's not obvious to me from the php code presented
> that you would need that, so I think you're good there.
>
> --
>  Mark Wieder
>  ahsoftware at gmail.com
>
>
> _______________________________________________
> use-livecode mailing list
> use-livecode at lists.runrev.com
> Please visit this url to subscribe, unsubscribe and manage your
> subscription preferences:
> http://lists.runrev.com/mailman/listinfo/use-livecode
>

More information about the use-livecode mailing list