PHP Echo a value to Paypal (Encrypted)









up vote
1
down vote

favorite












I'm creating a custom checkout page that then heads to the paypal site for payment, i have successfully sent the correct info to paypal using this:






<form action="https://www.paypal.com/cgi-bin/webscr" method="post" target="_blank">
<input type="hidden" name="cmd" value="_cart">
<input type="hidden" name="upload" value="1">
<input type="hidden" name="business" value="I@AmNotPostingMyRealEmail.com">
<input type="hidden" name="currency_code" value="AUD">
<?php $cart = $_SESSION['cart']; ?>
<?php $total = 0;
$count = 0;
foreach ($cart as $key => $value) 
$navcartsql = "SELECT * FROM products WHERE id=$key";
$navcartres = mysqli_query($connection, $navcartsql);
$navcartr = mysqli_fetch_assoc($navcartres); ?>
<?php if ($value['Extras']=="")
			$Extra = 0; else$Extra = 2; 
		if ($value['ExtrasB']=="")
		 $Extri = 0; else$Extri = 2; 
		if ($value['Sauce']=="" or $value['Sauce']=="No-Sauce")
			$Extra1 = 0; else$Extra1 = 0.5; 
		if ($value['Addons']=="")
			$Addi = 0; else$Addi = 1; 
		if ($value['AddonsB']=="")
		$Addo = 0; else$Addo = 1; 
		 $subtotal = ($Extri+$Addi+$Addo+$Extra1+$Extra+$navcartr['price']); ?>
<?php $count++; ?>
<input type="hidden" name="item_name_<?php echo $count;?>" value="<?php echo $navcartr['name']; ?>">
<input type="hidden" name="amount_<?php echo $count;?>" value="<?php echo $subtotal;?>">
<input type="hidden" name="quantity_<?php echo $count;?>" value="<?php echo $value['quantity']; ?>">
<input type="hidden" name="on0_<?php echo $count;?>" value="Sauce">
<input type="hidden" name="os0_<?php echo $count;?>" value="<?php echo $value['Sauce']; ?>">
<input type="hidden" name="on1_<?php echo $count;?>" value="Extras">
<input type="hidden" name="os1_<?php echo $count;?>" value="<?php echo $value['Extras']; echo ", "; ?><?php echo $value['ExtrasB']; ?>">
<input type="hidden" name="on2_<?php echo $count;?>" value="Addon's">
<input type="hidden" name="os2_<?php echo $count;?>" value="<?php echo $value['Addons']; echo ", "; echo $value['AddonsB']; ?>">
<?php ?>

<button type="submit" class="button btn-lg">Pay Now: Paypal/Card</button>
</form>





and it is working great... the only problem is, I got no idea how to have it encrypted so people cant just Ctrl-Shift-I it and change it to $0.
I know how to create an encrypted PayPal button but only with a set price, name etc... So if anyone can point me in the right direction on the best way to do this is or can help me out that would be great. Thanks for any help :)






php html forms encryption paypal







share|improve this question



















  • 1




    You could create 2 different pages. One with the form containing an "item_id", then another php script that receives that item_id and sends to PayPal the cURL request with the corresponding informations of that item_id. Then you can redirect the user to the PayPal page that you have got from the cURL response. This way users cannot edit the informations you submit to PayPal as you are doing it server side and the only information they see is the item_id.
    – J0ker98
    Nov 10 at 11:24















up vote
1
down vote

favorite












I'm creating a custom checkout page that then heads to the paypal site for payment, i have successfully sent the correct info to paypal using this:






<form action="https://www.paypal.com/cgi-bin/webscr" method="post" target="_blank">
<input type="hidden" name="cmd" value="_cart">
<input type="hidden" name="upload" value="1">
<input type="hidden" name="business" value="I@AmNotPostingMyRealEmail.com">
<input type="hidden" name="currency_code" value="AUD">
<?php $cart = $_SESSION['cart']; ?>
<?php $total = 0;
$count = 0;
foreach ($cart as $key => $value) 
$navcartsql = "SELECT * FROM products WHERE id=$key";
$navcartres = mysqli_query($connection, $navcartsql);
$navcartr = mysqli_fetch_assoc($navcartres); ?>
<?php if ($value['Extras']=="")
			$Extra = 0; else$Extra = 2; 
		if ($value['ExtrasB']=="")
		 $Extri = 0; else$Extri = 2; 
		if ($value['Sauce']=="" or $value['Sauce']=="No-Sauce")
			$Extra1 = 0; else$Extra1 = 0.5; 
		if ($value['Addons']=="")
			$Addi = 0; else$Addi = 1; 
		if ($value['AddonsB']=="")
		$Addo = 0; else$Addo = 1; 
		 $subtotal = ($Extri+$Addi+$Addo+$Extra1+$Extra+$navcartr['price']); ?>
<?php $count++; ?>
<input type="hidden" name="item_name_<?php echo $count;?>" value="<?php echo $navcartr['name']; ?>">
<input type="hidden" name="amount_<?php echo $count;?>" value="<?php echo $subtotal;?>">
<input type="hidden" name="quantity_<?php echo $count;?>" value="<?php echo $value['quantity']; ?>">
<input type="hidden" name="on0_<?php echo $count;?>" value="Sauce">
<input type="hidden" name="os0_<?php echo $count;?>" value="<?php echo $value['Sauce']; ?>">
<input type="hidden" name="on1_<?php echo $count;?>" value="Extras">
<input type="hidden" name="os1_<?php echo $count;?>" value="<?php echo $value['Extras']; echo ", "; ?><?php echo $value['ExtrasB']; ?>">
<input type="hidden" name="on2_<?php echo $count;?>" value="Addon's">
<input type="hidden" name="os2_<?php echo $count;?>" value="<?php echo $value['Addons']; echo ", "; echo $value['AddonsB']; ?>">
<?php ?>

<button type="submit" class="button btn-lg">Pay Now: Paypal/Card</button>
</form>





and it is working great... the only problem is, I got no idea how to have it encrypted so people cant just Ctrl-Shift-I it and change it to $0.
I know how to create an encrypted PayPal button but only with a set price, name etc... So if anyone can point me in the right direction on the best way to do this is or can help me out that would be great. Thanks for any help :)






php html forms encryption paypal







share|improve this question



















  • 1




    You could create 2 different pages. One with the form containing an "item_id", then another php script that receives that item_id and sends to PayPal the cURL request with the corresponding informations of that item_id. Then you can redirect the user to the PayPal page that you have got from the cURL response. This way users cannot edit the informations you submit to PayPal as you are doing it server side and the only information they see is the item_id.
    – J0ker98
    Nov 10 at 11:24













up vote
1
down vote

favorite









up vote
1
down vote

favorite











I'm creating a custom checkout page that then heads to the paypal site for payment, i have successfully sent the correct info to paypal using this:






<form action="https://www.paypal.com/cgi-bin/webscr" method="post" target="_blank">
<input type="hidden" name="cmd" value="_cart">
<input type="hidden" name="upload" value="1">
<input type="hidden" name="business" value="I@AmNotPostingMyRealEmail.com">
<input type="hidden" name="currency_code" value="AUD">
<?php $cart = $_SESSION['cart']; ?>
<?php $total = 0;
$count = 0;
foreach ($cart as $key => $value) 
$navcartsql = "SELECT * FROM products WHERE id=$key";
$navcartres = mysqli_query($connection, $navcartsql);
$navcartr = mysqli_fetch_assoc($navcartres); ?>
<?php if ($value['Extras']=="")
			$Extra = 0; else$Extra = 2; 
		if ($value['ExtrasB']=="")
		 $Extri = 0; else$Extri = 2; 
		if ($value['Sauce']=="" or $value['Sauce']=="No-Sauce")
			$Extra1 = 0; else$Extra1 = 0.5; 
		if ($value['Addons']=="")
			$Addi = 0; else$Addi = 1; 
		if ($value['AddonsB']=="")
		$Addo = 0; else$Addo = 1; 
		 $subtotal = ($Extri+$Addi+$Addo+$Extra1+$Extra+$navcartr['price']); ?>
<?php $count++; ?>
<input type="hidden" name="item_name_<?php echo $count;?>" value="<?php echo $navcartr['name']; ?>">
<input type="hidden" name="amount_<?php echo $count;?>" value="<?php echo $subtotal;?>">
<input type="hidden" name="quantity_<?php echo $count;?>" value="<?php echo $value['quantity']; ?>">
<input type="hidden" name="on0_<?php echo $count;?>" value="Sauce">
<input type="hidden" name="os0_<?php echo $count;?>" value="<?php echo $value['Sauce']; ?>">
<input type="hidden" name="on1_<?php echo $count;?>" value="Extras">
<input type="hidden" name="os1_<?php echo $count;?>" value="<?php echo $value['Extras']; echo ", "; ?><?php echo $value['ExtrasB']; ?>">
<input type="hidden" name="on2_<?php echo $count;?>" value="Addon's">
<input type="hidden" name="os2_<?php echo $count;?>" value="<?php echo $value['Addons']; echo ", "; echo $value['AddonsB']; ?>">
<?php ?>

<button type="submit" class="button btn-lg">Pay Now: Paypal/Card</button>
</form>





and it is working great... the only problem is, I got no idea how to have it encrypted so people cant just Ctrl-Shift-I it and change it to $0.
I know how to create an encrypted PayPal button but only with a set price, name etc... So if anyone can point me in the right direction on the best way to do this is or can help me out that would be great. Thanks for any help :)






php html forms encryption paypal







share|improve this question















I'm creating a custom checkout page that then heads to the paypal site for payment, i have successfully sent the correct info to paypal using this:






<form action="https://www.paypal.com/cgi-bin/webscr" method="post" target="_blank">
<input type="hidden" name="cmd" value="_cart">
<input type="hidden" name="upload" value="1">
<input type="hidden" name="business" value="I@AmNotPostingMyRealEmail.com">
<input type="hidden" name="currency_code" value="AUD">
<?php $cart = $_SESSION['cart']; ?>
<?php $total = 0;
$count = 0;
foreach ($cart as $key => $value) 
$navcartsql = "SELECT * FROM products WHERE id=$key";
$navcartres = mysqli_query($connection, $navcartsql);
$navcartr = mysqli_fetch_assoc($navcartres); ?>
<?php if ($value['Extras']=="")
			$Extra = 0; else$Extra = 2; 
		if ($value['ExtrasB']=="")
		 $Extri = 0; else$Extri = 2; 
		if ($value['Sauce']=="" or $value['Sauce']=="No-Sauce")
			$Extra1 = 0; else$Extra1 = 0.5; 
		if ($value['Addons']=="")
			$Addi = 0; else$Addi = 1; 
		if ($value['AddonsB']=="")
		$Addo = 0; else$Addo = 1; 
		 $subtotal = ($Extri+$Addi+$Addo+$Extra1+$Extra+$navcartr['price']); ?>
<?php $count++; ?>
<input type="hidden" name="item_name_<?php echo $count;?>" value="<?php echo $navcartr['name']; ?>">
<input type="hidden" name="amount_<?php echo $count;?>" value="<?php echo $subtotal;?>">
<input type="hidden" name="quantity_<?php echo $count;?>" value="<?php echo $value['quantity']; ?>">
<input type="hidden" name="on0_<?php echo $count;?>" value="Sauce">
<input type="hidden" name="os0_<?php echo $count;?>" value="<?php echo $value['Sauce']; ?>">
<input type="hidden" name="on1_<?php echo $count;?>" value="Extras">
<input type="hidden" name="os1_<?php echo $count;?>" value="<?php echo $value['Extras']; echo ", "; ?><?php echo $value['ExtrasB']; ?>">
<input type="hidden" name="on2_<?php echo $count;?>" value="Addon's">
<input type="hidden" name="os2_<?php echo $count;?>" value="<?php echo $value['Addons']; echo ", "; echo $value['AddonsB']; ?>">
<?php ?>

<button type="submit" class="button btn-lg">Pay Now: Paypal/Card</button>
</form>





and it is working great... the only problem is, I got no idea how to have it encrypted so people cant just Ctrl-Shift-I it and change it to $0.
I know how to create an encrypted PayPal button but only with a set price, name etc... So if anyone can point me in the right direction on the best way to do this is or can help me out that would be great. Thanks for any help :)






<form action="https://www.paypal.com/cgi-bin/webscr" method="post" target="_blank">
<input type="hidden" name="cmd" value="_cart">
<input type="hidden" name="upload" value="1">
<input type="hidden" name="business" value="I@AmNotPostingMyRealEmail.com">
<input type="hidden" name="currency_code" value="AUD">
<?php $cart = $_SESSION['cart']; ?>
<?php $total = 0;
$count = 0;
foreach ($cart as $key => $value) 
$navcartsql = "SELECT * FROM products WHERE id=$key";
$navcartres = mysqli_query($connection, $navcartsql);
$navcartr = mysqli_fetch_assoc($navcartres); ?>
<?php if ($value['Extras']=="")
			$Extra = 0; else$Extra = 2; 
		if ($value['ExtrasB']=="")
		 $Extri = 0; else$Extri = 2; 
		if ($value['Sauce']=="" or $value['Sauce']=="No-Sauce")
			$Extra1 = 0; else$Extra1 = 0.5; 
		if ($value['Addons']=="")
			$Addi = 0; else$Addi = 1; 
		if ($value['AddonsB']=="")
		$Addo = 0; else$Addo = 1; 
		 $subtotal = ($Extri+$Addi+$Addo+$Extra1+$Extra+$navcartr['price']); ?>
<?php $count++; ?>
<input type="hidden" name="item_name_<?php echo $count;?>" value="<?php echo $navcartr['name']; ?>">
<input type="hidden" name="amount_<?php echo $count;?>" value="<?php echo $subtotal;?>">
<input type="hidden" name="quantity_<?php echo $count;?>" value="<?php echo $value['quantity']; ?>">
<input type="hidden" name="on0_<?php echo $count;?>" value="Sauce">
<input type="hidden" name="os0_<?php echo $count;?>" value="<?php echo $value['Sauce']; ?>">
<input type="hidden" name="on1_<?php echo $count;?>" value="Extras">
<input type="hidden" name="os1_<?php echo $count;?>" value="<?php echo $value['Extras']; echo ", "; ?><?php echo $value['ExtrasB']; ?>">
<input type="hidden" name="on2_<?php echo $count;?>" value="Addon's">
<input type="hidden" name="os2_<?php echo $count;?>" value="<?php echo $value['Addons']; echo ", "; echo $value['AddonsB']; ?>">
<?php ?>

<button type="submit" class="button btn-lg">Pay Now: Paypal/Card</button>
</form>





<form action="https://www.paypal.com/cgi-bin/webscr" method="post" target="_blank">
<input type="hidden" name="cmd" value="_cart">
<input type="hidden" name="upload" value="1">
<input type="hidden" name="business" value="I@AmNotPostingMyRealEmail.com">
<input type="hidden" name="currency_code" value="AUD">
<?php $cart = $_SESSION['cart']; ?>
<?php $total = 0;
$count = 0;
foreach ($cart as $key => $value) 
$navcartsql = "SELECT * FROM products WHERE id=$key";
$navcartres = mysqli_query($connection, $navcartsql);
$navcartr = mysqli_fetch_assoc($navcartres); ?>
<?php if ($value['Extras']=="")
			$Extra = 0; else$Extra = 2; 
		if ($value['ExtrasB']=="")
		 $Extri = 0; else$Extri = 2; 
		if ($value['Sauce']=="" or $value['Sauce']=="No-Sauce")
			$Extra1 = 0; else$Extra1 = 0.5; 
		if ($value['Addons']=="")
			$Addi = 0; else$Addi = 1; 
		if ($value['AddonsB']=="")
		$Addo = 0; else$Addo = 1; 
		 $subtotal = ($Extri+$Addi+$Addo+$Extra1+$Extra+$navcartr['price']); ?>
<?php $count++; ?>
<input type="hidden" name="item_name_<?php echo $count;?>" value="<?php echo $navcartr['name']; ?>">
<input type="hidden" name="amount_<?php echo $count;?>" value="<?php echo $subtotal;?>">
<input type="hidden" name="quantity_<?php echo $count;?>" value="<?php echo $value['quantity']; ?>">
<input type="hidden" name="on0_<?php echo $count;?>" value="Sauce">
<input type="hidden" name="os0_<?php echo $count;?>" value="<?php echo $value['Sauce']; ?>">
<input type="hidden" name="on1_<?php echo $count;?>" value="Extras">
<input type="hidden" name="os1_<?php echo $count;?>" value="<?php echo $value['Extras']; echo ", "; ?><?php echo $value['ExtrasB']; ?>">
<input type="hidden" name="on2_<?php echo $count;?>" value="Addon's">
<input type="hidden" name="os2_<?php echo $count;?>" value="<?php echo $value['Addons']; echo ", "; echo $value['AddonsB']; ?>">
<?php ?>

<button type="submit" class="button btn-lg">Pay Now: Paypal/Card</button>
</form>





php html forms encryption paypal




php html forms encryption paypal






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Nov 10 at 11:22









eibersji

427420




427420










asked Nov 10 at 11:11









RedstoneMaina

87




87







  • 1




    You could create 2 different pages. One with the form containing an "item_id", then another php script that receives that item_id and sends to PayPal the cURL request with the corresponding informations of that item_id. Then you can redirect the user to the PayPal page that you have got from the cURL response. This way users cannot edit the informations you submit to PayPal as you are doing it server side and the only information they see is the item_id.
    – J0ker98
    Nov 10 at 11:24













  • 1




    You could create 2 different pages. One with the form containing an "item_id", then another php script that receives that item_id and sends to PayPal the cURL request with the corresponding informations of that item_id. Then you can redirect the user to the PayPal page that you have got from the cURL response. This way users cannot edit the informations you submit to PayPal as you are doing it server side and the only information they see is the item_id.
    – J0ker98
    Nov 10 at 11:24








1




1




You could create 2 different pages. One with the form containing an "item_id", then another php script that receives that item_id and sends to PayPal the cURL request with the corresponding informations of that item_id. Then you can redirect the user to the PayPal page that you have got from the cURL response. This way users cannot edit the informations you submit to PayPal as you are doing it server side and the only information they see is the item_id.
– J0ker98
Nov 10 at 11:24





You could create 2 different pages. One with the form containing an "item_id", then another php script that receives that item_id and sends to PayPal the cURL request with the corresponding informations of that item_id. Then you can redirect the user to the PayPal page that you have got from the cURL response. This way users cannot edit the informations you submit to PayPal as you are doing it server side and the only information they see is the item_id.
– J0ker98
Nov 10 at 11:24


















active

oldest

votes











Your Answer






StackExchange.ifUsing("editor", function ()
StackExchange.using("externalEditor", function ()
StackExchange.using("snippets", function ()
StackExchange.snippets.init();
);
);
, "code-snippets");

StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "1"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);













 

draft saved


draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53238356%2fphp-echo-a-value-to-paypal-encrypted%23new-answer', 'question_page');

);

Post as a guest






















active

oldest

votes













active

oldest

votes









active

oldest

votes






active

oldest

votes















 

draft saved


draft discarded















































 


draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53238356%2fphp-echo-a-value-to-paypal-encrypted%23new-answer', 'question_page');

);

Post as a guest

































































-

這個網誌中的熱門文章

Barbados

圖片
For other uses, see Barbados (disambiguation). Not to be confused with Barbuda. Coordinates: 13°10′N 59°33′W  /  13.167°N 59.550°W  / 13.167; -59.550 Barbados Flag Coat of arms Motto:  "Pride and Industry" Anthem:  In Plenty and In Time of Need Capital and largest city Bridgetown 13°06′N 59°37′W  /  13.100°N 59.617°W  / 13.100; -59.617 Official languages English Recognised regional languages Bajan Creole Ethnic groups (est. 2010 [1] ) 92.4% black 3.1% multiracial 2.7% white 1.3% East Indian 0.5% other/unspecified Religion 75.6% Christian 2.5% other 20.6% none 1.2% unspecified [1] Demonym(s) Barbadian Bajan (colloquial) Government Unitary parliamentary constitutional monarchy • Monarch Elizabeth II •  Governor-General Dame Sandra Mason • Prime Minister Mia Mottley Legislature Parliament • Upper house Senate • Lower house House of Assembly Independence • From the United Kingdom 30 November 1966 Area • Total 439 km 2 (169 sq mi) (183rd) • Water (%) Negligib
閱讀完整內容

How to read a connectionString WITH PROVIDER in .NET Core?

圖片
6 I added .AddJsonFile("Connections.json", optional: true, reloadOnChange: true) in public Startup(IHostingEnvironment env) Connections.json contains: "ConnectionStrings": "DefaultConnection": "Server=(localdb)\mssqllocaldb;Database=DATABASE;Trusted_Connection=True;MultipleActiveResultSets=true", "COR-W81-101": "Data Source=DATASOURCE;Initial Catalog=P61_CAFM_Basic;User Id=USERID;Password=PASSWORD;Persist Security Info=False;MultipleActiveResultSets=False;Packet Size=4096;", "COR-W81-100": "Data Source=DATASOURCE;Initial Catalog=Post_PS;User Id=USERID;Password=PASSWORD;Persist Security Info=False;MultipleActiveResultSets=False;Packet Size=4096;", "MSEDGEWIN10": "Data Source=DATASOURCE; Initial Catalog=COR_Basic; Persist Security Info=False;Integrated Security=true;MultipleActiveResultSets=False;Packet Size=4096;Application Name="COR_Basic"", "server&qu
閱讀完整內容

Node.js Script on GitHub Pages or Amazon S3

圖片
0 I'm wondering if I can run a Node.js script in my Jekyll page from GitHub Pages or Amazon S3? I think it can't run on GitHub Pages since it doesn't support server side code. Not too sure. The code is below: var Airtable = require('airtable'); var base = new Airtable(apiKey: 'YOUR_API_KEY').base('appAnZVyYqusNPV5Q'); base('Invitee list').select( // Selecting the first 3 records in Complete list: maxRecords: 3, view: "Complete list" ).eachPage(function page(records, fetchNextPage) // This function (`page`) will get called for each page of records. records.forEach(function(record) console.log('Retrieved', record.get('Email')); ); // To fetch the next page of records, call `fetchNextPage`. // If there are more records, `page` will get called again. // If there are no more records, `done` will get called. fetchNextPage(); , function done(err) if (err) console.error(err); return; ); node.js
閱讀完整內容