Setting up Paypal Express Checkout
page last edited on 15 February 2017
- Setting up Express Checkout with Email
- Setting up Express Checkout with API Credentials
- Enabling the Secure Token Setting
- Creating Your Custom PayPal Payment Page
Setting up Express Checkout with Email
For a quick start, Paypal Express Checkout requires you to specify your email only:
- If you already have a Paypal account, then you should specify the email you created your Paypal account with.
- If you do not yet have a Paypal account, then you can specify the email you are going to create your Paypal account with and create the account itself later on.
Setting up Express Checkout with API Credentials
For a full-fledged Express Checkout implementation allowing payments and post-checkout operations, you will need to use the API option:
After choosing this option, you will need to specify a set of credentials for access to the API.
To get a set of credentials please contact the PayPal support.
Two API options are supported: PayPal API and Payflow API. PayPal API (Merchant API) will work for most merchants. If you can, use PayPal API. If you only have access to Payflow API, then use Payflow API.
Your choice of an API solution will determine the type of API credentials that you will need to enter. API credentials identify you as a PayPal Business account holder authorised to perform API operations.
For PayPal API, you will need the following set of credentials:
- Partner name (should always be “PayPal”),
- API access username,
- API access password,
- API signature or API certificate (The Use PayPal authentication method box allows you to choose, which one you want to use).
The above named credentials can be retrieved via your PayPal account profile.
An API signature is a unique string of numbers and letters. An API certificate is a file that you need to place on your X-Cart store server. Both serve the purpose of identifying your account. An API signature does not expire, is easier to implement and more commonly used. An API certificate is valid for three years, and you will need to renew it before it expires. The API certificate method is recommended for optimal security.
If using an API signature, you simply need to copy and paste the string of numbers and letters provided to you by PayPal into the API signature box.
If using an API certificate, you need to place the certificate file on your X-Cart server and specify the full absolute filepath in the API certificate box. The file can be stored inside or outside of your X-Cart store installation folder, but in any case you must ensure that it is stored securely in a location accessible to Curl but not accessible from the Web. For example, a good location to place your certificate will be the
files folder of your X-Cart installation; that folder has an .htaccess file by which any files within the folder are protected from external access.
For Payflow API, you will need the following set of credentials:
- Partner name,
- Merchant login,
These are the same credentials that are used as your manager.paypal.com login information.
Enabling the Secure Token Setting
You may need to include this option if you want to capture payments authorized by Paypal via the admin interface of your X-Cart store. Using this option requires you to have a Paypal Advanced Payments or a Paypal Payflow Pro account.
How to enable the Secure Token setting:
- Log in to your PayPal Manager account;
Click Service Settings;
Under Hosted Checkout Pages, click Set Up;
Set Enable Secure Token to Yes;
Click Save Changes;
- Fill in the API credentials into the PayPal Express Checkout settings form in X-Cart.
Creating Your Custom PayPal Payment Page
Creating a custom payment page allows you to co-brand the PayPal checkout pages with your logo and colors.
Log in to your PayPal account.
Underneath the My Account tab, click Profile;
Click My selling tools;
Locate Custom payment pages, and click the Update link next to it;
In the Page Style Name box, give a name to your custom page style. (It doesn’t matter what you put here, as long as it isn’t “PayPal”.);
In the Logo Image URL box, enter the URL of your logo image. Your logo image should be 190x60px, and should be hosted on an SSL-secured (https://) site. If you do not have an SSL-secured site available to you, free alternatives (such as sslpic.com) are available.
In the Cart Area Gradient Color box, enter an HTML hex code that represents the gradient color you want to use around the shopping cart section of the checkout page.
Click the radio button next to the new payment page style you just created, and click Make Primary. Your custom payment page style will now be used whenever buyers choose to pay with PayPal.
Help make this document better
This guide, as well as the rest of our docs, are open-source and available on GitHub.