--------------------------------------------------------------------------------
Included are code samples for several popular web development environments. While this code has been tested by PayPal, PayPal cannot be held responsible for its use. 

ASP/VBScript 
Cold Fusion 
 PERL 
PHP  
 

 

ASP/VBScript

<%@LANGUAGE="VBScript"%>
<%

Dim authToken, txToken
Dim query
Dim objHttp
Dim sQuerystring
Dim sParts, iParts, aParts
Dim sResults, sKey, sValue
Dim i, result
Dim firstName, lastName, itemName, mcGross, mcCurrency

authToken = "Dc7P6f0ZadXW-U1X8oxf8_vUK09EHBMD7_53IiTT-CfTpfzkN0nipFKUPYy"
txToken = Request.Querystring("tx")

query = "cmd=_notify-synch&tx=" & txToken &
"&at=" & authToken

set objHttp = Server.CreateObject("Microsoft.XMLHTTP")
' set objHttp = Server.CreateObject("Msxml2.ServerXMLHTTP")
objHttp.open "POST", "http://www.paypal.com/cgi-bin/webscr", false
objHttp.Send query

sQuerystring = objHttp.responseText

If Mid(sQuerystring,1,7) = "SUCCESS" Then
sQuerystring = Mid(sQuerystring,9)
sParts = Split(sQuerystring, vbLf)
iParts = UBound(sParts) - 1
ReDim sResults(iParts, 1)
For i = 0 To iParts
aParts = Split(sParts(i), "=")
sKey = aParts(0)
sValue = aParts(1)
sResults(i, 0) = sKey
sResults(i, 1) = sValue

Select Case sKey
Case "first_name"
firstName = sValue
Case "last_name"
lastName = sValue
Case "item_name"
itemName = sValue
Case "mc_gross"
mcGross = sValue
Case "mc_currency"
mcCurrency = sValue
End Select
Next

Response.Write("<p><h3>Your order has been received.</h3></p>")
Response.Write("<b>Details</b><br>")
Response.Write("<li>Name: " & firstName & " " & lastName & "</li>")
Response.Write("<li>Description: " & itemName & "</li>")
Response.Write("<li>Amount: " & mcCurrency & " " & mcGross & "</li>")
Response.Write("<hr>")
Else
'log for manual investigation
Response.Write("ERROR")
End If

%>

 
Back to top 

 

Cold Fusion

<cfset
authToken="Dc7P6f0ZadXW-U1X8oxf8_vUK09EHBMD7_53IiTT-CfTpfzkN0nipFKUPYy">
<cfset txToken = url.tx>
<cfset query="cmd=_notify-synch&tx=" & txToken &
"&at=" & authToken>

<CFHTTP url="https://www.paypal.com/cgi-bin/webscr?#query#" 
method="GET" 
resolveurl="false"> 
</CFHTTP>

<cfif left(#cfhttp.FileContent#,7) is "SUCCESS"> 
<cfloop list="#cfhttp.FileContent#" 
index="curLine" 
delimiters="#chr(10)#">
<cfif listGetAt(curLine,1,"=") is "first_name">
<cfset firstName=listGetAt(curLine,2,"=")>
</cfif>
<cfif listGetAt(curLine,1,"=") is "last_name">
<cfset lastName=listGetAt(curLine,2,"=")>
</cfif>
<cfif listGetAt(curLine,1,"=") is "item_name">
<cfset itemName=listGetAt(curLine,2,"=")>
</cfif>
<cfif listGetAt(curLine,1,"=") is "mc_gross">
<cfset mcGross=listGetAt(curLine,2,"=")>
</cfif>
<cfif listGetAt(curLine,1,"=") is "mc_currency">
<cfset mcCurrency=listGetAt(curLine,2,"=")>
</cfif>
</cfloop>

<cfoutput>
<p><h3>Your order has been received.</h3></p>
<b>Details</b><br>
<li>Name: #firstName# #lastName#</li>
<li>Description: #itemName#</li>
<li>Amount: #mcCurrency# #mcGross#</li>
<hr>
</cfoutput>

<cfelse>
ERROR
</cfif>

 
Back to top 

 

PERL



#!/usr/bin/perl -w

###
#
# PayPal PDT (Payment Data Transfer) CGI
#
###

use strict;
use CGI qw(:all unescape);
use CGI::Carp qw(fatalsToBrowser);

# These modules are required to make the secure HTTP request to PayPal.
use LWP::UserAgent;
use Crypt::SSLeay;

###
# CUSTOMIZE THIS:  This is the seller's Payment Data Transfer authorization token.
#                  Replace this with the PDT token in "Website Payment Preferences" under your account.
###

my $auth_token = "VUDGCF2EA5huqlEqbSLPbg0JY3F-Pokyf-99r2sZWPR4x7GkWZEa-zIG49O";

sub done_text {
	return (p('Your transaction has been completed, and a receipt for your purchase has been emailed to you. You may log into your account at <a href="https://www.paypal.com/">www.paypal.com</a> to view details of this transaction.'), end_html());
}

print header(), start_html("Thank you for your purchase!");

# Set up the secure request to the PayPal server to fetch the transaction info
my $paypal_server = "www.paypal.com";

my $transaction = param("tx");

if (not $transaction) {
	print (h2("The transaction ID was not found."), done_text());
	
	exit();
}

my $paypal_url = "https://$paypal_server/cgi-bin/webscr";
my $query = join("&", "cmd=_notify-synch", "tx=$transaction", "at=$auth_token");

my $user_agent = new LWP::UserAgent;
my $request = new HTTP::Request("POST", $paypal_url);

$request->content_type("application/x-www-form-urlencoded");
$request->content($query);

# Make the request
my $result = $user_agent->request($request);

if ($result->is_error) {
	print(h1("An error was encountered"), br(), p("An error was encountered contacting the PayPal server:"),
		  $result->error_as_HTML, done_text());
	exit();
}

# Decode the response into individual lines and unescape any HTML escapes
my @response = split("\n", unescape($result->content));

# The status is always the first line of the response.
my $status = shift @response;

if ($status eq "SUCCESS") {
	# success
	my %transaction;

	foreach my $response_line (@response) {
		my ($key, $value) = split "=", $response_line;
		$transaction{$key} = $value;
	}

	# These are only some of the transaction details available; there are others.
	# You should print all the transaction details appropriate.
	print(h2("Here are the details of your purchase:"),
		  ul(li("Customer Name: " . $transaction{'first_name'} . " " . $transaction{'last_name'}),
			 li("Item: " . $transaction{'item_name'}),
			 li("Amount: " . $transaction{'payment_gross'})));

} elsif ($status eq "FAIL") {
	print(h2("Unable to retrieve transaction details."));
	# failure
} else {
	# unknown error
	print(h2("Error retrieving transaction details."));
}
	
print done_text();


 
Back to top 

 


PHP

<?php
// read the post from PayPal system and add 'cmd'
$req = 'cmd=_notify-synch';

$tx_token = $_GET['tx'];
$auth_token = "GX_sTf5bW3wxRfFEbgofs88nQxvMQ7nsI8m21rzNESnl_79ccFTWj2aPgQ0";
$req .= "&tx=$tx_token&at=$auth_token";

// post back to PayPal system to validate
$header .= "POST /cgi-bin/webscr HTTP/1.0\r\n";
$header .= "Content-Type: application/x-www-form-urlencoded\r\n";
$header .= "Content-Length: " . strlen($req) . "\r\n\r\n";
$fp = fsockopen ('www.paypal.com', 80, $errno, $errstr, 30);
// If possible, securely post back to paypal using HTTPS
// Your PHP server will need to be SSL enabled
// $fp = fsockopen ('ssl://www.paypal.com', 443, $errno, $errstr, 30);

if (!$fp) {
// HTTP ERROR
} else {
fputs ($fp, $header . $req);
// read the body data 
$res = '';
$headerdone = false;
while (!feof($fp)) {
$line = fgets ($fp, 1024);
if (strcmp($line, "\r\n") == 0) {
// read the header
$headerdone = true;
}
else if ($headerdone)
{
// header has been read. now read the contents
$res .= $line;
}
}

// parse the data
$lines = explode("\n", $res);
$keyarray = array();
if (strcmp ($lines[0], "SUCCESS") == 0) {
for ($i=1; $i<count($lines);$i++){
list($key,$val) = explode("=", $lines[$i]);
$keyarray[urldecode($key)] = urldecode($val);
}
// check the payment_status is Completed
// check that txn_id has not been previously processed
// check that receiver_email is your Primary PayPal email
// check that payment_amount/payment_currency are correct
// process payment
$firstname = $keyarray['first_name'];
$lastname = $keyarray['last_name'];
$itemname = $keyarray['item_name'];
$amount = $keyarray['payment_gross'];

echo ("<p><h3>Thank you for your purchase!</h3></p>");

echo ("<b>Payment Details</b><br>\n");
echo ("<li>Name: $firstname $lastname</li>\n");
echo ("<li>Item: $itemname</li>\n");
echo ("<li>Amount: $amount</li>\n");
echo ("");
}
else if (strcmp ($lines[0], "FAIL") == 0) {
// log for manual investigation
}

}

fclose ($fp);

?>

Your transaction has been completed, and a receipt for your purchase has been emailed to you.<br> You may log into your account at <a href='https://www.paypal.com'>www.paypal.com</a> to view details of this transaction.<br>  


 Back to top 

--------------------------------------------------------------------------------
 

Copyright © 1999-2004 PayPal. All rights reserved.