[MyAcc] Python Paypal API

[Joriku]

[ Feel free to comment for changes, improvements or security related matters ]
Here comes a temp solution for MyAcc, PayPal.

Since current version of MyAcc has issues regarding API, until an update comes. Here is an back-end written in Python.
You can design the template however you'd like.


Github

 

[Joriku]

A new update is made on github, spoofing has been patched front-end and back-end.
I'll need to make sure that the back-end code does in fact stop the spoofing, but payments are O.K and JSON data is sent back and works live and sandbox with the new code. ( This means the front-end is stopped, and back-end should, but is not tested yet ).

This was an oversight made, where the payment was blindsided only getting O.K or not O.K status if a payment was made and added client-sided data based on it.

So a payment is made, System: "Great, we got your payment, here's your coins"

If any improvement or errors, report them to me asap

 

[Joriku]

New update, UI and security measures
Live on github

• Click-through agreement modal – users now accept TOS once, timestamped & displayed on the page

• Package picker redesigned as icon buttons for faster selection

• PayPal buttons auto-render on load & selection—no manual swaps

Security Improvements:
• Verify custom_id → prevents order spoofing

• Enforce unique PayPal transactions (idempotent processing)
Validate currency on every order

• Stronger X-Auth-Token (SHA-256 hashed secret)

[SIZE=7]• [/SIZE]Short-lived PayPal OAuth tokens per request

Fixes & Tweaks:
Debug logging of all order requests & responses

• Proper capture-amount lookup for v2 orders

• Safe DB schema migrations at startup (agreement log & unique txn index)