Why don’t I need to enter PayPal API info?

I think, It is secure. Because famous plugin easy digital download also working without api key .

@madmaia, this plugin is very secure. You don’t have to worry about security as the plugin developers are making sure this plugin complies with online security standards. The reason why this plugin does not use an API is because it only uses PayPal payment gateway. They are one of the most secured online systems in the world.

If you have carried out any transactions using this plugin and received a warning in your browser then read the following posted by one of the developers in the forum.

This is a standard warning that browsers shows the user when you send data from a HTTPS site to a Non HTTPS site. In this case as you’re coming from PayPal (secure – HTTPS) to yourdomain (non secure – HTTP).

Note that you don’t need a SSL certificate but if you don’t want your customers to see that warning you will need to install a SSL certificate for your domain which will make your domain URLs secure (HTTPS) and the browser won’t show this warning anymore.

You can also enable Auto Return in your PayPal profile which will automatically redirect the customer to your “Thank You” page after a payment. When PayPal auto redirects to your site your customer’s won’t see that warning.

The above response should help you further understand the security set in place while using this plugin.

Let me know if you need more information.

Regards

• This reply was modified 8 years, 5 months ago by mbrsolution.

This plugin uses the standard paypal checkout which works using your PayPal email address. No other API key is needed. Your email address identifies your merchant account. Thats how standard paypal checkout works. You can confirm this with paypal support team.

Thank you, I have SSL, and have set up auto return too.