ExpressCheckout Component

Properties Methods Events Config Settings Errors

Express Checkout allows customers the option to quickly pay through PayPal.

Syntax

DPayments.InPay.ExpressCheckout

Remarks

The ExpressCheckout component allows you to integrate PayPal payments into your application by redirecting customers to the PayPal site. During the ExpressCheckout process, a token is generated which encodes transaction details and is used to identify the transaction on the PayPal network. After fetching a token, the customer must be redirected to PayPal's website to fill out payment information. PayPal will then redirect the customer to the URL specified by the component's ReturnURL property. PayPal will append the token to this URL so that it can be accessed after both redirects are complete. This token should then be used to verify details about the payment and finalize the transaction.

The first step in this process is to use the SetCheckout method to fetch a token from PayPal. If the Ack property indicates that this is successful, you should append the ResponseToken value to PayPal's express checkout URL and redirect the customer there. Redirection is not handled automatically by the component and requires external implementation. After the customer pays on PayPal's site, the customer will be automatically returned to the ReturnURL. If the customer declines to pay, PayPal will redirect to the CancelURL instead. Both of these properties must be set prior to calling SetCheckout. All of the remaining steps in the ExpressCheckout process must then be performed on the page given by ReturnURL.

The following is an example of fetching a token and redirecting to PayPal's site. Note that the PayPal credentials and URL (User, Password, Signature, and URL) are also required before calling SetCheckout. expresscheckout1.OrderTotal = "88.88"; expresscheckout1.ReturnURL = "http://localhost/example/return/url"; expresscheckout1.CancelURL = "http://localhost/example/cancel/url"; expresscheckout1.PaymentAction = ExpresscheckoutPaymentActions.aSale; expresscheckout1.SetCheckout(); // Now check for success and redirect the buyer: if (expresscheckout1.Ack == "Success") { // Redirect is not a component method and should be implemented externally Redirect("https://www.sandbox.paypal.com/cgi-bin/webscr?cmd=_express-checkout&token=" + expresscheckout1.ResponseToken) }

The following steps should now take place on the page indicated by ReturnURL.

Next, the PayPal token must be retrieved. PayPal automatically appends the token to the specified ReturnURL, so this value should be parsed and set as the Token property. The PayPal credentials and URL (User, Password, Signature, and URL) should also be set if they have not already been. Next, GetCheckoutDetails should be called so that Payer and Payment properties are automatically populated. The PayerId property is required before finalizing the transaction, but you may also want to check other fields under the Payer and Payment properties to ensure they are correct.

Finally, if all transaction details are correct, the CheckoutPayment method should be called to finalize the payment. If PaymentAction is set to aSale, this will finalize the transaction and transfer funds to your PayPal account. If instead the PaymentAction is set to aAuthorization, you will need to capture the transaction later.

Property List

The following is the full list of the properties of the component with short descriptions. Click on the links for further details.


Ack	Acknowledgement code received from PayPal.
BuyerEmail	Buyer's email address.
CancelURL	URL to which the customer is returned if he decides not to pay with PayPal.
ContactPhone	Payer's contact telephone number.
Firewall	A set of properties related to firewall access.
Idle	The current status of the component.
InvoiceNumber	Your own unique invoice or tracking number.
Items	This is the collection of items being purchased.
Note	An informational note about this settlement that will be displayed in the payer's transaction history.
OrderDescription	Description of items the customer is purchasing.
OrderTotal	The total cost of the order to the customer.
Password	Password for communicating with PayPal.
Payer	The person being billed for the current purchase.
PayerId	Unique encrypted PayPal customer account number.
Payment	This contains details about the express checkout payment.
PaymentAction	How you want to obtain payment.
Proxy	A set of properties related to proxy access.
ResponseToken	The time-stamped token value.
ReturnURL	URL to which the customer's browser is returned after choosing to pay with PayPal.
ShippingTotal	Total shipping costs for this order.
Signature	Value to use with PayPal's Signature Authentication scheme.
SSLAcceptServerCert	Instructs the component to unconditionally accept the server certificate that matches the supplied certificate.
SSLCert	The certificate to be used during Secure Sockets Layer (SSL) negotiation.
SSLProvider	The Secure Sockets Layer/Transport Layer Security (SSL/TLS) implementation to use.
SSLServerCert	The server certificate for the last established connection.
TaxTotal	Sum of tax for all items included in this order.
Timeout	A timeout for the component.
Token	This property is used to reference a specific Express Checkout transaction in the PayPal network.
URL	URL all PayPal payment transactions are posted to.
User	User name for communicating with Paypal.

Method List

The following is the full list of the methods of the component with short descriptions. Click on the links for further details.


AddCustomField	This adds a custom name-value pair to be sent with the next request.
Capture	Completely or partially settles a previously authorized transaction.
CheckoutPayment	Either obtain payment for a final sale, or request authorization for later capture of payment.
Config	Sets or retrieves a configuration setting.
DoEvents	This method processes events from the internal message queue.
GetCheckoutDetails	Returns information about the customer, including name and address on file with PayPal.
GetResponseVar	It is not uncommon for there to be additional response variables returned in the response that cannot be directly obtained via the Response properties.
Interrupt	This method interrupts the current method.
Reset	Clears all properties to their default values.
SetCheckout	Call this method to begin the Express Checkout process and fetch a token from PayPal which will encode transaction details.
VoidTransaction	Voids a prior authorization.

Event List

The following is the full list of the events fired by the component with short descriptions. Click on the links for further details.


Error	Information about errors during data delivery.
SSLServerAuthentication	Fired after the server presents its certificate to the client.
SSLStatus	Fired when secure connection progress messages are available.

Config Settings

The following is a list of config settings for the component with short descriptions. Click on the links for further details.


AuthAccessToken	The access token returned by the PayPal Permission Service's GetAccessToken operation.
AuthApplicationId	The Application ID for the application making a request to the PayPal Permissions Service.
AuthAuthHeader	The PayPal Permissions Service authentication header.
AuthAuthHeaderName	The name of the authentication header generated with the PayPal Permissions Service.
AuthCallbackURL	The URL where PayPal will post the RequestToken and VerificationCode.
AuthorizationId	The authorization identification number of the last payment.
AuthorizeOrderPayment	Authorize an order payment.
AuthorizingAccount	Authorizing Account Email Address for third-party API access.
AuthPassword	API Password for the PayPal Permissions Service.
AuthRequestToken	The request token used to obtain an Access Token and Token Secret from the PayPal Permissions Service.
AuthRequestURL	The URL for the PayPal Permissions Service operation being requested.
AuthScope	Scope of permissions to be requested for PayPal Permissions Service.
AuthSignature	API Signature for the PayPal Permissions Service.
AuthTokenSecret	The token secret returned by the PayPal Permission Service's GetAccessToken operation.
AuthUsername	API Username for the PayPal Permissions Service.
AuthVerificationCode	The verification code used to obtain an Access Token and Token Secret from the PayPal Permissions Service.
Build	Returns the Build number contained in the response.
ButtonSource	Additional information for identifying transactions.
CurrencyCode	Sets the type of currency in which you are accepting payments.
Custom	A free-form field for your own use.
HandlingTotal	Total handling costs for this order.
IsPartialCapture	Indicates if this capture is for the full amount of payment you authorized.
ItemTotal	Sum of cost of all items in this order.
LocaleCode	Locale of pages displayed by PayPal during Express Checkout.
PaymentProtectionEligibility	If the PaymentPendingReason is PaymentReview this will return the protection in force for the transaction.
RawRequest	Returns the raw request sent to the server.
RawResponse	Returns the full response.
ResponseVersion	Returns the Version number contained in the response.
ShipToCity	Payer's shipping city.
ShipToCountryCode	Payer's shipping country code.
ShipToName	Payer's shipping name.
ShipToPayerAddress	Shipping address same as billing address.
ShipToPhoneNumber	Payer's shipping phone number.
ShipToState	Payer's shipping state.
ShipToStreet	First line of the payer's shipping street address.
ShipToStreet2	Second line of the payer's shipping street address.
ShipToZip	Payer's shipping postal code.
TransactionId	Transaction Id used for authorizing and capturing order payments.
Version	Allows the user to set the Version number in the request.
AcceptEncoding	Used to tell the server which types of content encodings the client supports.
AllowHTTPCompression	This property enables HTTP compression for receiving data.
AllowHTTPFallback	Whether HTTP/2 connections are permitted to fallback to HTTP/1.1.
AllowNTLMFallback	Whether to allow fallback from Negotiate to NTLM when authenticating.
Append	Whether to append data to LocalFile.
Authorization	The Authorization string to be sent to the server.
BytesTransferred	Contains the number of bytes transferred in the response data.
ChunkSize	Specifies the chunk size in bytes when using chunked encoding.
CompressHTTPRequest	Set to true to compress the body of a PUT or POST request.
EncodeURL	If set to True the URL will be encoded by the component.
FollowRedirects	Determines what happens when the server issues a redirect.
GetOn302Redirect	If set to True the component will perform a GET on the new location.
HTTP2HeadersWithoutIndexing	HTTP2 headers that should not update the dynamic header table with incremental indexing.
HTTPVersion	The version of HTTP used by the component.
IfModifiedSince	A date determining the maximum age of the desired document.
KeepAlive	Determines whether the HTTP connection is closed after completion of the request.
KerberosSPN	The Service Principal Name for the Kerberos Domain Controller.
LogLevel	The level of detail that is logged.
MaxHeaders	Instructs component to save the amount of headers specified that are returned by the server after a Header event has been fired.
MaxHTTPCookies	Instructs component to save the amount of cookies specified that are returned by the server when a SetCookie event is fired.
MaxRedirectAttempts	Limits the number of redirects that are followed in a request.
NegotiatedHTTPVersion	The negotiated HTTP version.
OtherHeaders	Other headers as determined by the user (optional).
ProxyAuthorization	The authorization string to be sent to the proxy server.
ProxyAuthScheme	The authorization scheme to be used for the proxy.
ProxyPassword	A password if authentication is to be used for the proxy.
ProxyPort	Port for the proxy server (default 80).
ProxyServer	Name or IP address of a proxy server (optional).
ProxyUser	A user name if authentication is to be used for the proxy.
SentHeaders	The full set of headers as sent by the client.
StatusCode	The status code of the last response from the server.
StatusLine	The first line of the last response from the server.
TransferredData	The contents of the last response from the server.
TransferredDataLimit	The maximum number of incoming bytes to be stored by the component.
TransferredHeaders	The full set of headers as received from the server.
TransferredRequest	The full request as sent by the client.
UseChunkedEncoding	Enables or Disables HTTP chunked encoding for transfers.
UseIDNs	Whether to encode hostnames to internationalized domain names.
UsePlatformDeflate	Whether to use the platform implementation to decompress compressed responses.
UsePlatformHTTPClient	Whether or not to use the platform HTTP client.
UseProxyAutoConfigURL	Whether to use a Proxy auto-config file when attempting a connection.
UserAgent	Information about the user agent (browser).
CloseStreamAfterTransfer	If true, the component will close the upload or download stream after the transfer.
ConnectionTimeout	Sets a separate timeout value for establishing a connection.
FirewallAutoDetect	Tells the component whether or not to automatically detect and use firewall system settings, if available.
FirewallHost	Name or IP address of firewall (optional).
FirewallListener	If true, the component binds to a SOCKS firewall as a server (TCPClient only).
FirewallPassword	Password to be used if authentication is to be used when connecting through the firewall.
FirewallPort	The TCP port for the FirewallHost;.
FirewallType	Determines the type of firewall to connect through.
FirewallUser	A user name if authentication is to be used connecting through a firewall.
KeepAliveInterval	The retry interval, in milliseconds, to be used when a TCP keep-alive packet is sent and no response is received.
KeepAliveTime	The inactivity time in milliseconds before a TCP keep-alive packet is sent.
Linger	When set to True, connections are terminated gracefully.
LingerTime	Time in seconds to have the connection linger.
LocalHost	The name of the local host through which connections are initiated or accepted.
LocalPort	The port in the local host where the component binds.
MaxLineLength	The maximum amount of data to accumulate when no EOL is found.
MaxTransferRate	The transfer rate limit in bytes per second.
ProxyExceptionsList	A semicolon separated list of hosts and IPs to bypass when using a proxy.
TCPKeepAlive	Determines whether or not the keep alive socket option is enabled.
TcpNoDelay	Whether or not to delay when sending packets.
UseIPv6	Whether to use IPv6.
UseNTLMv2	Whether to use NTLM V2.
CACertFilePaths	The paths to CA certificate files when using Mono on Unix/Linux.
LogSSLPackets	Controls whether SSL packets are logged when using the internal security API.
ReuseSSLSession	Determines if the SSL session is reused.
SSLCACerts	A newline separated list of CA certificates to be included when performing an SSL handshake.
SSLCheckCRL	Whether to check the Certificate Revocation List for the server certificate.
SSLCheckOCSP	Whether to use OCSP to check the status of the server certificate.
SSLCipherStrength	The minimum cipher strength used for bulk encryption.
SSLClientCACerts	A newline separated list of CA certificates to use during SSL client certificate validation.
SSLEnabledCipherSuites	The cipher suite to be used in an SSL negotiation.
SSLEnabledProtocols	Used to enable/disable the supported security protocols.
SSLEnableRenegotiation	Whether the renegotiation_info SSL extension is supported.
SSLIncludeCertChain	Whether the entire certificate chain is included in the SSLServerAuthentication event.
SSLKeyLogFile	The location of a file where per-session secrets are written for debugging purposes.
SSLNegotiatedCipher	Returns the negotiated cipher suite.
SSLNegotiatedCipherStrength	Returns the negotiated cipher suite strength.
SSLNegotiatedCipherSuite	Returns the negotiated cipher suite.
SSLNegotiatedKeyExchange	Returns the negotiated key exchange algorithm.
SSLNegotiatedKeyExchangeStrength	Returns the negotiated key exchange algorithm strength.
SSLNegotiatedVersion	Returns the negotiated protocol version.
SSLSecurityFlags	Flags that control certificate verification.
SSLServerCACerts	A newline separated list of CA certificates to use during SSL server certificate validation.
TLS12SignatureAlgorithms	Defines the allowed TLS 1.2 signature algorithms when SSLProvider is set to Internal.
TLS12SupportedGroups	The supported groups for ECC.
TLS13KeyShareGroups	The groups for which to pregenerate key shares.
TLS13SignatureAlgorithms	The allowed certificate signature algorithms.
TLS13SupportedGroups	The supported groups for (EC)DHE key exchange.
AbsoluteTimeout	Determines whether timeouts are inactivity timeouts or absolute timeouts.
FirewallData	Used to send extra data to the firewall.
InBufferSize	The size in bytes of the incoming queue of the socket.
OutBufferSize	The size in bytes of the outgoing queue of the socket.
BuildInfo	Information about the product's build.
GUIAvailable	Whether or not a message loop is available for processing events.
LicenseInfo	Information about the current license.
MaskSensitiveData	Whether sensitive data is masked in log messages.
UseInternalSecurityAPI	Whether or not to use the system security libraries or an internal implementation.

Ack Property (ExpressCheckout Component)

Acknowledgement code received from PayPal.

public string Ack { get; }

Public ReadOnly Property Ack As String

Default Value

Remarks

This property will contain the acknowledgement code returned by PayPal that indicates the status of the transaction. It may contain one of the following values:


Success	Request processing succeeded.
Failure	Request processing failed.
SuccessWithWarning	Request processing completed successfully, but with some warning information that could be useful for the requesting application to process or record.
FailureWithWarning	Request processing failed with some error and warning information that the requesting application should process to determine causes of failure.
CustomCode	Reserved for internal or future use.

This property is read-only.

BuyerEmail Property (ExpressCheckout Component)

Buyer's email address.

Syntax

C#
VB.NET

public string BuyerEmail { get; set; }

Public Property BuyerEmail As String

Default Value

Remarks

Email address of the buyer as entered during checkout. PayPal uses this value to pre-fill the PayPal membership sign-up portion of the PayPal login page.

This property is optional when calling the SetCheckout method.

Character length and limit: 127 single-byte alphanumeric characters.

CancelURL Property (ExpressCheckout Component)

URL to which the customer is returned if he decides not to pay with PayPal.

Syntax

C#
VB.NET

public string CancelURL { get; set; }

Public Property CancelURL As String

Default Value

Remarks

If the user starts to pay with PayPal, and then changes his mind, his browser will be redirected to this URL on your server. This may be set to the original page on which the customer chose his payment method.

This property is required when calling the SetCheckout method.

Character length and limitations: no limit. Must be URL-encoded.

ContactPhone Property (ExpressCheckout Component)

Payer's contact telephone number.

Syntax

C#
VB.NET

public string ContactPhone { get; }

Public ReadOnly Property ContactPhone As String

Default Value

Remarks

PayPal returns a contact telephone number only if your Merchant account profile settings require that the buyer enter one.

This property is returned after a call to the GetCheckoutDetails method.

This property is read-only.

Firewall Property (ExpressCheckout Component)

A set of properties related to firewall access.

Syntax

C#
VB.NET

public Firewall Firewall { get; set; }

Public Property Firewall As Firewall

Remarks

This is a Firewall-type property, which contains fields describing the firewall through which the component will attempt to connect.

Please refer to the Firewall type for a complete list of fields.

Idle Property (ExpressCheckout Component)

The current status of the component.

Syntax

C#
VB.NET

public bool Idle { get; }

Public ReadOnly Property Idle As Boolean

Default Value

True

Remarks

This property will be False if the component is currently busy (communicating or waiting for an answer), and True at all other times.

This property is read-only.

InvoiceNumber Property (ExpressCheckout Component)

Your own unique invoice or tracking number.

Syntax

C#
VB.NET

public string InvoiceNumber { get; set; }

Public Property InvoiceNumber As String

Default Value

Remarks

This property is optional when calling the CheckoutPayment method.

This property is optional when calling the SetCheckout method.

Character length and limitations: 127 single-byte alphanumeric characters.

Items Property (ExpressCheckout Component)

This is the collection of items being purchased.

Syntax

C#
VB.NET

public PayPalPaymentItemList Items { get; }

Public Property Items As PayPalPaymentItemList

Remarks

This property should contain all the items being sent in the express checkout payment.

This property is not available at design time.

Please refer to the PayPalPaymentItem type for a complete list of fields.

Note Property (ExpressCheckout Component)

An informational note about this settlement that will be displayed in the payer's transaction history.

Syntax

C#
VB.NET

public string Note { get; set; }

Public Property Note As String

Default Value

Remarks

Used during Capture or VoidTransaction.

This property is optional.

Character length and limits: 255 single-byte characters.

OrderDescription Property (ExpressCheckout Component)

Description of items the customer is purchasing.

Syntax

C#
VB.NET

public string OrderDescription { get; set; }

Public Property OrderDescription As String

Default Value

Remarks

This property is optional.

Character length and limitations: 127 single-byte alphanumeric characters.

This property is optional when calling the CheckoutPayment method.

This property is optional when calling the SetCheckout method.

OrderTotal Property (ExpressCheckout Component)

The total cost of the order to the customer.

Syntax

C#
VB.NET

public string OrderTotal { get; set; }

Public Property OrderTotal As String

Default Value

Remarks

If shipping cost and tax charges are known, those should included in the OrderTotal if not, the value of this property is the current sub-total of the order.

This property is required when calling the CheckoutPayment method.

Limitations: Must not exceed $10,000 USD in any currency. The decimal separator must be a period (.) and the thousands separator a comma (,). No currency symbol ($) is to be sent.

Password Property (ExpressCheckout Component)

Password for communicating with PayPal.

Syntax

C#
VB.NET

public string Password { get; set; }

Public Property Password As String

Default Value

Remarks

This property is required to post messages to the PayPal URL. Do not confuse this property with your PayPal password. This password must match the API User you create from inside your PayPal account.

Payer Property (ExpressCheckout Component)

The person being billed for the current purchase.

Syntax

C#
VB.NET

public ExpressCheckoutPayer Payer { get; }

Public ReadOnly Property Payer As ExpressCheckoutPayer

Remarks

This property will contain details about the payer of the of the express checkout after a call to GetCheckoutDetails.

This property is read-only.

Please refer to the ExpressCheckoutPayer type for a complete list of fields.

PayerId Property (ExpressCheckout Component)

Unique encrypted PayPal customer account number.

Syntax

C#
VB.NET

public string PayerId { get; set; }

Public Property PayerId As String

Default Value

Remarks

This property is required when calling the CheckoutPayment method.

This property is returned after a call to the GetCheckoutDetails method.

Character length and limitations:17 single-byte characters maximum.

Payment Property (ExpressCheckout Component)

This contains details about the express checkout payment.

Syntax

C#
VB.NET

public PayPalPayment Payment { get; }

Public ReadOnly Property Payment As PayPalPayment

Remarks

This property will be populated with payment details after a call to GetCheckoutDetails, CheckoutPayment, or Capture.

Note: If the PaymentAction property was set to aAuthorization for this transaction, the TransactionId may be used with the Capture method to later settle the transaction.

This property is read-only.

Please refer to the PayPalPayment type for a complete list of fields.

PaymentAction Property (ExpressCheckout Component)

How you want to obtain payment.

Syntax

C#
VB.NET

public ExpressCheckoutPaymentActions PaymentAction { get; set; }

enum ExpressCheckoutPaymentActions {
  aSale,
  aAuthorization,
  aOrder
}

Public Property PaymentAction As ExpresscheckoutPaymentActions

Enum ExpressCheckoutPaymentActions
  aSale
  aAuthorization
  aOrder
End Enum

Default Value

Remarks

This property is required when calling the CheckoutPayment method.

This property is required when calling the SetCheckout method.

Possible values of this property include:


Value	Meaning
aSale (0)	Sale means all funds will be automatically deposited in your merchant PayPal account when the transaction is complete.
aAuthorization (1)	An Authorization transaction is used when you wish to authorize a card, but not necessarily transfer the funds yet. For instance, you may wish to authorize the card when a customer orders items through your website, and then settle the transaction once the items actually ship. You may use Capture to settle any outstanding authorizations. Authorizations enable you to capture up to 115% or USD $75 more than the amount you specify when CheckoutPayment is called. Authorizations hold the customer's funds for up to 3 days. The authorization is valid however for 29 days. Authorizations may be reauthorized only once during this period.
aOrder (2)	An Order transaction is very similar to an Authorization transaction, but it may contain more than one authorizations in the 29 day period. The Order transaction cannot be reauthorized, instead you must wait until the authorization period expires. This type of transaction should be used for different types of split orders where there are multiple deliverable times and thus portions of the payment will be made at various times.

Proxy Property (ExpressCheckout Component)

A set of properties related to proxy access.

Syntax

C#
VB.NET

public Proxy Proxy { get; set; }

Public Property Proxy As Proxy

Remarks

This property contains fields describing the proxy through which the component will attempt to connect.

Please refer to the Proxy type for a complete list of fields.

ResponseToken Property (ExpressCheckout Component)

The time-stamped token value.

Syntax

C#
VB.NET

public string ResponseToken { get; }

Public ReadOnly Property ResponseToken As String

Default Value

Remarks

This property is returned after all three kinds of Express Checkout requests: SetCheckout. GetCheckoutDetails, and CheckoutPayment. This token is used to reference a specific transaction in the PayPal network.

This value is used for several things:

After calling the SetCheckout method, the value of this property should be appended to the PayPal login page, located here: https://www.paypal.com/cgi-bin/webscr?cmd=_express-checkout&token=. The customer's browser should then be redirected to this location. This starts the PayPal payment process.
After the customer successfully pays, this token is appended as a query string to the value sent in the ReturnURL property. The customer is redirected to this URL (which should reside on your server).
You must then pass this value in the Token parameter of the GetCheckoutDetails method to continue the transaction.
The Token property must be set with this value before calling CheckoutPayment.

This token expires after three hours.

This property is read-only.

ReturnURL Property (ExpressCheckout Component)

URL to which the customer's browser is returned after choosing to pay with PayPal.

Syntax

C#
VB.NET

public string ReturnURL { get; set; }

Public Property ReturnURL As String

Default Value

Remarks

This is the page to which a customer is returned after he pays through PayPal. The PayPal server will append to this ReturnURL a query string containing a token which identifies this transaction in the PayPal network. This token should be sent as the Token parameter in the GetCheckoutDetails method.

This property is required when calling the SetCheckout method.

Character length and limitations: no limit. Must be URL-encoded.

ShippingTotal Property (ExpressCheckout Component)

Total shipping costs for this order.

Syntax

C#
VB.NET

public string ShippingTotal { get; set; }

Public Property ShippingTotal As String

Default Value

Remarks

This property is optional.

Limitations: Must not exceed $10,000 USD in any currency. The decimal separator must be a period (.) and the thousands separator a comma (,). No currency symbol ($) is to be sent.

Signature Property (ExpressCheckout Component)

Value to use with PayPal's Signature Authentication scheme.

Syntax

C#
VB.NET

public string Signature { get; set; }

Public Property Signature As String

Default Value

Remarks

A PayPal-generated unique digital signature (a line of text, or hash) that you copy from PayPal's website and include in API calls made by this component. An alternative to API Certificate security. Your digital signature, your API username, and your API password all together are called three-token authentication. An API signature is suitable for use with Microsoft Windows web servers or other shared web server configurations, such as those used by web hosting services. Multiple API signatures can be associated with your API username and password. For security, every time you view your API credential/signature on https://www.paypal.com, a new signature is generated. In your API calls, you can use any of the signatures that PayPal generates for you. All the signatures are equally valid until you remove your credentials by clicking Remove on the View API Signature page.

SSLAcceptServerCert Property (ExpressCheckout Component)

Instructs the component to unconditionally accept the server certificate that matches the supplied certificate.

Syntax

C#
VB.NET

public Certificate SSLAcceptServerCert { get; set; }

Public Property SSLAcceptServerCert As Certificate

Remarks

If it finds any issues with the certificate presented by the server, the component will normally terminate the connection with an error.

You may override this behavior by supplying a value for SSLAcceptServerCert. If the certificate supplied in SSLAcceptServerCert is the same as the certificate presented by the server, then the server certificate is accepted unconditionally, and the connection will continue normally.

Note: This functionality is provided only for cases in which you otherwise know that you are communicating with the right server. If used improperly, this property may create a security breach. Use it at your own risk.

Please refer to the Certificate type for a complete list of fields.

SSLCert Property (ExpressCheckout Component)

The certificate to be used during Secure Sockets Layer (SSL) negotiation.

Syntax

C#
VB.NET

public Certificate SSLCert { get; set; }

Public Property SSLCert As Certificate

Remarks

This property includes the digital certificate that the component will use during SSL negotiation. Set this property to a valid certificate before starting SSL negotiation. To set a certificate, you may set the Encoded field to the encoded certificate. To select a certificate, use the store and subject fields.

Please refer to the Certificate type for a complete list of fields.

SSLProvider Property (ExpressCheckout Component)

The Secure Sockets Layer/Transport Layer Security (SSL/TLS) implementation to use.

Syntax

C#
VB.NET

public ExpressCheckoutSSLProviders SSLProvider { get; set; }

enum ExpressCheckoutSSLProviders {
  sslpAutomatic,
  sslpPlatform,
  sslpInternal
}

Public Property SSLProvider As ExpresscheckoutSSLProviders

Enum ExpressCheckoutSSLProviders
  sslpAutomatic
  sslpPlatform
  sslpInternal
End Enum

Default Value

Remarks

This property specifies the SSL/TLS implementation to use. In most cases the default value of 0 (Automatic) is recommended and should not be changed. When set to 0 (Automatic), the component will select whether to use the platform implementation or the internal implementation depending on the operating system as well as the TLS version being used.

Possible values are as follows:


0 (sslpAutomatic - default)	Automatically selects the appropriate implementation.
1 (sslpPlatform)	Uses the platform/system implementation.
2 (sslpInternal)	Uses the internal implementation.

Additional Notes

In most cases using the default value (Automatic) is recommended. The component will select a provider depending on the current platform.

When Automatic is selected, on Windows, the component will use the platform implementation. On Linux/macOS, the component will use the internal implementation. When TLS 1.3 is enabled via SSLEnabledProtocols, the internal implementation is used on all platforms.

The .NET Standard library will always use the internal implementation on all platforms.

SSLServerCert Property (ExpressCheckout Component)

The server certificate for the last established connection.

Syntax

C#
VB.NET

public Certificate SSLServerCert { get; }

Public ReadOnly Property SSLServerCert As Certificate

Remarks

This property contains the server certificate for the last established connection.

SSLServerCert is reset every time a new connection is attempted.

This property is read-only.

Please refer to the Certificate type for a complete list of fields.

TaxTotal Property (ExpressCheckout Component)

Sum of tax for all items included in this order.

Syntax

C#
VB.NET

public string TaxTotal { get; set; }

Public Property TaxTotal As String

Default Value

Remarks

This property is optional.

Limitations: Must not exceed $10,000 USD in any currency. The decimal separator must be a period (.) and the thousands separator a comma (,). No currency symbol ($) is to be sent.

Timeout Property (ExpressCheckout Component)

A timeout for the component.

Syntax

C#
VB.NET

public int Timeout { get; set; }

Public Property Timeout As Integer

Default Value

Remarks

If Timeout is set to a positive value, and an operation cannot be completed immediately, the component will retry the operation for a maximum of Timeout seconds.

The default value for Timeout is 30 (seconds).

Token Property (ExpressCheckout Component)

This property is used to reference a specific Express Checkout transaction in the PayPal network.

Syntax

C#
VB.NET

public string Token { get; set; }

Public Property Token As String

Default Value

Remarks

PayPal will return a token in the ResponseToken property in response to each request. This value should be saved and passed in the Token property for a CheckoutPayment request, or to modify an existing transaction.

This token expires after three hours.

IMPORTANT: the value of this property can be used to modify an existing checkout session. Normally you call SetCheckout with an empty Token property, and get a ResponseToken back from the PayPal servers. Calling SetCheckout again with the Token property filled will edit that previous checkout session. For instance, this can be used should you want the customer to edit his shipping address on PayPal.

This property is required when calling the CheckoutPayment method.

This property is optional when calling the SetCheckout method.

Character length and limitations: 20 single-byte characters.

URL Property (ExpressCheckout Component)

URL all PayPal payment transactions are posted to.

Syntax

C#
VB.NET

public string URL { get; set; }

Public Property URL As String

Default Value

"https://api-3t.paypal.com/nvp"

Remarks

This is the URL to which the component posts requests to, and receives responses from. The server you use depends on whether you are using the "API Certificate" or the "API Signature" authentication scheme. If you use the API Certificate authentication scheme, you must set the SSLCert with your client-side certificate. If using the Signature method, set the Signature property instead. The list of valid URLs is shown below:


URL	Description
https://api.paypal.com/nvp	Live server for use with the API Certificate authentication scheme.
https://api-3t.paypal.com/nvp	Live server for use with the 3-token API Signature authentication scheme.
https://api.sandbox.paypal.com/nvp	Test server for use with the API Certificate authentication scheme.
https://api-3t.sandbox.paypal.com/nvp	Test server for use with the 3-token API Signature authentication scheme.

User Property (ExpressCheckout Component)

User name for communicating with Paypal.

Syntax

C#
VB.NET

public string User { get; set; }

Public Property User As String

Default Value

Remarks

This property is required to post messages to the PayPal URL. This should not be the same username as your PayPal account login, but rather the name of the API service you've created in your account. If you allow PayPal to auto-generate the name, it is usually the first part of your email address plus "_api1." plus the last part of your email address. For instance, a PayPal Id of test@teststore.com would generate a user name test_api1.teststore.com.

AddCustomField Method (ExpressCheckout Component)

This adds a custom name-value pair to be sent with the next request.

Syntax

C#
VB.NET

public void AddCustomField(string name, string value);

Public Sub AddCustomField(ByVal Name As String, ByVal Value As String)

Remarks

This method should be used to append a custom name-value pair to the next outgoing request to PayPal.

Note: The custom fields that have been added will be cleared by the component automatically after each request.

Capture Method (ExpressCheckout Component)

Completely or partially settles a previously authorized transaction.

Syntax

C#
VB.NET

public void Capture(string authorizationId, string amount);

Public Sub Capture(ByVal AuthorizationId As String, ByVal Amount As String)

Remarks

This method captures the transaction indicated by the AuthorizationId parameter for the amount specified in the Amount parameter. You may capture less than the authorized amount by setting the IsPartialCapture configuration setting to True.

CheckoutPayment Method (ExpressCheckout Component)

Either obtain payment for a final sale, or request authorization for later capture of payment.

Syntax

C#
VB.NET

public void CheckoutPayment();

Public Sub CheckoutPayment()

Remarks

This method completes the sale or authorization. When this method is called, the following properties are required in the request:

Token
PaymentAction
OrderTotal
PayerId (returned after a call to GetCheckoutDetails)

To obtain payment for a final sale you will have to set the PaymentAction property to aSale. If you want to request an authorization, the PaymentAction property has to be set to aAuthorization. Then, you will need to use Capture to capture the transaction.

The following information may be optionally provided in the request:

OrderDescription
Custom (Config setting)
InvoiceNumber
NotifyURL (Config setting)
Payment item details (Amount, Name, Number, Quantity, SalesTax)

The Response and Payment properties may be returned in the response.

Config Method (ExpressCheckout Component)

Sets or retrieves a configuration setting.

Syntax

C#
VB.NET

public string Config(string configurationString);

Public Function Config(ByVal ConfigurationString As String) As String

Remarks

Config is a generic method available in every component. It is used to set and retrieve configuration settings for the component.

These settings are similar in functionality to properties, but they are rarely used. In order to avoid "polluting" the property namespace of the component, access to these internal properties is provided through the Config method.

To set a configuration setting named PROPERTY, you must call Config("PROPERTY=VALUE"), where VALUE is the value of the setting expressed as a string. For boolean values, use the strings "True", "False", "0", "1", "Yes", or "No" (case does not matter).

To read (query) the value of a configuration setting, you must call Config("PROPERTY"). The value will be returned as a string.

DoEvents Method (ExpressCheckout Component)

This method processes events from the internal message queue.

Syntax

C#
VB.NET

public void DoEvents();

Public Sub DoEvents()

Remarks

When DoEvents is called, the component processes any available events. If no events are available, it waits for a preset period of time, and then returns.

GetCheckoutDetails Method (ExpressCheckout Component)

Returns information about the customer, including name and address on file with PayPal.

Syntax

C#
VB.NET

public void GetCheckoutDetails();

Public Sub GetCheckoutDetails()

Remarks

After the customer pays via PayPal and is returned to your ReturnURL, use this method (along with the token returned in the ReturnURL query string) to retrieve payment details about this transaction. After calling this method, all of the fields under the Payer and Payment properties will be populated. Note that PayPal will only return these values if it has this information stored for the paying customer. The PayerId property is required to finalize the sale, but you may want to check other Payer and Payment details to make sure they are correct.

If everything looks good, you may then call CheckoutPayment to complete the transaction.

GetResponseVar Method (ExpressCheckout Component)

It is not uncommon for there to be additional response variables returned in the response that cannot be directly obtained via the Response properties.

Syntax

C#
VB.NET

public string GetResponseVar(string name);

Public Function GetResponseVar(ByVal Name As String) As String

Remarks

This method allows you to retrieve additional variables from the response. The value is returned by the method. Note that the variable name is case-sensitive. component.GetResponseVar("ACK")

Interrupt Method (ExpressCheckout Component)

This method interrupts the current method.

Syntax

C#
VB.NET

public void Interrupt();

Public Sub Interrupt()

Remarks

If there is no method in progress, Interrupt simply returns, doing nothing.

Reset Method (ExpressCheckout Component)

Clears all properties to their default values.

Syntax

C#
VB.NET

public void Reset();

Public Sub Reset()

Remarks

This method clears all properties to their default values and returns the component to its default state.

SetCheckout Method (ExpressCheckout Component)

Call this method to begin the Express Checkout process and fetch a token from PayPal which will encode transaction details.

Syntax

C#
VB.NET

public void SetCheckout();

Public Sub SetCheckout()

Remarks

This method queries PayPal for a ResponseToken and begins the Express Checkout process. This token is used to identify the transaction on the PayPal network.

The following properties are required before calling SetCheckout:

URL
User
Password
Signature
OrderTotal
ReturnURL
CancelURL
PaymentAction

After calling this method, you should check the Ack property to determine whether the request was successful. If so, append the ResponseToken value to the following PayPal URL, and redirect your customer there.

https://www.sandbox.paypal.com/cgi-bin/webscr?cmd=_express-checkout&token=

The customer will sign in and fill out payment details on PayPal's site. Afterwards PayPal will automatically redirect the customer back to the ReturnURL you specified, along with the updated token appended to the URL. This token should be parsed from the URL and set as the Token property. You may then proceed in calling GetCheckoutDetails and CheckoutPayment.

VoidTransaction Method (ExpressCheckout Component)

Voids a prior authorization.

Syntax

C#
VB.NET

public void VoidTransaction(string authorizationId);

Public Sub VoidTransaction(ByVal AuthorizationId As String)

Remarks

This voids the transaction indicated by the AuthorizationId parameter.

Note: when the three-day authorization period expires, the authorization of a transaction is implicitly voided.

Error Event (ExpressCheckout Component)

Information about errors during data delivery.

Syntax

C#
VB.NET

public event OnErrorHandler OnError;

public delegate void OnErrorHandler(object sender, ExpressCheckoutErrorEventArgs e);

public class ExpressCheckoutErrorEventArgs : EventArgs {
  public int ErrorCode { get; }
  public string Description { get; }
}

Public Event OnError As OnErrorHandler

Public Delegate Sub OnErrorHandler(sender As Object, e As ExpressCheckoutErrorEventArgs)

Public Class ExpressCheckoutErrorEventArgs Inherits EventArgs
  Public ReadOnly Property ErrorCode As Integer
  Public ReadOnly Property Description As String
End Class

Remarks

The Error event is fired in case of exceptional conditions during message processing.

ErrorCode contains an error code and Description contains a textual description of the error. For a list of valid error codes and their descriptions, please refer to the Error Codes section.

SSLServerAuthentication Event (ExpressCheckout Component)

Fired after the server presents its certificate to the client.

Syntax

C#
VB.NET

public event OnSSLServerAuthenticationHandler OnSSLServerAuthentication;

public delegate void OnSSLServerAuthenticationHandler(object sender, ExpressCheckoutSSLServerAuthenticationEventArgs e);

public class ExpressCheckoutSSLServerAuthenticationEventArgs : EventArgs {
  public string CertEncoded { get; }
  public byte[] CertEncodedB { get; }
  public string CertSubject { get; }
  public string CertIssuer { get; }
  public string Status { get; }
  public bool Accept { get; set; }
}

Public Event OnSSLServerAuthentication As OnSSLServerAuthenticationHandler

Public Delegate Sub OnSSLServerAuthenticationHandler(sender As Object, e As ExpressCheckoutSSLServerAuthenticationEventArgs)

Public Class ExpressCheckoutSSLServerAuthenticationEventArgs Inherits EventArgs
  Public ReadOnly Property CertEncoded As String
  Public ReadOnly Property CertEncodedB As Byte()
  Public ReadOnly Property CertSubject As String
  Public ReadOnly Property CertIssuer As String
  Public ReadOnly Property Status As String
  Public Property Accept As Boolean
End Class

Remarks

During this event, the client can decide whether or not to continue with the connection process. The Accept parameter is a recommendation on whether to continue or close the connection. This is just a suggestion: application software must use its own logic to determine whether or not to continue.

When Accept is False, Status shows why the verification failed (otherwise, Status contains the string OK). If it is decided to continue, you can override and accept the certificate by setting the Accept parameter to True.

SSLStatus Event (ExpressCheckout Component)

Fired when secure connection progress messages are available.

Syntax

C#
VB.NET

public event OnSSLStatusHandler OnSSLStatus;

public delegate void OnSSLStatusHandler(object sender, ExpressCheckoutSSLStatusEventArgs e);

public class ExpressCheckoutSSLStatusEventArgs : EventArgs {
  public string Message { get; }
}

Public Event OnSSLStatus As OnSSLStatusHandler

Public Delegate Sub OnSSLStatusHandler(sender As Object, e As ExpressCheckoutSSLStatusEventArgs)

Public Class ExpressCheckoutSSLStatusEventArgs Inherits EventArgs
  Public ReadOnly Property Message As String
End Class

Remarks

The event is fired for informational and logging purposes only. This event tracks the progress of the connection.

Certificate Type

This is the digital certificate being used.

Remarks

This type describes the current digital certificate. The certificate may be a public or private key. The fields are used to identify or select certificates.

The following fields are available:

Fields

EffectiveDate
string (read-only)
Default: ""

The date on which this certificate becomes valid. Before this date, it is not valid. The date is localized to the system's time zone. The following example illustrates the format of an encoded date:

23-Jan-2000 15:00:00.

ExpirationDate
string (read-only)
Default: ""

The date on which the certificate expires. After this date, the certificate will no longer be valid. The date is localized to the system's time zone. The following example illustrates the format of an encoded date:

23-Jan-2001 15:00:00.

ExtendedKeyUsage
string (read-only)
Default: ""

A comma-delimited list of extended key usage identifiers. These are the same as ASN.1 object identifiers (OIDs).

Fingerprint
string (read-only)
Default: ""

The hex-encoded, 16-byte MD5 fingerprint of the certificate. This property is primarily used for keys which do not have a corresponding X.509 public certificate, such as PEM keys that only contain a private key. It is commonly used for SSH keys.

The following example illustrates the format: bc:2a:72:af:fe:58:17:43:7a:5f:ba:5a:7c:90:f7:02

FingerprintSHA1
string (read-only)
Default: ""

The hex-encoded, 20-byte SHA-1 fingerprint of the certificate. This property is primarily used for keys which do not have a corresponding X.509 public certificate, such as PEM keys that only contain a private key. It is commonly used for SSH keys.

The following example illustrates the format: 30:7b:fa:38:65:83:ff:da:b4:4e:07:3f:17:b8:a4:ed:80:be:ff:84

FingerprintSHA256
string (read-only)
Default: ""

The hex-encoded, 32-byte SHA-256 fingerprint of the certificate. This property is primarily used for keys which do not have a corresponding X.509 public certificate, such as PEM keys that only contain a private key. It is commonly used for SSH keys.

The following example illustrates the format: 6a:80:5c:33:a9:43:ea:b0:96:12:8a:64:96:30:ef:4a:8a:96:86:ce:f4:c7:be:10:24:8e:2b:60:9e:f3:59:53

Issuer
string (read-only)
Default: ""

The issuer of the certificate. This field contains a string representation of the name of the issuing authority for the certificate.

PrivateKey
string (read-only)
Default: ""

The private key of the certificate (if available). The key is provided as PEM/Base64-encoded data.

Note: The PrivateKey may be available but not exportable. In this case, PrivateKey returns an empty string.

PrivateKeyAvailable
bool (read-only)
Default: False

Whether a PrivateKey is available for the selected certificate. If PrivateKeyAvailable is True, the certificate may be used for authentication purposes (e.g., server authentication).

PrivateKeyContainer
string (read-only)
Default: ""

The name of the PrivateKey container for the certificate (if available). This functionality is available only on Windows platforms.

PublicKey
string (read-only)
Default: ""

The public key of the certificate. The key is provided as PEM/Base64-encoded data.

PublicKeyAlgorithm
string (read-only)
Default: ""

The textual description of the certificate's public key algorithm. The property contains either the name of the algorithm (e.g., "RSA" or "RSA_DH") or an object identifier (OID) string representing the algorithm.

PublicKeyLength
int (read-only)
Default: 0

The length of the certificate's public key (in bits). Common values are 512, 1024, and 2048.

SerialNumber
string (read-only)
Default: ""

The serial number of the certificate encoded as a string. The number is encoded as a series of hexadecimal digits, with each pair representing a byte of the serial number.

SignatureAlgorithm
string (read-only)
Default: ""

The text description of the certificate's signature algorithm. The property contains either the name of the algorithm (e.g., "RSA" or "RSA_MD5RSA") or an object identifier (OID) string representing the algorithm.

Store
string
Default: "MY"

The name of the certificate store for the client certificate.

The StoreType field denotes the type of the certificate store specified by Store. If the store is password-protected, specify the password in StorePassword.

Store is used in conjunction with the Subject field to specify client certificates. If Store has a value, and Subject or Encoded is set, a search for a certificate is initiated. Please see the Subject field for details.

Designations of certificate stores are platform dependent.

The following designations are the most common User and Machine certificate stores in Windows:


MY	A certificate store holding personal certificates with their associated private keys.
CA	Certifying authority certificates.
ROOT	Root certificates.

When the certificate store type is cstPFXFile, this property must be set to the name of the file. When the type is cstPFXBlob, the property must be set to the binary contents of a PFX file (i.e., PKCS#12 certificate store).

StoreB
byte []
Default: "MY"

The name of the certificate store for the client certificate.

The StoreType field denotes the type of the certificate store specified by Store. If the store is password-protected, specify the password in StorePassword.

Designations of certificate stores are platform dependent.

The following designations are the most common User and Machine certificate stores in Windows:


MY	A certificate store holding personal certificates with their associated private keys.
CA	Certifying authority certificates.
ROOT	Root certificates.

StorePassword
string
Default: ""

If the type of certificate store requires a password, this field is used to specify the password needed to open the certificate store.

StoreType
CertStoreTypes
Default: 0

The type of certificate store for this certificate.

The component supports both public and private keys in a variety of formats. When the cstAuto value is used, the component will automatically determine the type. This field can take one of the following values:


0 (cstUser - default)	For Windows, this specifies that the certificate store is a certificate store owned by the current user. Note: This store type is not available in Java.
1 (cstMachine)	For Windows, this specifies that the certificate store is a machine store. Note: This store type is not available in Java.
2 (cstPFXFile)	The certificate store is the name of a PFX (PKCS#12) file containing certificates.
3 (cstPFXBlob)	The certificate store is a string (binary or Base64-encoded) representing a certificate store in PFX (PKCS#12) format.
4 (cstJKSFile)	The certificate store is the name of a Java Key Store (JKS) file containing certificates. Note: This store type is only available in Java.
5 (cstJKSBlob)	The certificate store is a string (binary or Base64-encoded) representing a certificate store in Java Key Store (JKS) format. Note: This store type is only available in Java.
6 (cstPEMKeyFile)	The certificate store is the name of a PEM-encoded file that contains a private key and an optional certificate.
7 (cstPEMKeyBlob)	The certificate store is a string (binary or Base64-encoded) that contains a private key and an optional certificate.
8 (cstPublicKeyFile)	The certificate store is the name of a file that contains a PEM- or DER-encoded public key certificate.
9 (cstPublicKeyBlob)	The certificate store is a string (binary or Base64-encoded) that contains a PEM- or DER-encoded public key certificate.
10 (cstSSHPublicKeyBlob)	The certificate store is a string (binary or Base64-encoded) that contains an SSH-style public key.
11 (cstP7BFile)	The certificate store is the name of a PKCS#7 file containing certificates.
12 (cstP7BBlob)	The certificate store is a string (binary) representing a certificate store in PKCS#7 format.
13 (cstSSHPublicKeyFile)	The certificate store is the name of a file that contains an SSH-style public key.
14 (cstPPKFile)	The certificate store is the name of a file that contains a PPK (PuTTY Private Key).
15 (cstPPKBlob)	The certificate store is a string (binary) that contains a PPK (PuTTY Private Key).
16 (cstXMLFile)	The certificate store is the name of a file that contains a certificate in XML format.
17 (cstXMLBlob)	The certificate store is a string that contains a certificate in XML format.
18 (cstJWKFile)	The certificate store is the name of a file that contains a JWK (JSON Web Key).
19 (cstJWKBlob)	The certificate store is a string that contains a JWK (JSON Web Key).
21 (cstBCFKSFile)	The certificate store is the name of a file that contains a BCFKS (Bouncy Castle FIPS Key Store). Note: This store type is only available in Java and .NET.
22 (cstBCFKSBlob)	The certificate store is a string (binary or Base64-encoded) representing a certificate store in BCFKS (Bouncy Castle FIPS Key Store) format. Note: This store type is only available in Java and .NET.
23 (cstPKCS11)	The certificate is present on a physical security key accessible via a PKCS#11 interface. To use a security key, the necessary data must first be collected using the CertMgr component. The ListStoreCertificates method may be called after setting CertStoreType to `cstPKCS11`, CertStorePassword to the PIN, and CertStore to the full path of the PKCS#11 DLL. The certificate information returned in the CertList event's `CertEncoded` parameter may be saved for later use. When using a certificate, pass the previously saved security key information as the Store and set StorePassword to the PIN. Code Example. SSH Authentication with Security Key: `certmgr.CertStoreType = CertStoreTypes.cstPKCS11; certmgr.OnCertList += (s, e) => { secKeyBlob = e.CertEncoded; }; certmgr.CertStore = @"C:\Program Files\OpenSC Project\OpenSC\pkcs11\opensc-pkcs11.dll"; certmgr.CertStorePassword = "123456"; //PIN certmgr.ListStoreCertificates(); sftp.SSHCert = new Certificate(CertStoreTypes.cstPKCS11, secKeyBlob, "123456", "*"); sftp.SSHUser = "test"; sftp.SSHLogon("myhost", 22);`
99 (cstAuto)	The store type is automatically detected from the input data. This setting may be used with both public and private keys and can detect any of the supported formats automatically.

SubjectAltNames
string (read-only)
Default: ""

Comma-separated lists of alternative subject names for the certificate.

ThumbprintMD5
string (read-only)
Default: ""

The MD5 hash of the certificate. It is primarily used for X.509 certificates. If the hash does not already exist, it is automatically computed.

ThumbprintSHA1
string (read-only)
Default: ""

The SHA-1 hash of the certificate. It is primarily used for X.509 certificates. If the hash does not already exist, it is automatically computed.

ThumbprintSHA256
string (read-only)
Default: ""

The SHA-256 hash of the certificate. It is primarily used for X.509 certificates. If the hash does not already exist, it is automatically computed.

Usage
string (read-only)
Default: ""

The text description of UsageFlags.

This value will be one or more of the following strings and will be separated by commas:

Digital Signature
Non-Repudiation
Key Encipherment
Data Encipherment
Key Agreement
Certificate Signing
CRL Signing
Encipher Only

If the provider is OpenSSL, the value is a comma-separated list of X.509 certificate extension names.

UsageFlags
int (read-only)
Default: 0

The flags that show intended use for the certificate. The value of UsageFlags is a combination of the following flags:


0x80	Digital Signature
0x40	Non-Repudiation
0x20	Key Encipherment
0x10	Data Encipherment
0x08	Key Agreement
0x04	Certificate Signing
0x02	CRL Signing
0x01	Encipher Only

Please see the Usage field for a text representation of UsageFlags.

This functionality currently is not available when the provider is OpenSSL.

Version
string (read-only)
Default: ""

The certificate's version number. The possible values are the strings "V1", "V2", and "V3".

Subject
string
Default: ""

The subject of the certificate used for client authentication.

This field will be populated with the full subject of the loaded certificate. When loading a certificate, the subject is used to locate the certificate in the store.

If an exact match is not found, the store is searched for subjects containing the value of the property.

If a match is still not found, the property is set to an empty string, and no certificate is selected.

The special value "*" picks a random certificate in the certificate store.

The certificate subject is a comma-separated list of distinguished name fields and values. For instance, "CN=www.server.com, OU=test, C=US, E=support@nsoftware.com". Common fields and their meanings are as follows:


Field	Meaning
CN	Common Name. This is commonly a hostname like www.server.com.
O	Organization
OU	Organizational Unit
L	Locality
S	State
C	Country
E	Email Address

If a field value contains a comma, it must be quoted.

Encoded
string
Default: ""

The certificate (PEM/Base64 encoded). This field is used to assign a specific certificate. The Store and Subject fields also may be used to specify a certificate.

When Encoded is set, a search is initiated in the current Store for the private key of the certificate. If the key is found, Subject is updated to reflect the full subject of the selected certificate; otherwise, Subject is set to an empty string.

EncodedB
byte []
Default: ""

The certificate (PEM/Base64 encoded). This field is used to assign a specific certificate. The Store and Subject fields also may be used to specify a certificate.

Constructors

C#
VB.NET

public Certificate();

Public Certificate()

Creates a instance whose properties can be set. This is useful for use with when generating new certificates.

C#
VB.NET

public Certificate(string certificateFile);

Public Certificate(ByVal CertificateFile As String)

Opens CertificateFile and reads out the contents as an X.509 public key.

C#
VB.NET

public Certificate(byte[] encoded);

Public Certificate(ByVal Encoded As Byte())

Parses Encoded as an X.509 public key.

C#
VB.NET

public Certificate(CertStoreTypes storeType, string store, string storePassword, string subject);

Public Certificate(ByVal StoreType As CertStoreTypes, ByVal Store As String, ByVal StorePassword As String, ByVal Subject As String)

StoreType identifies the type of certificate store to use. See for descriptions of the different certificate stores. Store is a file containing the certificate store. StorePassword is the password used to protect the store.

After the store has been successfully opened, the component will attempt to find the certificate identified by Subject . This can be either a complete or a substring match of the X.509 certificate's subject Distinguished Name (DN). The Subject parameter can also take an MD5, SHA-1, or SHA-256 thumbprint of the certificate to load in a "Thumbprint=value" format.

C#
VB.NET

public Certificate(CertStoreTypes storeType, string store, string storePassword, string subject, string configurationString);

Public Certificate(ByVal StoreType As CertStoreTypes, ByVal Store As String, ByVal StorePassword As String, ByVal Subject As String, ByVal ConfigurationString As String)

ConfigurationString is a newline-separated list of name-value pairs that may be used to modify the default behavior. Possible values include "PersistPFXKey", which shows whether or not the PFX key is persisted after performing operations with the private key. This correlates to the PKCS12_NO_PERSIST_KEY CryptoAPI option. The default value is True (the key is persisted). "Thumbprint" - an MD5, SHA-1, or SHA-256 thumbprint of the certificate to load. When specified, this value is used to select the certificate in the store. This is applicable to the cstUser , cstMachine , cstPublicKeyFile , and cstPFXFile store types. "UseInternalSecurityAPI" shows whether the platform (default) or the internal security API is used when performing certificate-related operations.

C#
VB.NET

public Certificate(CertStoreTypes storeType, string store, string storePassword, byte[] encoded);

Public Certificate(ByVal StoreType As CertStoreTypes, ByVal Store As String, ByVal StorePassword As String, ByVal Encoded As Byte())

After the store has been successfully opened, the component will load Encoded as an X.509 certificate and search the opened store for a corresponding private key.

C#
VB.NET

public Certificate(CertStoreTypes storeType, byte[] store, string storePassword, string subject);

Public Certificate(ByVal StoreType As CertStoreTypes, ByVal Store As Byte(), ByVal StorePassword As String, ByVal Subject As String)

StoreType identifies the type of certificate store to use. See for descriptions of the different certificate stores. Store is a byte array containing the certificate data. StorePassword is the password used to protect the store.

C#
VB.NET

public Certificate(CertStoreTypes storeType, byte[] store, string storePassword, string subject, string configurationString);

Public Certificate(ByVal StoreType As CertStoreTypes, ByVal Store As Byte(), ByVal StorePassword As String, ByVal Subject As String, ByVal ConfigurationString As String)

C#
VB.NET

public Certificate(CertStoreTypes storeType, byte[] store, string storePassword, byte[] encoded);

Public Certificate(ByVal StoreType As CertStoreTypes, ByVal Store As Byte(), ByVal StorePassword As String, ByVal Encoded As Byte())

After the store has been successfully opened, the component will load Encoded as an X.509 certificate and search the opened store for a corresponding private key.

ExpressCheckoutPayer Type

The payer of the express checkout.

Remarks

This type describes information about the payer that will be charged for the current checkout.

The following fields are available:

Business
City
CountryCode
Email
FirstName
LastName
State
Status
Street1
Street2
Zip

Fields

Business
string
Default: ""

Payer's business email address.

City
string
Default: ""

Payer's city name.

This field is required.

Character length and limitations: 40 single-byte characters.

CountryCode
string
Default: "US"

Payer's country code.

Payer's country of residence in the form of ISO standard 3166 two-character country codes.

This field is required.

Character limit: Two single-byte characters.

Email
string
Default: ""

Email address of the payer.

This field is optional.

FirstName
string
Default: ""

Payer's first name.

This field is required.

Character length and limitations: 25 single-byte characters.

LastName
string
Default: ""

Payer's last name.

This field is required.

Character length and limitations: 25 single-byte characters.

State
string
Default: ""

Payer's state or province name.

This field is required.

Character length and limitations: 40 single-byte characters.

Status
string
Default: ""

Indicates whether the payer is verified or not.

Valid values for this field are "verified" or "unverified".

Street1
string
Default: ""

Payer's street address (first line).

This field is required.

Character length and limitations: 100 single-byte characters.

Street2
string
Default: ""

Payer's street address (second line).

This field is optional.

Character length and limitations: 100 single-byte characters.

Zip
string (read-only)
Default: ""

Payer's United States ZIP code or other country-specific postal code.

Character length and limitations: 20 single-byte characters.

Constructors

C#
VB.NET

public ExpressCheckoutPayer();

Public ExpressCheckoutPayer()

Firewall Type

The firewall the component will connect through.

Remarks

When connecting through a firewall, this type is used to specify different properties of the firewall, such as the firewall Host and the FirewallType.

The following fields are available:

AutoDetect
FirewallType
Host
Password
Port
User

Fields

AutoDetect
bool
Default: False

Whether to automatically detect and use firewall system settings, if available.

FirewallType
FirewallTypes
Default: 0

The type of firewall to connect through. The applicable values are as follows:


fwNone (0)	No firewall (default setting).
fwTunnel (1)	Connect through a tunneling proxy. Port is set to 80.
fwSOCKS4 (2)	Connect through a SOCKS4 Proxy. Port is set to 1080.
fwSOCKS5 (3)	Connect through a SOCKS5 Proxy. Port is set to 1080.
fwSOCKS4A (10)	Connect through a SOCKS4A Proxy. Port is set to 1080.

Host
string
Default: ""

The name or IP address of the firewall (optional). If a Host is given, the requested connections will be authenticated through the specified firewall when connecting.

If this field is set to a Domain Name, a DNS request is initiated. Upon successful termination of the request, this field is set to the corresponding address. If the search is not successful, the component throws an exception.

Password
string
Default: ""

A password if authentication is to be used when connecting through the firewall. If Host is specified, the User and Password fields are used to connect and authenticate to the given firewall. If the authentication fails, the component throws an exception.

Port
int
Default: 0

The Transmission Control Protocol (TCP) port for the firewall Host. See the description of the Host field for details.

Note: This field is set automatically when FirewallType is set to a valid value. See the description of the FirewallType field for details.

User
string
Default: ""

A username if authentication is to be used when connecting through a firewall. If Host is specified, this field and the Password field are used to connect and authenticate to the given Firewall. If the authentication fails, the component throws an exception.

Constructors

C#
VB.NET

public Firewall();

Public Firewall()

PayPalPayment Type

This type describes the payment that has been processed with PayPal.

Remarks

The type is readonly and will be populated after a response from the server that contains payment information.

The following fields are available:

Date
ExchangeRate
FeeAmount
GrossAmount
PaymentType
PendingReason
SettleAmount
Status
TaxAmount
TransactionId
TransactionType

Fields

Date
string (read-only)
Default: ""

This is the time/date stamp of payment.

ExchangeRate
string (read-only)
Default: ""

Exchange rate if a currency conversion occurred.

Relevant only if you are billing in their non-primary currency. If the customer chooses to pay with a currency other than the non-primary currency, the conversion occurs in the customer's account.

FeeAmount
string (read-only)
Default: ""

PayPal fee amount charged for the transaction.

GrossAmount
string (read-only)
Default: ""

The final amount charged.

This includes any shipping and taxes from your Merchant Profile.

PaymentType
string (read-only)
Default: ""

Indicates whether the payment is instant or delayed.

Current list of return values: none, echeck, instant.

PendingReason
string (read-only)
Default: ""

The reason the payment is pending.

The current list of possible return values for this property are:


Response	Description
none	No pending reason.
address	The payment is pending because your customer did not include a confirmed shipping address and your Payment Receiving Preferences is set such that you want to manually accept or deny each of these payments. To change your preference, go to the Preferences section of your Profile.
echeck	The payment is pending because it was made by an eCheck that has not yet cleared.
intl	The payment is pending because you hold a non-U.S. account and do not have a withdrawal mechanism. You must manually accept or deny this payment from your Account Overview.
multi-currency	You do not have a balance in the currency sent, and you do not have your Payment Receiving Preferences set to automatically convert and accept this payment. You must manually accept or deny this payment.
PaymentReview	The payment is under review by PayPal. Check PaymentProtectionEligibility for protection eligibility status.
verify	The payment is pending because you are not yet verified. You must verify your account before you can accept this payment.
other	The payment is pending for a reason other than those listed above. For more information, contact PayPal customer service.

SettleAmount
string (read-only)
Default: ""

Amount deposited in your PayPal account after a currency conversion.

If there is no currency conversion, this property will remain empty.

Status
string (read-only)
Default: ""

Status of the payment.

The current list of possible values for this property are:


Response	Description
None	No status.
Canceled-Reversal	A reversal has been canceled.
Completed	The payment has been completed and the funds have been added successfully to your account balance.
Denied	You denied the payment.
Failed	The payment has failed.
Pending	The payment is pending.
Refunded	You refunded the payment.
Reversed	A payment was reversed due to a chargeback or other type of reversal. The funds have been removed from your account balance and returned to the buyer.
Processed	A payment has been accepted.

Note: When the returned value of this property is...

- "Canceled-Reversal": it means that a reversal has been canceled. For example, you won a dispute with the customer, and the funds for the transaction that was reversed have been returned to you.

- "Denied": this happens only if the payment was previously pending because of possible reasons described for the PendingReason element.

- "Failed": this happens only if the payment was made from your customer's bank account.

- "Pending": see the PendingReason field for more information.

TaxAmount
string (read-only)
Default: ""

Tax charged on the transaction.

TransactionId
string (read-only)
Default: ""

Unique transaction ID of the payment.

TransactionType
string (read-only)
Default: ""

The type of transaction.

Current list of return values: cart, express-checkout.

Constructors

C#
VB.NET

public PayPalPayment();

Public PayPalPayment()

PayPalPaymentItem Type

The item being purchased.

Remarks

This type describes the item that is being purchased from the merchant.

For example, the following code adds one item to a transaction.

Example: Setting the fields: PayPalPaymentItem item = new PayPalPaymentItem(); item.Amount = "30.00" item.Name = "Motorcycle handlebars" item.Number = "12345678" item.Quantity = 1 item.SalesTax = "0" component.Items.Add(item);

Example: Using the Constructors: component.Items.Add(new PayPalPaymentItem("Motorcycle handlebars", "12345678", "30.00", 1));

The following fields are available:

Amount
Description
Name
Number
Options
Quantity
SalesTax

Fields

Amount
string
Default: ""

Amount of charged on payment. It must have 2 decimal places, the decimal separator must be a period (.). An example Amount is "1010.10".

Description
string
Default: ""

Paypal item description for the shopping cart.

Name
string
Default: ""

Name of the item purchased.

Number
string
Default: ""

Item number set by the merchant.

Options
string
Default: ""

Paypal item options for the shopping cart.

Quantity
int
Default: 0

Quantity of items ordered.

SalesTax
string
Default: ""

Amount of tax charged on payment.

Constructors

C#
VB.NET

public PayPalPaymentItem();

Public PayPalPaymentItem()

C#
VB.NET

public PayPalPaymentItem(string name);

Public PayPalPaymentItem(ByVal Name As String)

C#
VB.NET

public PayPalPaymentItem(string name, string number);

Public PayPalPaymentItem(ByVal Name As String, ByVal Number As String)

C#
VB.NET

public PayPalPaymentItem(string name, string number, string amount);

Public PayPalPaymentItem(ByVal Name As String, ByVal Number As String, ByVal Amount As String)

C#
VB.NET

public PayPalPaymentItem(string name, string number, string amount, int quantity);

Public PayPalPaymentItem(ByVal Name As String, ByVal Number As String, ByVal Amount As String, ByVal Quantity As Integer)

Proxy Type

The proxy the component will connect to.

Remarks

When connecting through a proxy, this type is used to specify different properties of the proxy, such as the Server and the AuthScheme.

The following fields are available:

AuthScheme
AutoDetect
Password
Port
Server
SSL
User

Fields

AuthScheme
ProxyAuthSchemes
Default: 0

The type of authorization to perform when connecting to the proxy. This is used only when the User and Password fields are set.

AuthScheme should be set to authNone (3) when no authentication is expected.

By default, AuthScheme is authBasic (0), and if the User and Password fields are set, the component will attempt basic authentication.

If AuthScheme is set to authDigest (1), digest authentication will be attempted instead.

If AuthScheme is set to authProprietary (2), then the authorization token will not be generated by the component. Look at the configuration file for the component being used to find more information about manually setting this token.

If AuthScheme is set to authNtlm (4), NTLM authentication will be used.

For security reasons, setting this field will clear the values of User and Password.

AutoDetect
bool
Default: False

Whether to automatically detect and use proxy system settings, if available. The default value is false.

Password
string
Default: ""

A password if authentication is to be used for the proxy.

If AuthScheme is set to Basic Authentication, the User and Password fields are Base64 encoded and the proxy authentication token will be generated in the form Basic [encoded-user-password].

If AuthScheme is set to Digest Authentication, the User and Password fields are used to respond to the Digest Authentication challenge from the server.

If AuthScheme is set to NTLM Authentication, the User and Password fields are used to authenticate through NTLM negotiation.

Port
int
Default: 80

The Transmission Control Protocol (TCP) port for the proxy Server (default 80). See the description of the Server field for details.

Server
string
Default: ""

If a proxy Server is given, then the HTTP request is sent to the proxy instead of the server otherwise specified.

If the Server field is set to a domain name, a DNS request is initiated. Upon successful termination of the request, the Server field is set to the corresponding address. If the search is not successful, an error is returned.

SSL
ProxySSLTypes
Default: 0

When to use a Secure Sockets Layer (SSL) for the connection to the proxy. The applicable values are as follows:


psAutomatic (0)	Default setting. If the URL is an `https` URL, the component will use the `psTunnel` option. If the URL is an `http` URL, the component will use the `psNever` option.
psAlways (1)	The connection is always SSL-enabled.
psNever (2)	The connection is not SSL-enabled.
psTunnel (3)	The connection is made through a tunneling (HTTP) proxy.

User
string
Default: ""

A username if authentication is to be used for the proxy.

If AuthScheme is set to Basic Authentication, the User and Password fields are Base64 encoded and the proxy authentication token will be generated in the form Basic [encoded-user-password].

If AuthScheme is set to Digest Authentication, the User and Password fields are used to respond to the Digest Authentication challenge from the server.

If AuthScheme is set to NTLM Authentication, the User and Password fields are used to authenticate through NTLM negotiation.

Constructors

C#
VB.NET

public Proxy();

Public Proxy()

C#
VB.NET

public Proxy(string server, int port);

Public Proxy(ByVal Server As String, ByVal Port As Integer)

C#
VB.NET

public Proxy(string server, int port, string user, string password);

Public Proxy(ByVal Server As String, ByVal Port As Integer, ByVal User As String, ByVal Password As String)

Config Settings (ExpressCheckout Component)

The component accepts one or more of the following configuration settings. Configuration settings are similar in functionality to properties, but they are rarely used. In order to avoid "polluting" the property namespace of the component, access to these internal properties is provided through the Config method.

ExpressCheckout Config Settings

AuthAccessToken: The access token returned by the PayPal Permission Service's GetAccessToken operation.

After a call to the PayPal Permission Service's GetAccessToken operation, this configuration option will contain the returned Access Token. This value is required to create the PayPal Permissions Service authentication header.

AuthApplicationId: The Application ID for the application making a request to the PayPal Permissions Service.

The Application ID provided by PayPal for your application. In the sandbox environment the static value "APP-80W284485P519543T" can be used.

AuthAuthHeader: The PayPal Permissions Service authentication header.

After specifying a valid AuthAccessToken and AuthTokenSecret, this configuration option will contain the authentication header granting you permissions to perform the designated operations on behalf of the granting account.

AuthAuthHeaderName: The name of the authentication header generated with the PayPal Permissions Service.

This configuration option should be set to correct header name for the PayPal Permission Service's authentication header for the desired operation. This value will usually be one of the following:


	X-PP-AUTHORIZATION (default)
	X-PAYPAL-AUTHORIZATION

AuthCallbackURL: The URL where PayPal will post the RequestToken and VerificationCode.

The URL that PayPal will post the RequestToken and VerificationCode to in response to a RequestPermissions request using the PayPal Permissions Service.

AuthorizationId: The authorization identification number of the last payment.

This value is returned in response to a Capture or VoidTransaction request. It should match the value sent in the AuthorizationId parameter of the Capture or VoidTransaction method. This config setting is read-only.

AuthorizeOrderPayment: Authorize an order payment.

This config will authorize a payment for a transaction that uses the order payment action. When used, OrderTotal should be set to the amount of the payment being authorized and TransactionId should be set to the transaction ID returned when confirming the order authorization using CheckoutPayment.

AuthorizingAccount: Authorizing Account Email Address for third-party API access.

The email address of a third party for whom you are sending requests to the PayPal Web Services API. Your API username must have been granted permission by this third party in order to make a PayPal API request.

AuthPassword: API Password for the PayPal Permissions Service.

The API password that is to be used when submitting requests to the PayPal Permissions Service.

AuthRequestToken: The request token used to obtain an Access Token and Token Secret from the PayPal Permissions Service.

After a call to the RequestPermissions operation, PayPal will post this value to the AuthCallbackURL. The value posted back to the AuthCallbackURL must be set in this configuration option prior to calling the GetAccessToken operation of the PayPal Permissions Service.

AuthRequestURL: The URL for the PayPal Permissions Service operation being requested.

The URL for the PayPal Permissions Service operation that is being requested. Examples are:


Request Permission	https://svcs.sandbox.paypal.com/Permissions/RequestPermissions
Get Access Token	https://svcs.sandbox.paypal.com/Permissions/GetAccessToken

AuthScope: Scope of permissions to be requested for PayPal Permissions Service.

The type of permissions that you are requesting from from a PayPal user. The following is an example of the types of permissions that can be requested, but this is not a complete list:


	EXPRESS_CHECKOUT
	DIRECT_PAYMENT
	SETTLEMENT_CONSOLIDATION
	SETTLEMENT_REPORTING
	AUTH_CAPTURE
	MOBILE_CHECKOUT
	BILLING_AGREEMENT
	REFERENCE_TRANSACTION
	AIR_TRAVEL
	MASS_PAY
	TRANSACTION_DETAILS
	TRANSACTION_SEARCH
	RECURRING_PAYMENTS
	ACCOUNT_BALANCE
	ENCRYPTED_WEBSITE_PAYMENTS
	REFUND
	NON_REFERENCED_CREDIT
	BUTTON_MANAGER
	ACCESS_BASIC_PERSONAL_DATA
	ACCESS_ADVANCED_PERSONAL_DATA
	MANAGE_PENDING_TRANSACTION_STATUS
	"RECURRING_PAYMENT_REPORT
	EXTENDED_PRO_PROCESSING_REPORT
	EXCEPTION_PROCESSING_REPORT
	ACCOUNT_MANAGEMENT_PERMISSION
	INVOICING

AuthSignature: API Signature for the PayPal Permissions Service.

The API signature that is to be used when submitting requests to the PayPal Permissions Service.

AuthTokenSecret: The token secret returned by the PayPal Permission Service's GetAccessToken operation.

After a call to the PayPal Permission Service's GetAccessToken operation, this configuration option will contain the returned Token Secret. This value is required to create the PayPal Permissions Service authentication header.

AuthUsername: API Username for the PayPal Permissions Service.

The API username that is to be used when submitting requests to the PayPal Permissions Service.

AuthVerificationCode: The verification code used to obtain an Access Token and Token Secret from the PayPal Permissions Service.

Build: Returns the Build number contained in the response.

Contains the build number returned in the response from Paypal. This config setting is read-only.

ButtonSource: Additional information for identifying transactions.

The "BN" identification code given to you by your PayPal Account Manager for identifying transactions.

CurrencyCode: Sets the type of currency in which you are accepting payments.

This configuration setting is used to determine the type of currency to be used for a payment. The default is "USD".

Custom: A free-form field for your own use.

This property can be anything, such as a tracking number or other value you want PayPal to return in the response.

HandlingTotal: Total handling costs for this order.

IsPartialCapture: Indicates if this capture is for the full amount of payment you authorized.

If this configuration setting is set to False (default), and the Amount of the Capture is less than the originally authorized amount, any remaining amount of the original transaction is automatically voided.

ItemTotal: Sum of cost of all items in this order.

If not specified, this value will be calculated for you by the component based on the ItemAmount and ItemQuantity specified.

LocaleCode: Locale of pages displayed by PayPal during Express Checkout.

The following two-character country codes are supported by PayPal:

Any other value (or no value) will default the pages to the US locale.

PaymentProtectionEligibility: If the PaymentPendingReason is PaymentReview this will return the protection in force for the transaction.

This value is only applicable when the PendingReason is "PaymentReview". It indicates the kind of protection in place for the transaction. Possible values are:


Eligible	Seller is protected by PayPal's Seller Protection Policy for Unauthorized Payments and Item Not Received
PartiallyEligible	Seller is protected by PayPal's Seller Protection Policy for Item Not Received.
Ineligible	Seller is not protected under the Seller Protection Policy

RawRequest: Returns the raw request sent to the server.

Contains the full request that was sent to PayPal in the previous call.

RawResponse: Returns the full response.

This configuration setting will return the entire previous response as returned from the PayPal server.

ResponseVersion: Returns the Version number contained in the response.

The server may return a different version number than was sent to it. This config setting is available for informational purposes, and is read-only.

ShipToCity: Payer's shipping city.