Home arrow PHP arrow Page 2 - Quick E-Commerce with PHP and PayPal

Quick E-Commerce with PHP and PayPal

This article gives a great insight into developing a small website that incorporates your own shopping cart or a third-party cart in conjunction with PayPal.

Author Info:
By: Peter Lavin
Rating: 4 stars4 stars4 stars4 stars4 stars / 208
August 29, 2003
  1. · Quick E-Commerce with PHP and PayPal
  2. · Article
  3. · Conclusion

print this article

Quick E-Commerce with PHP and PayPal - Article
(Page 2 of 3 )

When using a third party shopping cart with PayPal you have only two options. You can pass your entire shopping cart to PayPal and show detailed purchase information or you can pass in only a total. You cannot pass both your shopping cart items and detailed customer information. Passing in the contents of your cart means that your customer will have to duplicate information already entered into your database.

Given the precariousness of retail e-commerce transactions this is not a viable option. For this reason, we have chosen to pass in summary information. Additionally, capturing customer information in our own database rather than one that resides at PayPal makes better business sense. It will be more easily accessible and more easily manipulated.

The only minor downside to this option is that your customers will not receive details of their order with their PayPal invoice. However, this can easily be remedied with an e-mail from your site.

Let’s assume that our customer is viewing order details and is about to complete his purchase. We present him with a confirmation screen such as the following:

The remainder of this article discusses what happens when the “Place” button is pressed. We are going to invoke a page, let’s call it “paypal.php”, and three values will be passed in a query string. These are, the number of items purchased, the total cost and the unique identifier for our current customer. The dynamically created code to invoke this page might well look like this:


This is all the information we need to complete the transaction.
Collecting the Information

This section deals in detail with all the code in our “paypal.php” page. Explanatory comments have been added. Discussion will be broken up into three parts. The first part will deal with hard-coded information that doesn’t change, next the information passed in the query string is retrieved and finally the customer data  from our MySQL database.

This page will not be visible to the user. It includes a form but every input type on the page is “hidden”. This page will be invoked after the user has reviewed and confirmed his order on your website.  Any information needed for order fulfillment or follow-up has already been captured to the database and presented to the user. This page merely consolidates all the information required by PayPal and automatically submits it using JavaScript.
Hard-Coded Information

A number of the parameters needed by PayPal can be hard-coded right into your page. For example, the “action” attribute of the “form” is the page at PayPal that is set up to accept submission of your order. At the time of writing, it is as follows:

<form name= "order" action="
https://www.paypal.com/cgi-bin/webscr" method="post">

Since we wish to send detailed customer information, the input control with the name attribute set to “cmd” must have a value of “_ext-enter”.

<input type="hidden" name="cmd" value="_ext-enter"><br>

The next line is also a requirement for using extended values. Its value must be set to “_xclick”. In this way we will be able to pass our customer information to PayPal and not require that it be re-entered.

<input type="hidden" name="redirect_cmd" value="_xclick"><br>

After submission to PayPal, the user is returned to your site and the success or failure of the transaction is confirmed. This will be handled in a page called “notify.php”, but feel free to name it whatever you like. A query string called “status” will be examined in order to output an appropriate message to the user.

<input type="hidden" name="return"
  value = "
http://<your site>/notify.php?status=T"><br>
<input type="hidden" name="cancel_return"
value = "
http://<your site>/notify.php?status=F"><br>

Enter the appropriate values for the next set of items. Remember, the value of the input “business” will be the same as the e-mail address of your Paypal account. Likewise with “item_name” and “shipping”. The first shipping value represents the cost of shipping the first item and the second the cost of each additional item.

<input type="hidden" name="business" value ="mybusiness@myisp.com">
<input type="hidden" name="item_name" value="your product">
<input type="hidden" name="shipping" value="5.00">
<input type="hidden" name="shipping2" value="5.00">

If handling shipping costs in this way does not meet your requirements PayPal provides other ways of doing this.

Information Retrieved from Query String

As shown in our graphic above, detailed order information was presented to the user in the previous page and will not be re-presented at the PayPal site. Paypal still needs summary information in order to bill the correct amount. This will now be retrieved from the query string passed to this page. The number of items is also retrieved as this will affect shipping costs.

//get values from previous page
$quantity = $HTTP_GET_VARS['quantity'];
$total = $HTTP_GET_VARS['total'];
echo "<input type=\"hidden\" name=\"quantity\" value=\"$quantity\"><br>\n";
echo "<input type=\"hidden\" name=\"amount\" value=\"$total\"><br>\n";

The “customerid” parameter was also passed in to this page but will be retrieved when needed to create a database query.
Information From the Database

First a note about the database. Assume a customer table with the following structure:

Field                                  Type

id                                       int(11)                     Primary Key
email                                 varchar(50)
lastname                           varchar(50)
firstname                          varchar(50)
streetaddress1                 varchar(50)
streetaddress2                 varchar(50)
city                                    varchar(50)
stateprov                          varchar(50)
pcode                                varchar(50)
country                              varchar(50)
password                          varchar(50)
dateadded                        timestamp(14)

The customer information needs to be retrieved from the database. Let’s create a connection and the SQL query to retrieve the information we wish to pass to PayPal.

//include database password information etc.
$hostname = “myhost.com”;
$username = “user”;
$password = “password”;
if(!($link = mysql_connect($hostname, $username,$password)))
 die("Could not connect to database.");
$databasename = “mydatabase”;
  die("Could not open table.");

Retrieve the information from the database using the primary key.

//now get customer info from database
$customerid = $HTTP_GET_VARS['id'];
$strsql="SELECT email, firstname, lastname, streetaddress1, ".
 "streetaddress2, city, stateprov, pcode FROM ".
 "tblcustomer WHERE id = '$customerid'";
if(!($rs= mysql_query($strsql, $link)))
  die("Could not open table.");
//only one row should be returned
$row = @ mysql_fetch_array($rs);

The form is now completed with the information retrieved from the database.

// now complete the form
echo "<input type=\"hidden\" name=\"email\" value=\"$row[email]\"><br>\n";
echo "<input type=\"hidden\" name=\"first_name\" value=\"$row[firstname]\"><br>\n";
echo "<input type=\"hidden\" name=\"last_name\" value=\"$row[lastname]\"><br>\n";
echo "<input type=\"hidden\" name=\"address1\" 
value = \"$row[streetaddress1]\"><br>\n";
echo "<input type=\"hidden\" name=\"address2\" value =
echo "<input type=\"hidden\" name=\"city\" value=\"$row[city]\"><br>\n";
echo "<input type=\"hidden\" name=\"state\" value=\"$row[stateprov]\"><br>\n";
echo "<input type=\"hidden\" name=\"zip\" value=\"$row[pcode]\"><br>\n";
<!-- end of form  -->

You might have noticed that there is no “submit” button associated with our “paypal.php” page. Because our customer has already confirmed his order, code is used to submit this form to PayPal. The following JavaScript code will execute after the page has loaded and your customer will not see the “paypal.php” page at all.

<script type="text/javascript" language="JavaScript">
 //submit form

Your customer will now be looking at a summary of his order on the PayPal site. All personal information will already be filled in.

blog comments powered by Disqus

- Removing Singletons in PHP
- Singletons in PHP
- Implement Facebook Javascript SDK with PHP
- Making Usage Statistics in PHP
- Installing PHP under Windows: Further Config...
- File Version Management in PHP
- Statistical View of Data in a Clustered Bar ...
- Creating a Multi-File Upload Script in PHP
- Executing Microsoft SQL Server Stored Proced...
- Code 10x More Efficiently Using Data Access ...
- A Few Tips for Speeding Up PHP Code
- The Modular Web Page
- Quick E-Commerce with PHP and PayPal
- Regression Testing With JMeter
- Building an Iterator with PHP

Watch our Tech Videos 
Dev Articles Forums 
 RSS  Articles
 RSS  Forums
 RSS  All Feeds
Write For Us 
Weekly Newsletter
Developer Updates  
Free Website Content 
Contact Us 
Site Map 
Privacy Policy 

Developer Shed Affiliates


© 2003-2019 by Developer Shed. All rights reserved. DS Cluster - Follow our Sitemap
Popular Web Development Topics
All Web Development Tutorials