Set up accounts and environment

1. Sign up for a developer account. On successful signup, PayPal automatically creates your sandbox environment. The sandbox environment is a test environment that helps you mimic real-world transactions. By default, the environment includes a business and personal account. When testing your app, you can use the personal account to create disputes and the business account to handle them. You can create additional business and personal accounts.
2. Set up the sandbox environment:
   1. Go to your PayPal developer account and toggle to Sandbox.
   2. Go to Apps & Credentials and select Create App.
   3. Enter your app name, select Type as Merchant, select the sandbox business account to test your app, and select Create App. The app details page is displayed.
   4. Go to Features > Other features. By default, the Customer disputes checkbox is selected. If not, select it.
   5. Optional: Configure a webhook listener for the app and subscribe to events:
      1. In the app details page, go to Sandbox Webhooks.
      2. Select Add Webhook.
      3. Enter a Webhook URL (the server endpoint where notifications from PayPal are sent), select the events the app wants to subscribe to, and select Save.
      4. The webhook listener is successfully configured, and a Webhook ID is displayed. You can store the ID and use it in your app code to verify the source sending messages to your listener. For more information on webhooks, see Webhooks guide. For the list of disputes events that the app can subscribe to, see Webhook reference.
3. Retrieve sandbox app credentials: To integrate and test the Disputes API, you need the sandbox credentials (Client ID and Client secret) for your app. To retrieve them, see Get your client ID and client secret.
4. Retrieve sandbox account credentials: When you test your disputes integration end-to-end, you log in to your PayPal personal account, create a dispute, handle it through your PayPal business account, and check the dispute status in both accounts. You need sandbox login credentials for both accounts. For information on how to get these from your developer account, see Get sandbox account credentials.
5. Set up the development environment. This involves building your server, installing dependencies, verifying configuration files that the package managers use, and setting up the environment variables.

​

Set up buyer-side credentials

1. Configure your REST app.
2. Get buyer consent for your sandbox personal account.
3. Use PayPal-Auth-Assertion request header when you make API calls to create disputes or change dispute reasons as a buyer.

​

Configure your REST app

​

Get buyer consent

1. Create a Log in with PayPal button:
   1. Complete the steps to Enable Log in with PayPal in your PayPal developer account.
   2. Complete the steps to Generate button. When you do this, you can configure the following options:
      • application ID (client ID) as your app’s client ID.
      • auth end point as sandbox.
      • scope as openid.
      • return URL should match the one configured for your REST app in the previous step.
2. Run your application.
3. Select Log in with PayPal on your application.
4. Log in with your sandbox personal account credentials as a buyer and approve the consent.

​

Use PayPal-Auth-Assertion request header

Generate JWT for PayPal-Auth-Assertion

• CLIENT_ID with your app’s client ID.
• BUYER_EMAIL with the buyer’s email address.

<span id='cwppButton'></span>
<html>
  <script>
    function base64url(source) {
      var encodedSource = btoa(source);
      encodedSource = encodedSource.replace(/=+$/, '');
      encodedSource = encodedSource.replace(/\+/g, '-');
      encodedSource = encodedSource.replace(/\//g, '-');
      return encodedSource;
    }
    function generateJWT() {
      var header = {"alg": "none", "typ": "JWT"};
      var data = {"iss":"CLIENT_ID", "email" : "BUYER_EMAIL" };
      document.write(base64url(JSON.stringify(header)) + "." +
      base64url(JSON.stringify(data)) + ".");
    }
  </script>
  <body onload="generateJWT()"/>
</html>

1. Log in to your PayPal business account at the PayPal Developer Dashboard.
2. Switch to the Live environment.
3. Go to Apps & Credentials and create a new app or select an existing app.
4. Go to Features > Other features. By default, the Customer disputes checkbox is selected. If not, select it.
5. Optional: Configure a webhook listener for the app and subscribe to events:
   1. On the app details page, go to Live Webhooks.
   2. Select Add Webhook.
   3. Enter a Webhook URL (the server endpoint where notifications from PayPal are sent), select the events the app wants to subscribe to, and select Save.
   4. The webhook listener is successfully configured, and a Webhook ID is displayed. You can store the ID and use it in your app code to verify the source sending messages to your listener.
   For more information on webhooks, see Webhooks guide. For the list of dispute events that the app can subscribe to, see Webhook reference.
6. Copy your Client ID and Secret for the live app.