I am creating an IPNhandler which will handle all subscription requests to my site from the following link;
I am looking to create a tester aspx page for invoking the handler (i.e. from my admin I will have a page where I will send the page the variables to mimic an IPN).
I have the following questions hopefully someone can clarify;
1. From looking at the link obviously there are many fields some of which seem to be unique to the IPNs sent. Should I capture and store all information or just some relevant fields and a dump of the entire querystring?
2. Could you let me know if I am missing any steps out here.
a. When I create my listener obviously I need to verify it comes from paypal (which I will simply ignore for my test). I verify by appending '&cmd=_notify-validate' and returning the string back to paypal.
b. I then need to verify that the IPN is meant for myself using the receiver_email field. (or should I use the receiver_id??).
c. If it is verfied and meant for myself I will then process the IPN And save to my database. (should I link to my table using the payer_id as the unique reference?).
4. Can anyone recommend how I should handle non-verified request? i.e. should I hold a seperate invalid table for storing these requests?
5. Can anyone recommend how I should handle request that are verified but not for myself (i.e. the receive_email is not mine).
Thanks for all the help in advance.