Would You Use PayPal to Sign Into Accounts on Other Websites?

To answer in short, no, I probably would not.

The same way I don't use facebook to log in to other sites when they ask me to.

However, I suspect the majority would. At least, I suspect the majority of facebookers log in to other sites with their facebook accounts.

But for me, it's just too much connectivity.

i only use my dummy FB account for all those. maybe its secure, but all those seems scary to me. I don't think the scammers have figured out how to exploit them yet, but i can't help but think they will.

we always give advice to only login to paypal.com and to never click links to get to paypal.

I just don't like that stuff. Seems like it would be easy to miss a link to paypaI.com instead of paypal.com. Then your info is in the hand of who knows who.

Hello,

It really depends.

What it really means is a cross-site/service authentication. Basically you are proving your identity to another service.

If we take Paypal and Digibilly, basically you prove your e-identity to digibilly service using paypal.

Now, Paypal is respected company, so normally the way it should be in place is as follows : there is no actual personal data that transered over internet. When you are authenticated to Paypal there is a security token generated which is then passed to another service as Digibilly. Everything is secure and you actually prove to Digibilly that you are a trusted customer with identified credentials. Digibilly respects Paypal, so its sais, hey Paypal trusts this customer and the customer is already authenticated, so I'll just get the token and grant access to my service. that's all.

Another way to say it, it is a Single Signon solution. Yes, very practical for users, yes there are security issues...

So, now if you got a real business, there should be no problem doing this. If you have 25 e-identities with doutables products, than stick to you "anonymous" stuff ... because if you are banned, you might be in trouble.

It would be an issue with me. There is no money tied to my Facebook account, but there is with Paypal. I would never log into a non-Paypal website to get access to it using my Paypal account. I have no way of verifying what they're doing with it.

RoD

Hello kindsvater,

I wouldn't have a problem to use paypal as a login gateway for e-commerce sites. It makes sense. It's like facebook login for sites that are social or have other niche. Chances are you are going to buy something if you are login in an e-commerce so why not have all the shipping info and payment info in hand already? You wouldn't have to enter all your info everytime you want to buy something. It works

It should be fine as long as your logging into paypal directly from that website.

It does make more sense now that you've explained it.

I didn't even realize it was your system.

I don't think Mike's out to scam us.

I'm with rod & j on this also.

I don't like all the pass through authentication, I'm sure its secure or it would'nt be allowed but it is tracking a usage pattern and profiling your usage which is what I object to

One everyone gets used to clicking on the PayPal sign in button, it will make phishing all that much easier.

As a seller, I wouldn't use it because of the perceived security issue. (Thinking of affiliates)

I haven't seen other sites using it and I think that's for a reason.

Garrie

No - Thats crazy

Facebook is a nothing trash account of mine. It gets hacked... it sucks and is annoying... but I'm not compromised at all. Paypal gets hacked... it's a BIG deal. One costs me real tangible money... the other doesn't. So to answer the question: No, I'd never login with Paypal as the login gateway.

I'm with fin on this. Its one thing to sign in with Facebook and another to sign in with Paypal. They have my bank information.

Facebook, yes.

Paypal, NO.

I would never allow a site to access my financial information.

Even after Bike Mike explained it, people still don't get it. From a developers point, that kinda says something.

When I saw your headline, my gut instinct was, "Hell no!!"

Then I saw what you were talking about...

LOL

The only reason your skin crawled when you saw this is because you don't understand the technology at work behind the scenes.

You are not giving your PayPal login credentials to DigiBilly. You are logging into PayPal, and giving PayPal permission to complete certain tasks on your behalf through the DigiBilly platform.

When you go through that process, you are taken to PayPal to login and give permissions, then PayPal will send a security key to DigiBilly that has been customized specifically for you to be used exclusively by DigiBilly.

This is a non-issue from a PayPal security standpoint, unless you don't like the nature of the permissions you are being asked to give to DigiBilly.

As far as having one login across multiple platforms, it is a really nice feature I believe.

It appears as the risk strategy for me because if anything gets messed up there are chances that your Paypal account gets cancelled.
I just prefer to have the login on the website only.

The thing that some people may not be realizing here is that in order to sell other people's products through the affiliate program at Warrior Plus or JV Zoo, we had to click that PayPal Permissions button to give each permission to transact refunds on our behalf.

The only thing that DigiBilly seems to be doing different is getting your permission key from PayPal in lieu of creating unique login credentials for DigiBilly. Otherwise, we are talking apples and apples here.

i guess my only issue is not really with paypal, but rather with how easily this could be faked.

we have all seen the fake paypal emails leading to fake paypal sites. what if the link on the site is not to Paypal, but rather to paypalauthentication.com or some other rogue copycat site.

you click the link and get taken to a rogue site that looks just like paypal and they make the process look perfect. but you have just given your info away.

If that happens to your paypal account, that is much worse than your FB account.

in my opinion it breaks one of the cardinal rules of logging in to PP... ONLY login when you type the paypal in the address bar....never follow a link to paypal.

the spoofs are just too damn easy to miss.

BTW, my concerns are not with digibilly, Big Mike, or even PP. rather the idea that this could be faked.

Not really.

What if my PayPal is banned (lose billy data)?

What if I want to have an employee list the products for sale but dont want them to have PP access?

What if I am working in a foreign country, is PP going to flag that when I login because I forgot to tell them?

etc.

There are other reasons to want a seperate login.

-g

Big Mike actually brings up a great point about clicking on "buy buttons". To be perfectly honest, I have never given that much thought at all. I will now though.

Someone could sell a $2 report and have a fake payment login. They miss out on the $2 from the sale, but get my PP details.

This internet thingy is a very scary place.

yea, I have been online forever and I am sure i subconsciously notice more than i realize when it comes to that stuff.

But i do think I let my gaurd down a bit when i click a buy now button and hit the standard paypal "login to complete your purchase page".

I know I am not as "on gaurd" during those times as when ordering from a new merchant where i double check the security lock and http(s) stuff.

I mean there really is no way to make sure your on a legit PP login page when you click a buy now button without just making double sure of the url. It just never occurred to me that people would go that route.

I wonder if the browsers alert to that stuff at all. I doubt they do or maybe even that they could very easily.

I know several ESP provide warnings about possible email phishing scams when non-"paypal" links are used in a traditional phishing email.

Doesnt matter why. Your system doesnt give me the ability.

So paypal bans someone and that banned person will still be able to login to your system using PayPal? (There are other reasons to login besides to sell/promote. )
Its not just a user issue. Its a billy issue because the tied it in w/ PP.
How is this making it more secure? Its loging in. That doesnt secure the rest of the code on your site.

Personally, I wont use it. Maybe others will.

Yep. The technology is actually really solid, and the risk is far lower than it would be if you had lots of accounts.

With so many PayPal problems and account closings reported by so many,
some key questions come to mind about this comapny -

* Exactly what is PayPal's business and designation
* Who issued their operating license and as what business
* What does it allow/not allow
* Under what state and federal laws does it operate in the US
* Which regulatory agencies monitor activities and report on same
* Have they paid fines, claims and compensation for their deeds

many Warriors and marketers would benefit from accurate information form experts - thanks.