PayPal Sandbox to Production Checklist
Step-by-step guide to moving PayPal from sandbox to production safely.
Related Build Kits
Related Launch Checklists
Launch Checklist for Next.js SaaS
A copy-ready launch checklist covering env vars, deployment, SEO basics, analytics and post-launch monitoring.
Payment Integration Checklist (Subscriptions)
A practical checklist for implementing subscriptions safely: webhooks, retries, idempotency, and testing.
Related Playbooks
Add PayPal Subscriptions to Next.js with Cursor
Implementation guide for plans, checkout flow, webhook verification, and safe testing.
Test PayPal Webhooks Locally for a Next.js SaaS
Guide for replaying events locally, verifying signatures, and debugging webhook payload handling.
Build an AI PDF SaaS with Cursor, Next.js, Supabase and PayPal
Practical build guide for shipping an AI PDF product from MVP scope to launch checklist.
Related Cursor Rules
Who this checklist is for
Solo developers integrating PayPal subscriptions moving from sandbox to live.
When to use it
- Right before launching paid features
- After testing thoroughly in sandbox
- When switching from test to real money
Step-by-step checklist
Sandbox verification
- Complete end-to-end sandbox flows tested
- Webhooks verified in sandbox
- Subscription create/cancel/renew flows work
- Error handling tested
- Webhook simulator used to test failures
Production app setup
- Create PayPal Live App in PayPal Developer
- Get Live Client ID and Secret
- Store securely in env vars
- Update NEXT_PUBLIC_PAYPAL_CLIENT_ID
- Update server-side PAYPAL_SECRET
Webhook setup
- Create Live Webhook URL pointing to production
- Subscribe to same events as sandbox
- Verify webhook ID in env vars
- Test live webhook verification code unchanged
- Add IPN URL if needed
Payment flow updates
- Update all URLs to live PayPal SDK to production
- Update cancel and return URLs to production
- Verify all redirects work correctly
- Test subscription plans created in Live
- Plans have correct pricing and intervals
Security & compliance
- Review PayPal Acceptable Use Policy
- Add Terms of Service page
- Add Privacy Policy page
- Add refund policy
- Display PayPal logo correctly
- Show pricing clearly
Final testing
- Do small $1 test transaction with real card
- Verify receipt sent
- Check webhook received
- Confirm database updated
- Test cancel flow works
- Monitor logs for errors
Common mistakes
- Forgetting to update webhook URL to production
- Leaving sandbox credentials in production code
- Not testing real small amount first
- Forgetting subscription plans in Live
- Ignoring webhook verification failures
Verification steps
- Live credentials in env vars, not sandbox
- Webhook shows "Active" in PayPal dashboard
- Small test charge goes through successfully
- Webhook received and processed
- No errors in server logs
- User credits/database updated correctly
Related build kits
- AI PDF SaaS
- Any SaaS with PayPal subscriptions
Related fixes
- PayPal Webhook Not Receiving Events Fix Guide