So the person interacting with Quickbase would be picking an item and then opting to make a purchase of said item using Paypal? So the payment goes to you from that person? Is that accurate?
If that's the case then you can probably get away with a codepage only - since you're not actually authenticating with your account via a server. In theory (just spitballing) you could have the user in question authenticate themselves to Paypal through a pop up window or leverage their google account or something in that vein - and then send you that payment / process the purchase. Still a significant development effort - but if this is correct then it's just that person authenticating themselves through the browser and you're holding the token short term which makes it more doable.
------------------------------
Chayce Duncan
------------------------------