Redirect your buyer to PPOpenIdSession::getAuthorizationUrl($redirectUri, array('openid', 'address')); to obtain authorization. The second argument is the list of access privileges that you want from the buyer.
Capture the authorization code that is available as a query parameter (code) in the redirect url
Exchange the authorization code for a access token, refresh token, id token combo