Oauth connect

  • Titi

    (@thibotus01)


    2 years, 9 months ago

    Hi,

    I’m testing your plugin now.

    For best pratice you should use Oauth connect method to connect your plugin with a Stripe account.

    And avoid requesting API keys.

    Thank you

    • This topic was modified 2 years, 9 months ago by Titi.
Viewing 1 replies (of 1 total)
  • Plugin Author egene

    (@egene)

    2 years, 9 months ago

    As far as I know, that would require me to create what Stripe calls a “platform” and administer all Stripe API calls through my own code on my own server. If this server ever gets hacked or goes out of business, all users of this plugin would be screwed. Or every user of this plugin would have to setup and configure a platform with Stripe. In this case if user’s website gets hacked it doesn’t matter whether they used keys or oauth. Either way I don’t see how it would create a better experience for users of this plugin. They can also create a restricted key if they are concerned about excessive permissions. I’ll add a paragraph about that to readme.

    If you are a developer and know how all this works and have experience creating and managing such platforms, contact me at job@netfoxsoftware.com. Maybe there’s something I don’t see and if you’re interested I can pay you some $$$ for consulting and/or development.

    Thanks!

Viewing 1 replies (of 1 total)
  • The topic ‘Oauth connect’ is closed to new replies.