You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Isn't this a security issue ?
Stripe api key is displayed in plain text in AppCard.vue : <card class="stripe-card" id="card" :class="{ complete }" stripe="pk_test_8ssZgwB2PiH0ajJksD2gVbsG00u7Y3IDPv" :options="stripeOptions" @change="complete = $event.complete" />
I read the articles explaining how this site is set up but the variable STRIPE_SECRET_KEY used in config.env is only for the backend.
Hi,
Isn't this a security issue ?
Stripe api key is displayed in plain text in AppCard.vue :
<card class="stripe-card" id="card" :class="{ complete }" stripe="pk_test_8ssZgwB2PiH0ajJksD2gVbsG00u7Y3IDPv" :options="stripeOptions" @change="complete = $event.complete" />I read the articles explaining how this site is set up but the variable STRIPE_SECRET_KEY used in config.env is only for the backend.
Also I tried to made a test to purchase an article both with the live demo and locally, each time I ran into a 404 'resource_missing' for https://api.stripe.com/v1/payment_intents/pi_3R5qiIKEwvtXrERu1ClXy68B/confirm
I hope this will help newcomers to not waste time to much time 😉
The text was updated successfully, but these errors were encountered: