2 posts / 0 new
Last post
punchhapi4936
How to secure credentials on client ?

If we have apps running on iOS and Android, we will have to take care of them separately. However, if the credentials could be stored on the server and then pass tokenized information to the clients, it could be taken care of in a singular way. That would ease the process of integration and payment.

Also, is it possible that the credentials API key and API secret have limited access and be used only for payment and not for refund ?


rohitrajagopal3538
Re: How to secure credentials on client ?

Hello,

Thank you for the feedback. We will consider it as a feature for future releases. For now, here are some useful references:

Securing APIKey, token constant values in IOS app : http://stackoverflow.com/questions/9448632/best-practices-for-ios-applications-security?rq=1

Securing APIKey, token constant values in Android app : http://stackoverflow.com/questions/14570989/best-practice-for-storing-private-api-keys-in-android

The api key and secret are common for payment and refund.

Regards,

Payeezy team.