Lets take a look at examples of other processors that provide API services.
Here is an example of Stripe, exactly the same format,
PLAIN TEXT
Code:
curl api.stripe.com/v1/charges \
-u sk_test_BQokikJOvBiI2HlWgH4olfQ2: \
-d amount=400 \
-d currency=usd \
-d "description=Charge for [email protected]" \
-d "source[object]=card" \
-d "source[number]=4242424242424242" \
-d "source[exp_month]=12" \
-d "source[exp_year]=2016" \
-d "source[cvc]=123"
And Bitpay, same format,
PLAIN TEXT
Code:
curl bitpay.com/api/invoice \
-u ApiKey \
-d price=10.00 \
-d currency=USD
CoinsBill Data sanitation is done when the Data is posted via API.
Quote:
Originally Posted by AdultKing
Not only username:password pairs but everything else.
Here's the code to create a new invoice
Email, First Name, Last Name, What Was Purchased, Email Address, Price Paid, Quantity
All in plain text.
There's also no data sanitisation that I can see.
|