You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When using a payment integration like Stripe JS for taking credit card details, ensure that any HTML forms that contain the credit card number fields do not submit those fields to your server (they should only be submitted to Stripe via JS on the client). This can be done by not giving the <input> fields a name attribute.
<!-- Bad, this will submit the card number to your server --><inputtype="text" data-stripe="number" name="card_number"><!-- OK, depending on your JS, this is less likely to submit the card number to your server, still manually check as described below --><inputtype="text" data-stripe="number">
View the generated HTML source to check and try submitting the form with data and check your server logs to ensure that the credit card data is not sent to your server.
The text was updated successfully, but these errors were encountered:
When using a payment integration like Stripe JS for taking credit card details, ensure that any HTML forms that contain the credit card number fields do not submit those fields to your server (they should only be submitted to Stripe via JS on the client). This can be done by not giving the
<input>
fields aname
attribute.View the generated HTML source to check and try submitting the form with data and check your server logs to ensure that the credit card data is not sent to your server.
The text was updated successfully, but these errors were encountered: