robert_iOS_EVcharge | Stripe Developers | Page 1

vapid muskBOT Oct 20, 2022, 5:23 PM

#

shut ridge Oct 20, 2022, 5:24 PM

#

You can use AWS secret key manager or add them in an .env file

charred linden Oct 20, 2022, 5:25 PM

#

I am implementing for iOS. They are secured fine on the server already.

#

I'd rather not include any keys inside my app bundle.

shut ridge Oct 20, 2022, 5:26 PM

#

In general the keys do not lie around in the code.

charred linden Oct 20, 2022, 5:29 PM

#

I have no idea what you mean. that is not helpful.

#

An iOS or Android app could be disassembled and someone could get the key.

shut ridge Oct 20, 2022, 5:33 PM

#

If you put the keys hard in the code yes.

swift portal Oct 20, 2022, 5:34 PM

#

Hello! Stripe publishable keys are designed to be public, and are safe to share.

#

Stripe secret keys are the ones which need to be kept safe and not included in an app.

charred linden Oct 20, 2022, 5:34 PM

#

Ok, so when we go to prod I can include it in the bundle for iOS/Android and get the paymentintent/client secret from the server.

#

Thank you.

#robert_iOS_EVcharge