vrk18 | Stripe Developers | Page 1

agile lotusBOT Oct 12, 2023, 11:28 PM

#

harsh pollen Oct 12, 2023, 11:28 PM

#

Hello! What do you mean? Client secrets are designed to be shared only with the specific customer making the payment, and should not be shared with anyone else.

coarse dagger Oct 12, 2023, 11:30 PM

#

Can we display it to the customer ?

harsh pollen Oct 12, 2023, 11:31 PM

#

Why would you want to do that?

coarse dagger Oct 12, 2023, 11:36 PM

#

I need to store that in the central state management tool in the front-end, it may or may not expose the key to the public, if it expose to the public will it be any risk ?

harsh pollen Oct 12, 2023, 11:37 PM

#

You should never log or store the client secret.

#

It should only be passed around as needed to complete a transaction at the time the transaction is happening.

#

And it should only ever exist in memory. It should never be written to disk, appear in URLs, etc.

coarse dagger Oct 12, 2023, 11:44 PM

#

Alright, thanks

#vrk18