sovehue-oauth-keys | Stripe Developers | Page 1

gaunt dawn Nov 4, 2021, 3:36 PM

#

Yes, this is something that changed recently

#

but you should have received an email about this, do you know if you did?

low copper Nov 4, 2021, 3:40 PM

#

Ok, good to know. I don't see it in the changelog?

gaunt dawn Nov 4, 2021, 3:40 PM

#

It was communicated directly to affected platforms (or was meant to be)

low copper Nov 4, 2021, 3:41 PM

#

Not that I can see from a quick email search here

#

But let's worry about that later. Can I modify the restricted key permissions or do I need to use my standard secret key for oauth? (I use the restricted key for all account API requests)

gaunt dawn Nov 4, 2021, 3:47 PM

#

This needs to be a secret key - you can't currently use a restricted key for the token endpoint

low copper Nov 4, 2021, 3:53 PM

#

Ok, thanks. I will create a new secret key for our oauth flow.

#

Is this change documented somewhere?

gaunt dawn Nov 4, 2021, 3:55 PM

#

Not beyond the email you should have received, no. If you share your account id (acct_1234) I can have the team look at why that didnt get to you

low copper Nov 4, 2021, 3:59 PM

#

gaunt dawn Not beyond the email you should have received, no. If you share your account id ...

ok, sent in DM

gaunt dawn Nov 4, 2021, 4:01 PM

#

I didn't get that, but you can share the account id safely, its not usable by anyone without a key

#sovehue-oauth-keys