Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Stripe's API returns the last four digits for a tokenized card so you can display them to users.


It's also intentionally difficult to gain access to the customer's card number on checkout. All the server is allowed to receive is a unique token representing the customer to complete the transaction with. Pretty clever, but I suppose not impossible to workaround.


Thanks for clarifying that. Did not know.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: