The situation is: Payment is done on one server, and upon completion, it is notified to any other server securely What I am trying to do is really similar to an informed email of the payment service. To wit. PayPal receives payments, and then indicates the original through a long URL.
Does anyone verify the data being passed to any useful library? Any link to start me?
Thank you!
A good way to ensure that the URL has not been generated by an unauthorized party or in any way Has been tampered with. There is a simple tutorial.
If there is any sensitive information in the URL (or the content of the return), then you also want to ensure that the recipient server is SSL enabled.
> And for another layer of security, you can work hard to reject the connection to the recipient server not connected to your known sender (IS) 's IP address (SAS).
Comments
Post a Comment