How Secure is this API #38
Unanswered
MuawizChaudhary
asked this question in
Q&A
Replies: 1 comment 5 replies
-
I don't think that's a good idea to have other users input their username and password on a third party website, unless it's only for your personal use. It's your responsibility to make your backend secure and your users to trust the service, and I don't recommend doing it in the first place. As far as the API wrapper, it makes HTTPS requests directly to the venmo phone app API, thus encrypted. You can see the whole authentication process here: https://github.com/mmohades/Venmo/blob/master/venmo_api/apis/auth_api.py |
Beta Was this translation helpful? Give feedback.
5 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi,
How secure do you believe this API is, if I wanted to use it in the backend of a website using Flask hosted on Heroku?
One thing I am concerned about is having users of the website passing in their password and username to my website. Ideally, the Venmo oauth would take care of that. I don't believe that happens here tho.
Is there a possibility to make this API more secure?
Beta Was this translation helpful? Give feedback.
All reactions