Makerlog

Sign In Sign Up

How makers stay productive

Join the community and use our helpful tools to stay focused and take your product to the next level. Take charge of your product development today with Makerlog!

Ethan

August 21, 2018 at 12:37 PM

Report Task We won't let Ethan know who reported this.

GET RID OF UNSAFE CALLBACKS IN createUser FUNCTION!!! (could have exposed data to unauthorized people)

1 Like 9 Comments

Ethan Author

August 22, 2018 at 6:59 AM

… from Stripe

Ethan Author

August 22, 2018 at 7:00 AM

Ah my keyboard is stuffing up 😅

Sergio Mattei

August 21, 2018 at 2:47 PM

o.o

Ethan Author

August 22, 2018 at 7:02 AM

Lemme try that again

Sergio Mattei

August 22, 2018 at 2:08 PM

dang.

Ethan Author

August 22, 2018 at 7:03 AM

But it's all good, I checked the rest of the codebase for other similar issues and didn't find any.

Ethan Author

August 22, 2018 at 6:59 AM

Luckily it wasn't in production yet. Some of the callbacks included objects

Ethan Author

August 22, 2018 at 7:02 AM

Luckily it wasn't in production yet. Some of the callbacks included objects from Stripe. Because you can call the function without authorization, someone could have gotten a user's Stripe info based on their email address. Not credit cards, but details about their subscriptions.

Sergio Mattei

August 22, 2018 at 2:08 PM

glad you patched it up though!

Please sign in to leave a comment.

Welcome to the new Makerlog!

There is still quite a bit of work to be done yet, I apologize if you expected more.

Our goal is to get it out as quickly as possible and iterate from there.

Don't hesitate to let us know if you have any constructive criticism by clicking the feedback button next to your notifications bell.

Thanks for being a part of Makerlog!

— Josh Manders

Makerlog Chat

Share what you're working on, get feedback, ask for help.

Leaderboard

This Week This Month This Year

Darren Travel

48

nick vorhes

95

Fraser Millban...

45