15Oca
Is it financially safe to use stripe for payment processing with http?
Stripe.com is a service that allows payment processing to be outsourced. In a similar way to Oauth this works by exchanging tokens.
Of course, running one’s website on an unencrypted connection is very bad. But what about Stripe? Is it possible to catch a redirect and use payment made by someone else on a different account, or are payment redirects tied to the person initiating it?
In the latter case, besides getting the amount spent or stealing cookies, no money can be stolen directly, unlike when the process doesn’t use a payment gateway where debit card or other banking details are leaked.
