Hi there,
I’m creating a marketplace app that’s going to be handling payments and sending them to vendors. There are three apps that are going to be created in total and I’ve created a central API that the apps send requests to in order to get, put, delete, and post data (menus, locations etc).
I’m at the stage now where I need to take payments. The payments and vendor wallets are handled by my payment provider.
I was wondering whether I should send the payment data such as card details to my API, then to the payment providers api or just send data from each app to the payment processor? The reason I’m thinking of doing that is so that I don’t have to recode bits in each native app.
If I was to send them to my api, do I send them in the headers? I suppose post data gets logged so this isn’t secure?
submitted by /u/yasaama
[link] [comments]