Just renewed my license - been really happy with the product.
But, you’re not PCI compliant… making Paypal the only safe option to pay. Any chance of a fix?
Please elaborate. Duplicacy uses third party (stripe?) to process payments
(calling Paypal a “safe option” gave me a chuckle).
It may use Stripe at the backend, but it’s sending full credit card info, expiry & CVV to their own servers over TLSv1 - which is long defunct.
Stripe allows card data to be sent directly - so I’m not sure why it’s being sent to Duplicacy at all.
I agree with your Paypal comment though… but it’s the safer of the two options here.
1 Like
I think when I first built the payment system, Stripe Checkout wasn’t available (at least not in its current form). I added the PayPal option later, and by then everyone was already using the standard workflow.
I’ve been hesitant to change something that has worked reliably, but I’ll give it a try next week.