Feature Request
I realize it's still being built but here's a feature request to consider. Your XMLPay interface allows you to do raw transactions, but requires that the username/password for the account be passed in xml.
To increase security what about generating a random security key (A Guid would work fine) for each account and passing that instead. Users could reset their security key whenever they wanted.
This way if the data sent was ever captured, the "hacker" would wind up with an API key, and the only damage they could do with it is bill their own credit card account basically. They couldn't log into a user's account and withdraw money.
Also, it would allow you to give the key to a 3rd party shopping cart provider to perform transactions on your behalf, without worrying about them logging into your account and stealing your shit.
__________________
Vidlock DRM Service - Add DRM to your website today
http://www.vidlock.com
Coming Soon - Vidpass
|