Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
AWS上でStripeを利用したアプリをより安全にデプロイする方法 /jaws-pankrat...
Search
Sponsored
·
Ship Features Fearlessly
Turn features on and off without deploys. Used by thousands of Ruby developers.
→
Hidetaka Okamoto
November 21, 2021
Technology
230
1
Share
AWS上でStripeを利用したアプリをより安全にデプロイする方法 /jaws-pankration-2021
JAWS PANKRATION 2021登壇資料です。
https://jawspankration2021.jaws-ug.jp/sessions/40
Hidetaka Okamoto
November 21, 2021
More Decks by Hidetaka Okamoto
See All by Hidetaka Okamoto
OpenAI APIで API Changelogを要約してみた話 / chatgpt-osaka-1
hideokamoto
0
670
コミュニティ運営から 中の人に変わって感じたこと
hideokamoto
0
120
Developerが Developer Advocateになった話 / dev-rel-meetup-tokyo-71
hideokamoto
0
360
Jamstack開発者のための App Runner入門
hideokamoto
1
530
WordPressでの webサイト制作2022 / ngk2022s
hideokamoto
0
480
JavaScript(TypeScript)で メディアサイトを インフラから構築する方法 / jsconf-jp-2021
hideokamoto
2
4.4k
Shifter Headlessと Headless WordPressの紹介
hideokamoto
0
2.1k
Stripe & Next.js + AWS Amplify で会員 + 定期課金機能 / JP_Stripes20210903
hideokamoto
7
3.3k
後付けで 従量課金プランの 提供を開始した話 / 20210609-jp_stripes
hideokamoto
0
240
Other Decks in Technology
See All in Technology
Do Ruby::Box dream of Modular Monolith?
joker1007
1
360
コミュニティ・勉強会を作るのは目的じゃない
ohmori_yusuke
0
270
Anthropic「Long-running a gents」をGeminiで再現してみた
tkikuchi
0
660
20260428_Product Management Summit_Loglass_JoeHirose
loglassjoe
3
4.2k
Route 53 Global Resolver で高額課金発生!
otanikohei2023
0
130
Hacobu Tech Deck
hacobu
PRO
0
130
AIが盛んな時代に 技術記事を書き始めて起きた私の中での小さな変化
peintangos
0
280
Shipping AI Agents — Lessons from Production
vvatanabe
0
290
FessのAI検索モード:検索システムとLLMへの取り組み
marevol
0
110
Claude Code を安全に使おう勉強会 / Claude Code Security Basics
masahirokawahara
12
38k
AIコーディング時代における、ソフトウェアサプライチェーン攻撃に対する防衛術(簡易版)
soysoysoyb
0
170
基盤を育てる 外部SaaS連携の運用
gamonges_dresscode
1
120
Featured
See All Featured
Mozcon NYC 2025: Stop Losing SEO Traffic
samtorres
0
220
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
49
9.9k
Marketing Yourself as an Engineer | Alaka | Gurzu
gurzu
0
180
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
16
1.9k
Why Mistakes Are the Best Teachers: Turning Failure into a Pathway for Growth
auna
0
120
Dealing with People You Can't Stand - Big Design 2015
cassininazir
367
27k
SEO Brein meetup: CTRL+C is not how to scale international SEO
lindahogenes
1
2.6k
Organizational Design Perspectives: An Ontology of Organizational Design Elements
kimpetersen
PRO
1
680
Building a A Zero-Code AI SEO Workflow
portentint
PRO
0
460
Building an army of robots
kneath
306
46k
Between Models and Reality
mayunak
3
270
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
141
35k
Transcript
How to develop application safely using Stripe on AWS
Agenda • About Stripe • Using AWS to use Stripe
more secure • Community information about Stripe
https://stripe.com/
We can add/do... • Send invoice and charge it •
Membership / Subscription • Create marketplace (CtoC) • POS / Finance / Card / eKYC / etc...
Use case https://getshifter.io https://stripe.com/
Use Case: Shifter • Save/update credit card • Create/modify subscription
• Provide PAYG option plan to customer • Analyze business (on Stripe Dashboard) • etc...
How to use it?
We need to get the API key to call Stripe
API
Publishable API Key • For frontend • Tokenize Card and
confirm payment Secret API Key • For backend • Access & modify all resource in Stripe
Publishable API Key • For frontend • Tokenize Card and
confirm payment Secret API Key • For backend • Access & modify all resource in Stripe
“Restricted API Key” -> Custom API key -> Custom policy
Use API Key to init Client
And call Stripe API
• Stripe Secret API key is critical • We can
access&modify real customer data • We need to hold it secure
AWS can hold the API key security
https://aws.amazon.com/secrets-manager/
None
None
• We never place API key on our local •
Just call AWS API to get it • Set once, only read
Amplify CLI supports AWS Secrets Manager (and SSM)
Automatically generate a code to get the env value
• Secrets Manager can handle API key secure • AWS
Amplify can use this from CLI • Stripe with AWS is good for developer • Let’s create your own SaaS bussiness !
Info & Community
Official Docs & Tutorial https://stripe.dev Japanese Community https://www.facebook.com/groups/jpstripes Discord https://discord.com/invite/stripe
https://qiita.com/advent-calendar/2021/stripe
https://stripe.events/jpdevguides
Thanks!
hideokamoto
joker1007
ohmori_yusuke
tkikuchi
loglassjoe
otanikohei2023
hacobu
peintangos
vvatanabe
marevol
masahirokawahara
soysoysoyb
gamonges_dresscode
samtorres
mongodb
gurzu
reverentgeek
auna
cassininazir
lindahogenes
kimpetersen
portentint
kneath
mayunak
eileencodes
