Upgrade to Pro — share decks privately, control downloads, hide ads and more …

AWS上でStripeを利用したアプリをより安全にデプロイする方法 /jaws-pankrat...

Hidetaka Okamoto
November 21, 2021
Technology
1
180

AWS上でStripeを利用したアプリをより安全にデプロイする方法 /jaws-pankration-2021

JAWS PANKRATION 2021登壇資料です。
https://jawspankration2021.jaws-ug.jp/sessions/40

Hidetaka Okamoto

November 21, 2021
Tweet

More Decks by Hidetaka Okamoto

See All by Hidetaka Okamoto
OpenAI APIで API Changelogを要約してみた話 / chatgpt-osaka-1
hideokamoto
0
510
コミュニティ運営から 中の人に変わって感じたこと
hideokamoto
0
65
Developerが Developer Advocateになった話 / dev-rel-meetup-tokyo-71
hideokamoto
0
300
Jamstack開発者のための App Runner入門
hideokamoto
1
450
WordPressでの webサイト制作2022 / ngk2022s
hideokamoto
0
400
JavaScript(TypeScript)で メディアサイトを インフラから構築する方法 / jsconf-jp-2021
hideokamoto
2
4.1k
Shifter Headlessと Headless WordPressの紹介
hideokamoto
0
1.7k
Stripe & Next.js + AWS Amplify で会員 + 定期課金機能 / JP_Stripes20210903
hideokamoto
7
3.1k
後付けで 従量課金プランの 提供を開始した話 / 20210609-jp_stripes
hideokamoto
0
200

Other Decks in Technology

See All in Technology
設計を積み重ねてシステムを刷新する
sansantech
PRO
0
160
あなたが人生で成功するための 5つの普遍的法則 #jawsug #jawsdays2025 / 20250301 HEROZ
yoshidashingo
2
290
ESXi で仮想化した ARM 環境で LLM を動作させてみるぞ
unnowataru
0
170
4th place solution Eedi - Mining Misconceptions in Mathematics
rist
0
140
Exadata Database Service on Cloud@Customer セキュリティ、ネットワーク、および管理について
oracle4engineer
PRO
2
1.5k
30→150人のエンジニア組織拡大に伴うアジャイル文化を醸成する役割と取り組みの変化
nagata03
0
160
内製化を加速させるlaC活用術
nrinetcom
PRO
2
140
データベースの負荷を紐解く/untangle-the-database-load
emiki
2
500
手を動かしてレベルアップしよう!
maruto
0
200
AWSを活用したIoTにおけるセキュリティ対策のご紹介
kwskyk
0
350
開発組織を進化させる!AWSで実践するチームトポロジー
iwamot
2
350
Autonomous Database Serverless 技術詳細 / adb-s_technical_detail_jp
oracle4engineer
PRO
17
45k

Featured

See All Featured
The Cost Of JavaScript in 2023
addyosmani
47
7.4k
How to train your dragon (web standard)
notwaldorf
91
5.9k
Raft: Consensus for Rubyists
vanstee
137
6.8k
Making Projects Easy
brettharned
116
6k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
330
21k
Done Done
chrislema
182
16k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
stephaniewalter
280
13k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
100
18k
Statistics for Hackers
jakevdp
797
220k
No one is an island. Learnings from fostering a developers community.
thoeni
21
3.1k
Agile that works and the tools we love
rasmusluckow
328
21k
How To Stay Up To Date on Web Technology
chriscoyier
790
250k

Transcript

  1. How to develop application safely using Stripe on AWS

  2. Agenda • About Stripe • Using AWS to use Stripe

    more secure • Community information about Stripe

  3. https://stripe.com/

  4. We can add/do... • Send invoice and charge it •

    Membership / Subscription • Create marketplace (CtoC) • POS / Finance / Card / eKYC / etc...

  5. Use case https://getshifter.io https://stripe.com/

  6. Use Case: Shifter • Save/update credit card • Create/modify subscription

    • Provide PAYG option plan to customer • Analyze business (on Stripe Dashboard) • etc...

  7. How to use it?

  8. We need to get the API key to call Stripe

    API

  9. Publishable API Key • For frontend • Tokenize Card and

    confirm payment Secret API Key • For backend • Access & modify all resource in Stripe

  10. Publishable API Key • For frontend • Tokenize Card and

    confirm payment Secret API Key • For backend • Access & modify all resource in Stripe

  11. “Restricted API Key” -> Custom API key -> Custom policy

  12. Use API Key to init Client

  13. And call Stripe API

  14. • Stripe Secret API key is critical • We can

    access&modify real customer data • We need to hold it secure

  15. AWS can hold the API key security

  16. https://aws.amazon.com/secrets-manager/

  17. None
  18. None

  19. • We never place API key on our local •

    Just call AWS API to get it • Set once, only read

  20. Amplify CLI supports AWS Secrets Manager (and SSM)

  21. Automatically generate a code to get the env value

  22. • Secrets Manager can handle API key secure • AWS

    Amplify can use this from CLI • Stripe with AWS is good for developer • Let’s create your own SaaS bussiness !

  23. Info & Community

  24. Official Docs & Tutorial https://stripe.dev Japanese Community https://www.facebook.com/groups/jpstripes Discord https://discord.com/invite/stripe

  25. https://qiita.com/advent-calendar/2021/stripe

  26. https://stripe.events/jpdevguides

  27. Thanks!