Tweet
Tweet

Slide 1

Slide 1 text

How to develop application safely using Stripe on AWS

Slide 2

Slide 2 text

Agenda ● About Stripe ● Using AWS to use Stripe more secure ● Community information about Stripe

Slide 3

Slide 3 text

https://stripe.com/

Slide 4

Slide 4 text

We can add/do... ● Send invoice and charge it ● Membership / Subscription ● Create marketplace (CtoC) ● POS / Finance / Card / eKYC / etc...

Slide 5

Slide 5 text

Use case https://getshifter.io https://stripe.com/

Slide 6

Slide 6 text

Use Case: Shifter ● Save/update credit card ● Create/modify subscription ● Provide PAYG option plan to customer ● Analyze business (on Stripe Dashboard) ● etc...

Slide 7

Slide 7 text

How to use it?

Slide 8

Slide 8 text

We need to get the API key to call Stripe API

Slide 9

Slide 9 text

Publishable API Key ● For frontend ● Tokenize Card and confirm payment Secret API Key ● For backend ● Access & modify all resource in Stripe

Slide 10

Slide 10 text

Publishable API Key ● For frontend ● Tokenize Card and confirm payment Secret API Key ● For backend ● Access & modify all resource in Stripe

Slide 11

Slide 11 text

“Restricted API Key” -> Custom API key -> Custom policy

Slide 12

Slide 12 text

Use API Key to init Client

Slide 13

Slide 13 text

And call Stripe API

Slide 14

Slide 14 text

● Stripe Secret API key is critical ● We can access&modify real customer data ● We need to hold it secure

Slide 15

Slide 15 text

AWS can hold the API key security

Slide 16

Slide 16 text

https://aws.amazon.com/secrets-manager/

Slide 17

Slide 17 text

No content

Slide 18

Slide 18 text

No content

Slide 19

Slide 19 text

● We never place API key on our local ● Just call AWS API to get it ● Set once, only read

Slide 20

Slide 20 text

Amplify CLI supports AWS Secrets Manager (and SSM)

Slide 21

Slide 21 text

Automatically generate a code to get the env value

Slide 22

Slide 22 text

● Secrets Manager can handle API key secure ● AWS Amplify can use this from CLI ● Stripe with AWS is good for developer ● Let’s create your own SaaS bussiness !

Slide 23

Slide 23 text

Info & Community

Slide 24

Slide 24 text

Official Docs & Tutorial https://stripe.dev Japanese Community https://www.facebook.com/groups/jpstripes Discord https://discord.com/invite/stripe

Slide 25

Slide 25 text

https://qiita.com/advent-calendar/2021/stripe

Slide 26

Slide 26 text

https://stripe.events/jpdevguides

Slide 27

Slide 27 text

Thanks!