Skip to content

Commit

Permalink
Document but discourage protocol
Browse files Browse the repository at this point in the history
  • Loading branch information
richardm-stripe committed Jul 1, 2020
1 parent 07281cc commit bcb3660
Show file tree
Hide file tree
Showing 3 changed files with 52 additions and 0 deletions.
1 change: 1 addition & 0 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -175,6 +175,7 @@ const stripe = Stripe('sk_test_...', {
| `timeout` | 80000 | [Maximum time each request can take in ms.](#configuring-timeout) |
| `host` | `'api.stripe.com'` | Host that requests are made to. |
| `port` | 443 | Port that requests are made to. |
| `protocol` | `'https'` | `'https'` or `'http'`. `http` is never appropriate for sending requests to Stripe servers, and we strongly discourage `http`, even in local testing scenarios, as this can result in your credentials being transmitted over an insecure channel.
| `telemetry` | `true` | Allow Stripe to send latency [telemetry](#request-latency-telemetry). |
Note: Both `maxNetworkRetries` and `timeout` can be overridden on a per-request basis.
Expand Down
10 changes: 10 additions & 0 deletions lib/stripe.js
Original file line number Diff line number Diff line change
Expand Up @@ -65,6 +65,16 @@ function Stripe(key, config = {}) {
this.once = this._emitter.once.bind(this._emitter);
this.off = this._emitter.removeListener.bind(this._emitter);

if (
props.protocol &&
props.protocol !== 'https' &&
(!props.host || /\.stripe\.com$/.test(props.host))
) {
throw new Error(
'The `https` protocol must be used when sending requests to `*.stripe.com`'
);
}

this._api = {
auth: null,
host: props.host || DEFAULT_HOST,
Expand Down
41 changes: 41 additions & 0 deletions test/stripe.spec.js
Original file line number Diff line number Diff line change
Expand Up @@ -58,6 +58,47 @@ describe('Stripe Module', function() {
});
}).to.not.throw();
});
it('should forbid sending http to *.stripe.com', () => {
expect(() => {
Stripe(testUtils.getUserStripeKey(), {
host: 'foo.stripe.com',
protocol: 'http',
});
}).to.throw(/The `https` protocol must be used/);

expect(() => {
Stripe(testUtils.getUserStripeKey(), {
protocol: 'http',
});
}).to.throw(/The `https` protocol must be used/);

expect(() => {
Stripe(testUtils.getUserStripeKey(), {
protocol: 'http',
host: 'api.stripe.com',
});
}).to.throw(/The `https` protocol must be used/);

expect(() => {
Stripe(testUtils.getUserStripeKey(), {
protocol: 'https',
host: 'api.stripe.com',
});
}).not.to.throw();

expect(() => {
Stripe(testUtils.getUserStripeKey(), {
host: 'api.stripe.com',
});
}).not.to.throw();

expect(() => {
Stripe(testUtils.getUserStripeKey(), {
protocol: 'http',
host: 'localhost',
});
}).not.to.throw();
});

it('should perform a no-op if null, undefined or empty values are passed', () => {
const cases = [null, undefined, '', {}];
Expand Down

0 comments on commit bcb3660

Please sign in to comment.