I’m not kidding.
WWasp
•Created by I’m not kidding. on 4/13/2025 in #🙋questions
production stripe webhook secret
Should the stripe webhook secret (STRIPE_WEBHOOK_SECRET) change for production? Test stripe webhook worked but when testing outside of testmode in production app doesnt seem to be able to detect webhook once payment goes through
11 replies
WWasp
•Created by I’m not kidding. on 3/28/2025 in #🙋questions
Security checklist with wasp
Hi, I've been building with wasp for the last 3-ish months.
As launching is coming closer I'm becoming more and more concerned with security.
Some steps I've taken are making sure npm audit reads 0 vulnerabilities, making sure backend functions only take/return/update what is needed, etc.
Only thing I'm worried about are "unknown unknowns". Is there a security checklist I could use that applies to the default wasp stack?
8 replies
WWasp
•Created by I’m not kidding. on 1/12/2025 in #🙋questions
Caching data with wasp
Just set up file upload/download to S3 as done in openSaaS. I'm guessing that every time a S3 url is generated with a key, you would get billed on AWS - is there a good way to cache data that works well with prisma/wasp?
23 replies