To make the callback URL secure, follow the flow below:
- Check the incoming IP address of the sender. https://developer.coingate.com/docs/payment-callback#ip-addresses
tokenparameter when creating an order. https://developer.coingate.com/docs/create-order
- Do a double check when receiving the callback: take the order ID from the callback and call https://developer.coingate.com/docs/get-order to check current order status and amount
Article is closed for comments.