You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
sign_password param should not be sent in the request as this compromises the 'Project password' and opens up possibility to forge fake purchases
ss2 param should also be validated as MD5 is very old and not that secure, although SHA1 is not that much better anymore but Paysera does not offer a better solution at this moment
Public key for SHA1 verification is available here https://www.paysera.com/download/public.key
My 2 cents:
Public key for SHA1 verification is available here https://www.paysera.com/download/public.key