Closed segersniels closed 4 years ago
There is quite a big security risk regarding your API... Read only API keys aren't actually read only and can still create/delete orders.
api/v3/order
api/v3/order/test
Should return an error saying the key doesn't have the required permissions like the normal Binance API does.
body: { code: -2015, msg: 'Invalid API-key, IP, or permissions for action.' },
Received confirmation on Telegram that the issue is going to be resolved.
Issue
There is quite a big security risk regarding your API... Read only API keys aren't actually read only and can still create/delete orders.
Steps to reproduce
api/v3/order
orapi/v3/order/test
endpointWhat should happen
Should return an error saying the key doesn't have the required permissions like the normal Binance API does.