getPaymentData() doesn't check if transaction reference has been given value

unicodeveloper / laravel-paystack

:credit_card: :package: :moneybag: Laravel 6, 7, 8, 9, 10 and 11 Package for Paystack

https://paystack.co

MIT License

605 stars 312 forks source link

getPaymentData() doesn't check if transaction reference has been given value #76

Closed Dazco closed 5 years ago

Dazco commented 5 years ago

Users can use the same transaction reference to perform multiple transactions by refreshing the callback url if an error occcurs.

ajayidavid99 commented 5 years ago

What you mean by given value? getPaymentData() gives you the details of a transaction even if it was conducted 30 years ago, whether the services has been delivered or not should be validated by you.

josephtesla commented 5 years ago

Yes, but this wasn't stated in the documentation and can lead to real security issues for first time users.