[SOLVED] [STRIPE/PAYMENT] - Understand security token design

I have simple question about security design with Ionic. For this question i used “Stripe” plugin as exemple :
For used Stripe you need to set a private api TOKEN on Ionic application. This token is very important because you can create new payments if you are succefully autenticated.
So, it’s very easy to decompile Ionic app and every body can read this token…
How resolve this security breach?

That all ^^
Thank you for your answer.

Resources :

  • Plugins exemple :

I would recommend building an API to handle your stripe payments? Have the API generate the token and then submit the payment with the token to the API for processing… Your app doesn’t need to have the any Stripe information at that point.

Nice thanks you.
I suggest this same solution but I’m sure now.