Wondering if Website Buildermight be useful for an entry level e-commerce site, and being curious how it's handling the payment gateways in JavaScript, I set up a trial account and had a look at the checkout page. Much to my surprise, I found that the Authorize.net login name and transaction key are in clear text in the generated page. The login name is in a hidden form field, and the transaction key is assigned to a variable in call_sub().
Does anyone at Tucows think this is a really, really, bad idea? -- Best regards, Mark Geisinger [EMAIL PROTECTED]
