Jean,

This is interesting. It sounds like OAUTH, where the mini-webserver redirects 
to the bank's website for authentication and gets a token back, but OAUTH 
tokens are supposed to be single-use and expire. The fact that neither seems to 
be the case is a bit worrying. Does plaid provide the source code for this web 
server?

Yes they do,
https://github.com/plaid/quickstart/blob/master/python/server.py

Note that I really don't know how long the tokens last, but it can't be short lived given how plaid is supposed to work (from reading their docs).
J
_______________________________________________
gnucash-devel mailing list
gnucash-devel@gnucash.org
https://lists.gnucash.org/mailman/listinfo/gnucash-devel

Reply via email to