Skip to main content

Hide access to sensitive info in orders API

Orders public API

  • Sensitive info was hidden for next endpoints
    • View order: GET /v1/orders/{{order_id}}/
    • Order Vehicles: GET /v1/orders/{{order_id}}/vehicles/
    • Order List: GET /v1/orders/
  • pdf_bol_url was hidden for canceled orders in NEW status only
  • Data considered as sensitive:
    • Pickup Name, Pickup Contact, Pickup Address, Pickup Phone (keep city, state and zip)
    • Delivery Name, Delivery Contact, Delivery Address, Delivery Phone (keep city, state and zip)
    • Vehicle VIN, Lot #, Buyer #