Extension is working fine, however when I enable TOR, I get the following error: Bitcoin and Altcoin Wallets: CoinPayments Adapter failed to discover list of available coins: PHP curl returned error: SSL certificate problem: certificate has expired
In time: I don’t think TOR is safe for connecting to coinpayments API, as we must not restrict IP for that to work.
So, regular SSL connection and strong password should be more secure than TOR in this scenario, in my opinion.
I was not aware of the certificate issue, but this looks like a problem that should be handled by CoinPayments. They list the official TOR URL with the https protocol, so it is likely that they should renew their certificate.
I added the TOR feature for a user who had requested this, but running WordPress securely over TOR is generally not easy. You can find guides on the web about this, but generally both WordPress and this plugin connect to a number of services as part of their routine operation.
So yes, it is likely not as easy as ticking a checkbox.
Ultimately, if you are concerned about privacy, I believe the best route would be to not rely on third-party services, but instead to set up a Monero full node and use this coin adapter.