#Andrew Samir-python

Do you have the PCI compliance required to handle card data?

Otherwise you should just use Elements or Checkout

I don't really understand

I'd recommend reading: https://stripe.com/docs/security/guide

This is why people integrate with Stripe, as by using Elements/Checkout your PCI compliance is covered under our scope

Mmmmmmmm if it is required to use my own everything in frontend .... is there another way or can i just use the apis ?

Why do you need to use your own UI? The Payment Element is quite configurable: https://stripe.com/docs/elements/appearance-api

Well i am using angular and angular sometimes conflict with js libraries

Theres a third-party Angular lib you could look at: https://github.com/richnologies/ngx-stripe

Mmmmmm Nice i will check this

but if i couldn't
can you tell me what is the best flow to integrate stripe apis only ?

in case conflicts happened and so on

Do you have the required PCI compliance to handle raw card data?

No

You should absolutely not go down that path

Use Elements (or Checkout), and we'll help fix any issues along the way 🙂

Okay then
i will try the Angular third party and check it

I have a question
If i use the Stripe Element i can then access my django api or i will directly call stripe ?

It depends on which part of the flow. You'd generally have a backend API that calls Stripe to create the Payment Intent, then the rest (payment data collection, confirmation) is done by Stripe.js/Elements

i can't do something like PaymentMethod Create in my backend and pass the element data to create a payment method ?

No, because then you're handling raw card data

Can you tell me a brief flow if i want to handle one time payments ?

Using the stripe elements

It's all here, with the downloadable code: https://stripe.com/docs/payments/quickstart

This thread has been archived. If you need help with anything else please ask in #dev-help or contact Stripe Support: https://support.stripe.com/contact

done

Thanks for re-opening ....
i don't know what to say but i am afraid its not my decision ... my business lead refuse using anything on front-end for some purpose

So seems i need to integrate apis only

May i propose a flow for you ?

is your business PCI level 1 certified and able to complete this 86 page form each year(which involves auditing) and submit it to Stripe? https://listings.pcisecuritystandards.org/documents/PCI-DSS-v3_2_1-SAQ-D_Merchant.pdf

if not, then you should use Elements like over 90% of Stripe merchants. You can integrate with "API Direct" card numbers(https://stripe.com/docs/security/guide#validating-pci-compliance) but it's a highly locked down and niche option for generally very large and complex merchants.

Can you briefly tell me what is this ? and why i cant just integrate the apis only

what is this
what is what exactly?
and why i cant just integrate the apis only
I think we've explained that really clearly already, I'm not sure what else I can add.

ultimately if you're not familiar with any of the terms I'm using, you 100% should not even be attempting to integrate this way. These are business decisions for you and your lead. I'm sorry.

Okay then i think i should consult my team lead for that

I have read about PCI security standards and obviously its very complicated to implement apis only

So if i use the pre build Stripe elements ... am i able to make things like api as creating customer and save payment methods to this customer and so on .. ?

Hi! I'm taking over this thread.

Stripe Elements is a UI that allows you to collect payment information on your website. But yes you'll also need to call the Stripe API to create customers and PaymentIntents and so on.
I recommend reading this doc to understand how to accept payments with Stripe https://stripe.com/docs/payments/accept-a-payment