paymentplugins | Stripe Developers | Page 1

barren merlinBOT Sep 16, 2022, 3:58 PM

#

jolly zinc Sep 16, 2022, 4:00 PM

#

Hi there! The standard account can manage their keys via the Dashboard: https://stripe.com/docs/keys#rolling-keys

Rolling keys will not impact their connection to a platform

heavy reef Sep 16, 2022, 4:07 PM

#

hi @jolly zinc thanks for the reply. When API keys are generated for a Connected platform, they aren't visible in the stripe.com account.

#

So there isn't an option to roll the keys since they were generated during the oAuth connect process

jolly zinc Sep 16, 2022, 4:08 PM

#

Let's take a step back. A standard account's API keys are never shared with any platform they're connected to

#

There's a separate access_token that's shared with the platform during the oauth process. If this token needs to be revoked, the platform can revoke access via the API or the standard account can revoke access via the Dashboard: https://support.stripe.com/questions/disconnect-your-stripe-account-from-a-connected-third-party-platform

heavy reef Sep 16, 2022, 4:13 PM

#

@jolly zinc What I am referring to is when a set of API keys are generated during the oAuth process. The access_token is exchanged for a set of API keys. But those keys are never visible in the merchant's stripe.com account.

#

So based on your link, it looks like the only way to revoke those API keys generated from the oAuth process is to disconnect from the 3rd party platform?

jolly zinc Sep 16, 2022, 4:15 PM

#

Got it. Yes, that's correct.

#paymentplugins