#Meta Krypto

1 messages · Page 1 of 1 (latest)

frank zodiacBOT
limber quail
#

I get your point, but what is standard Payment Request API exactly?

quick owl
#

https://www.w3.org/TR/payment-request/

Payment Request API

This specification standardizes an API to allow merchants (i.e. web
sites selling physical or digital goods) to utilize one or more payment
methods with minimal integration. User agents (e.g., browsers)
facilitate the payment flow between merchant and user.

#

this is the standard that browsers have to follow to make web payment. I believe stripe-js just wrap calls to this (and add some stripe specific hooks within it)

#

Along side this standard payment request API, there are 'standard' Apple Pay and Google Pay, which I also want to use these, instead of using stripe for the frontend. The reason as said above, stripe-js use many implicit call which sometime hard to understand the full detail of what was going on

limber quail
#

That isn't Stripe API and TBH I am not familiar with it. But the point is you shouldn't let the card information ever reach your server or your client code, or you will be exposed to PCI Compliance

#

Instead stripe.js will provide a secure context which you as a merchant can't access those PII, and you are safe from PCI Compliance

#

stripe.js is essential

quick owl
#

yes, I understand that. That is why I can follow the Payment Request API, it is designed for not leaking the card information

#

browsers implement natively these standards

limber quail
#

I would advise against it. Using stripe.js has much more benefits

quick owl
#

ok, I'll have a look at that

#

thanks a lot orakaro