kaustuva-le | Stripe Developers | Page 1

patent hillBOT May 22, 2023, 4:25 AM

#

shrewd flax May 22, 2023, 4:25 AM

#

Hi there, how can I help?

balmy prawn May 22, 2023, 4:26 AM

#

Is it possible for the bank to fail a customer's 3DS authentication even before throwing them a challenge flow?
Is it possible from the stripe events/webhooks to know what the kind of challenge was that was thrown to the customer? i.e. OTP, app authentication etc.?

#

Is the authentication controlled by the card network(e.g. visa) or by the bank (e.g. NAB) ?

shrewd flax May 22, 2023, 4:28 AM

#

1/ Yes
2/ No, it's entirely up to the bank and you don't need to care about it, all you need to do is to call stripe.confirmCardPayment() at your frontend to start the 3DS
3/ The issuer (aka issuing bank) and your Radar rules (if applicable) decide whether a 3DS is needed

balmy prawn May 22, 2023, 4:29 AM

#

for 2. Can we get the information about the type of challenge thrown by the bank from the stripe events?

shrewd flax May 22, 2023, 4:31 AM

#

I don't think this info is available in the event.

balmy prawn May 22, 2023, 4:37 AM

#

If a customer fails a 3DS authentication can we know if they failed a challenge or the bank failed the authentication before throwing them a challenge?
e.g. for success, we can see in the dashboard whether it was a challenge flow or a frictionless flow.
Can we know from the events or from the dashboard?

shrewd flax May 22, 2023, 4:42 AM

#

https://stripe.com/docs/api/charges/object?lang=dotnet#charge_object-payment_method_details-card-three_d_secure yes this information is availble in the charge object.

Stripe API reference – The charge object – .NET

Complete reference documentation for the Stripe API. Includes code snippets and examples for our Python, Java, PHP, Node.js, Go, Ruby, and .NET libraries.

#

From there you can know if a 3DS is challenge or frictionless

balmy prawn May 22, 2023, 4:48 AM

#

Is the charge object available even when we're using the payment intent API?

shrewd flax May 22, 2023, 4:48 AM

#

Yes PaymentIntent will create a charge object under the hook, can you can get it form the PaymentIntent's latest_charge field.

balmy prawn May 22, 2023, 4:50 AM

#

It shows up as latest_charge: null

#

I'm guessing the charge object would only be created after a successful payment?

shrewd flax May 22, 2023, 4:51 AM

#

Yes you are right.

balmy prawn May 22, 2023, 4:52 AM

#

So if they failed a 3DS check how would we know if they failed a frictionless or challenge flow? i.e. if they failed a challenge or the bank failed them without throwing a challenge?

#

Since we would not have a charge object, would there be another way to check this?

shrewd flax May 22, 2023, 4:57 AM

#

No charge object is created if the payment is failed.

#

Maybe you can tell me what problem that you are trying to solve? so that I can design a solution for you.

balmy prawn May 22, 2023, 5:00 AM

#

A customer failed a 3DS Authentication. We need to know whether they were thrown a challenge or the bank failed them without throwing them a challenge.
Customer Service has also reported that there have been many cases where the 3DS popup shows up with a 'Please Wait' message..and then proceeds to fail directly.

shrewd flax May 22, 2023, 5:02 AM

#

I see, if the customer is presented with a 3DS page, it belongs to the challenge flow, not frictionless flow.

#kaustuva-le