aaronk_72176 | Stripe Developers | Page 1

visual heronBOT Aug 18, 2023, 6:45 PM

#

covert marten Aug 18, 2023, 6:50 PM

#

Hi there

#

Looking into whether you can expand this via stripe.js w/ the publishable key

#

Stripe JS Reference

#

Oh yeah see you linked ^ my bad

#

So no, we don't support expansion for retireve payment intent with the publishable key

#

Just verified

cedar mesa Aug 18, 2023, 7:06 PM

#

got it, is it possible to get the associated payment method another way?

covert marten Aug 18, 2023, 7:06 PM

#

You can make a call to your server, where you can retrieve the payment method

cedar mesa Aug 18, 2023, 7:07 PM

#

what is the recommendation from stripe regarding whether to expose a public route that takes in payment intent id or client secret?

covert marten Aug 18, 2023, 7:10 PM

#

We don't have any such recommendation

#

You should use proper authentication with your apis though

#

Security is up to you

cedar mesa Aug 18, 2023, 7:11 PM

#

is payment method considered public information? Given that the id is exposed via stripe publishable key

covert marten Aug 18, 2023, 7:11 PM

#

The id itself isn't considered sensitive

cedar mesa Aug 18, 2023, 7:12 PM

#

ah, but the nested data could be?

covert marten Aug 18, 2023, 7:12 PM

#

Yeah it can contain billing address of customer, etc

#aaronk_72176