pete-ios-ideal | Stripe Developers | Page 1

vast lodgeBOT Nov 29, 2023, 10:31 PM

#

pete0587

jolly wave Nov 29, 2023, 10:34 PM

#

Hi, we're taking a look at this.

#

~~Yes it should work. The flow would look like this: iOS app -> Stripe hosted URL -> Bank app -> Stripe hosted URL -> iOS app~~ I'm still discussing this with my teammates

#

I'll share an update as soon as I can

polar igloo Nov 29, 2023, 10:48 PM

#

@next condor sorry there are dozens of ways to integrate Stripe. Can you give a lot more specific details about your overall integration and what you're using?

next condor Nov 29, 2023, 10:57 PM

#

Sure thing. Here are the basic steps we take to initiate an iDEAL payment:

Create an iDEAL payment method payment_methods
Call to our backend to create an iDEAL payment_intent
Call payment_intents/<payment_intent_id>/confirm to confirm the payment intent
- we specify a return_url at this point with a scheme our app recognizes
The confirmed intent returns a redirect URL
We open this redirect URL in a webview. For iDEAL this is a webview for the users bank
In this webview, the user is allowed to link out to their banking app.
At this point I'm a little unclear what happens, and so my question. I assume once the user authorizes payment, they are linked back to our app via the return_url specified in step (3), but wasn't sure and this is hard to test in our staging environment

polar igloo Nov 29, 2023, 10:59 PM

#

Curious why you are doing something so much more complex than just using PaymentSheet and letting us do all this?

#

But my understanding is you have to use Universal Links for this to work: https://developer.apple.com/documentation/xcode/allowing-apps-and-websites-to-link-to-your-content

#

pete-ios-ideal

next condor Nov 29, 2023, 11:07 PM

#

I think this is primarily because we don't integrate the StripeSDK and use only the APIs

polar igloo Nov 29, 2023, 11:08 PM

#

then universal link should work

next condor Nov 29, 2023, 11:08 PM

#

polar igloo But my understanding is you have to use Universal Links for this to work: <https...

So, if a universal link is supplied in the return_url when confirming the intent, is that passed through to these third party providers?

polar igloo Nov 29, 2023, 11:10 PM

#

yes it should be. It's just only possible to verify in production sadly

next condor Nov 29, 2023, 11:13 PM

#

I've notices in test environments that data is appended to the return_url , specifically payment_intent and payment_intent_client_secret Are these values sensitive in nature and should they be treated as such? Is there a risk if this data is leaked?

#pete-ios-ideal