ogustine_api | Stripe Developers | Page 1

viral beaconBOT Apr 9, 2024, 1:25 PM

#

👋 Welcome to your new thread!

⏲️ We'll be here soon! Typically we respond in a few minutes, but sometimes we might take a bit longer if the server is busy or if you have a particularly tricky question.

⏱️ We close idle threads, which makes them read-only. Once a thread is closed it won't be reopened, but you can always start a new thread if you have another question.

🔗 This thread will always be available, even after it's closed. You can find it again using Discord's search, or you can save this link: https://discord.com/channels/841573134531821608/1227248020396183573

📝 Have more to share? Add more details, code, screenshots, videos, etc. below.

safe ivyBOT Apr 9, 2024, 1:38 PM

#

wide coral Apr 9, 2024, 1:39 PM

#

We want that standard accounts created using our oauth link have access to stripe connect configuration on there side.
Can you explain more about what this means? What exactly are you/they trying to do that you cannot?

#

We still need as a platform account to trigger direct charges on the connected account.
This should be possible. Can you share any failed requests showing the issue blocking you?

open rampart Apr 9, 2024, 1:40 PM

#

Hello, thanks for your help.

#

According to the stripe documentation, oauth link with the scope=read_write are giving platform control permission to the platform account if the connected account is created using that form. That is explained here: https://docs.stripe.com/connect/oauth-changes-for-standard-platforms. We do not want those rights, as it prevents the newly connected account to access https://dashboard.stripe.com/connect/accounts/overview.

OAuth changes for Standard Platforms

Learn about the changes Stripe is making to OAuth for Standard Connect.

Stripe Login | Sign in to the Stripe Dashboard

Sign in to the Stripe Dashboard to manage business payments and operations in your account. Manage payments and refunds, respond to disputes and more.

wide coral Apr 9, 2024, 2:01 PM

#

Right, so as that doc indicates read_only is an Extension-only behaviour, and not something you can control dynamically. If you are enabled as an extension, you can request that in the oauth url as shown here:
https://docs.stripe.com/building-extensions#create-oauth-link

#

If this is something being built new, you need to use Stripe Apps instead: https://docs.stripe.com/stripe-apps

We provide some context and migration guidance on this doc for legacy Extension patterns: https://docs.stripe.com/stripe-apps/migrate-extension

open rampart Apr 9, 2024, 2:06 PM

#

Thanks. May you confirm that the read_only scope will prevent direct charges being triggered by the platform account? If that is the case, it will not suit our need.

wide coral Apr 9, 2024, 2:32 PM

#

Stripe Apps permissions models work differently. There are options for Charge write access, for example: https://docs.stripe.com/stripe-apps/reference/permissions#object

Permissions reference

A list of available events and their required permissions.

#

I suggest writing in to support with a description of your model / use case to get help determining if this can be supported via Apps: https://support.stripe.com/contact

Stripe: Help & Support

Find help and support for Stripe. Our support site provides answers on all types of situations, including account information, charges and refunds, and subscriptions information. Get your questions answered and find international support for Stripe.

#ogustine_api