#robin_best-practices

👋 Welcome to your new thread!

⏲️ We'll be here soon! We typically respond in a few minutes, but in some cases we might need a bit more time (e.g., server's busy, you've got a complex question, etc.).

⏱️ We close idle threads, which makes them read-only. Once a thread is closed it won't be reopened, but you can start a new thread if you have another question.

🔗 This thread will always be available, even after it's closed. You can find it again using Discord's search, or you can save this link: https://discord.com/channels/841573134531821608/1257990022813192292

📝 Have more to share? Add details, code, screenshots, videos, etc. below.

We are not sure about what we should do about payments with electronic wallets like Google/Apple Pay. Should we disable that feature for those payment methods ? Doesn't open the door to litigations ?
Usually, you should ignore 3ds with wallet payments

https://docs.stripe.com/radar/rules/reference#:~:text=Therefore CVC checks%2C like 3D-Secure checks%2C aren’t available for payment methods such as Apple Pay. Stripe recommends using Radar’s Built-in rules%2C which consider these edge cases.

You can use Stripe built-int rules to cover these cases:
https://docs.stripe.com/radar/rules#built-in-rules

Or update your Radar rule to ignore allow payment through Wallet Payments https://docs.stripe.com/radar/rules/supported-attributes#other-payment-details:~:text=charge is made.-,digital_wallet,-Case Insensitive String

Do our customer will be protected to device theft ? Google and Apple Pay provide biometric authentication before allowing the payment?

Yes that's up to the customer to protect their device

I recommend you to double check this with Stripe Support at https://support.stripe.com/contact as this channel is for technical integration question with Stripe API and we aren't Radar experts.

My company provide financial services. Once the payment is received, we process a crypto asset purchase which will be send to an external wallet. That's why we have to be sure the payment transaction will be irrevokable.

Ok thank you, just an additional technical question related to https://support.stripe.com/questions/liability-shift-for-google-pay-charges?locale=en-US
"You can customize Stripe Radar rules to request the activation of 3D Secure" -> when a customer pay with an electronic wallet, no 3DS are required on our application, but when I use Google Pay on other personal application, a 3DS verification is sometime asked. Should we technically configure something when opening the checkout session ?

when a customer pay with an electronic wallet, no 3DS are required on our application, but when I use Google Pay on other personal application, a 3DS verification is sometime asked
For that case, that's Google Pay who triggers it and not the payment processor AFAIK.

But in general, in order to request 3ds you can use this param when creating a Checkout Session:
https://docs.stripe.com/api/checkout/sessions/create#create_checkout_session-payment_method_options-card-request_three_d_secure

Ok thank you !