deepumi_api | Stripe Developers | Page 1

modest plumeBOT Jul 22, 2024, 7:41 AM

#

👋 Welcome to your new thread!

⏲️ We'll be here soon! Typically we respond in a few minutes, but sometimes we might take a bit longer if the server is busy or if you have a particularly tricky question.

⏱️ We close idle threads, which makes them read-only. Once a thread is closed it won't be reopened, but you can always start a new thread if you have another question.

🔗 This thread will always be available, even after it's closed. You can find it again using Discord's search, or you can save this link: https://discord.com/channels/841573134531821608/1264849829889314912

📝 Have more to share? Add more details, code, screenshots, videos, etc. below.

tacit sandal Jul 22, 2024, 7:50 AM

#

hi there, yes you can do a manual redirect if you don't want to use Stripe.js https://docs.stripe.com/payments/3d-secure/authentication-flow?platform=web#manual-redirect

Authenticate with 3D Secure

Integrate 3D Secure (3DS) into your checkout flow.

nocturne storm Jul 22, 2024, 7:51 AM

#

Thanks, And it is okay to use server-side redirects for a custom flow to bypass Stripe.js?

#

And the page information is accurate for both 3DS-1 and 3DS-2 flow correct?

tacit sandal Jul 22, 2024, 7:53 AM

#

Yes, it's applicable to 3DS2, 3DS1 is already deprecated.

nocturne storm Jul 22, 2024, 7:53 AM

#

But, The Stripe documentation mentions a fallback to 3DS-1 flow when 3DS-2 is not supported. How can I test the 3DS-1 payment flow? I tried several card numbers, but they all redirect to the 3DS-2 auth test flow page

tacit sandal Jul 22, 2024, 7:55 AM

#

Why do you want to test a 3DS1 flow? As I said, 3DS1 is deprecated, and no card issuer will request a 3DS1 flow in production.

nocturne storm Jul 22, 2024, 7:56 AM

#

okay. based on the doc, it says a fallbck scenario.

#

Also, When the 3DS Auth redirects back to the customer app, Stripe sends a payment_secret. How do I validate this payment_secret?
Should I make an API call to verify the secret?

modest plumeBOT Jul 22, 2024, 7:58 AM

#

crude vessel Jul 22, 2024, 8:02 AM

#

Stripe sends a payment_secret
What do you mean exactly?

nocturne storm Jul 22, 2024, 8:05 AM

#

For 3DS authentication process happens, Stripe redirects back to the customer app with a few query strings and one of the is payment_secret

#

And How do I validate the authenticity of the payment_secret?

#

I mean the "payment_intent_client_secret" is the query string parameter

crude vessel Jul 22, 2024, 8:08 AM

#

You don't need it if you don't use Stripe.js

nocturne storm Jul 22, 2024, 8:09 AM

#

But I don't use Stripe.js

#

Okay, got it.

#

This is the hooks.stripe.com URL.
https://hooks.stripe.com/3d_secure_2/hosted?merchant=acct_16HxfvHozpwNUrbx&payment_intent=pi_3Pf23AHozpwNUrbx0uWFG8o9&payment_intent_client_secret=pi_3Pf23AHozpwNUrbx0uWFG8o9_secret_5wMpt26XK3mQCwGvEgg2QO3DR&publishable_key=pk_test_AQULtZwJAkYxpKhnW3udzFW9&source=payatt_3Pf23AHozpwNUrbx0XukI2rA&stripe_account=acct_16HxfvHozpwNUrbx

#

This transaction was processed yesterday. However, if I copy paste the URL, it redirects back to the customer app.

#

Is this behavior expected for already processed transactions?

crude vessel Jul 22, 2024, 8:22 AM

#

Yes, since it's expired now.

nocturne storm Jul 22, 2024, 8:26 AM

#

Okay, What JSON properties should I check on consumer side to verify this was expired, the data and timestamp ?

crude vessel Jul 22, 2024, 8:33 AM

#

I would assume, while next_action is present on the PaymentIntent, you can attempt to complete it.

nocturne storm Jul 22, 2024, 8:33 AM

#

okay, thank you

crude vessel Jul 22, 2024, 8:41 AM

#

Happy to help.

#deepumi_api