#jonathan_api

👋 Welcome to your new thread!

⏲️ We'll be here soon! Typically we respond in a few minutes, but sometimes we might take a bit longer if the server is busy or if you have a particularly tricky question.

⏱️ We close idle threads, which makes them read-only. Once a thread is closed it won't be reopened, but you can always start a new thread if you have another question.

🔗 This thread will always be available, even after it's closed. You can find it again using Discord's search, or you can save this link: https://discord.com/channels/841573134531821608/1334694542955516015

📝 Have more to share? Add more details, code, screenshots, videos, etc. below.

hello! If you're using the Stripe SDK to handle 3DS, the 3DS occurs in a pop up modal

Hi! Ok, but as I understand it, the exact implementation of 3DS auth is ultimately up to the relevant card provider.
That means that it could either be as you mention, a pop up modal, but also in some cases via seperate site.
Is that wrong, and in fact, 3DS in guarunteed to happen without a change of browser url?

If the user is redirected to a different url for authentication, then the javascript context in which confirmCardSetup is surely lost

no, it won't occur in a separate site. Stripe's SDK adheres to the 3DS2 protocols / requirements which does not require full page redirects. i.e. If a customer authenticates on your site or webpage, the 3DS2 challenge will appear in a modal - https://stripe.com/en-sg/guides/3d-secure-2

alright! I misinterpreted that as meaning, "by default it will be a popup modal, but ultimately will be up the card provider and therefore may not be".