#brel_api

👋 Welcome to your new thread!

⏲️ We'll be here soon! Typically we respond in a few minutes, but sometimes we might take a bit longer if the server is busy or if you have a particularly tricky question.

⏱️ We close idle threads, which makes them read-only. Once a thread is closed it won't be reopened, but you can always start a new thread if you have another question.

🔗 This thread will always be available, even after it's closed. You can find it again using Discord's search, or you can save this link: https://discord.com/channels/841573134531821608/1391748590656819210

📝 Have more to share? Add more details, code, screenshots, videos, etc. below.

Below are links to other discussions we've had with you in the past week in case you want to review that information. If your question is related to one of these previous discussions, please provide a comprehensive summary of the current state and what you need help with now. We help many users simultaneously, so a summary allows us to resolve your issue as soon as possible.

• brel_api, 32 minutes ago, 14 messages
• brel_unexpected, 3 days ago, 69 messages
• brel_unexpected, 4 days ago, 203 messages

hi there!

hi

how are you accepting payments? Checkout Session, Payment Element, something else?

I am using a custom implementation

on the frontend I am using Payment elements

so you use PaymentIntents + Payment Element?

I dont use payment intents

I save customer card

and then do the subscribtion create call from my backend

So customer card is saved on the frontend

And sent directly on Stripe

from Payment Elements

got it, but a Subscription does contain a PaymentIntent, so it's the same.

the Payment Element doesn't support promo code. so that's something that you'll need to build yourself.

yes

that's why I asked how can I validate it?

Is there a way I can validate the promo code?

Like an api or something that returns the validity when promo code is passed

got it. but no we don't have this.

that's something that you'll need to build on your end.

or use Checkout Session to accept payments, which does support promotion code.

What is checkout session. Is handled by Stripe. Can I keep the custom integration I have or I need to redirect customer to another screen?

@pale frigate since you're using subscriptions there are a couple of things that I would suggest you'd do to enhance and improve your current integration. I will also explain how you can see the validity of a coupon without using Checkout Sessions(which is the best way to do it)

Thank you

a better UX would be to use https://docs.stripe.com/payments/accept-a-payment-deferred?platform=web&type=subscription

But promotion_code

not coupon

you can preview an invoice with subscriptions https://docs.stripe.com/invoicing/preview#preview-invoices-with-subscriptions

and you can pass https://docs.stripe.com/api/invoices/create_preview#create_create_preview-subscription_details-items-discounts-promotion_code

based on the returned invoice you can clearly see whether the promotion code was applied or not

Got it. Does it has to do somethign with this: https://docs.stripe.com/payments/accept-a-payment-deferred?platform=web&type=subscription

I am currently making the customer add a card

And then I create the sbscribtion from my backend

you shouldn't do that

you should follow the steps in the guide I sent you

What is the problem with that process?

I have been using it in prodution without problems

otherwise your customers might have to go through SCA twice

there are multiple implications, one of them is SCA

but since your customer is on_session when you create the subscription it's better to have them validate directly the subscription payment since the mandate would be created accordingly

so for disputes it's less risky because you have the evidence that they initiated the subscription

So, I am good with the actual implementation?

Sorry, I did not understand

IS it ok to just show the upcomming invoice?

Or should I change the flow?

I don't undersatnd what are hte implication with that, My customer has a customer_id. I create payment methods with his unique id

and I also create subscribtion with his ID only

That will fetch his payment methods

I've seen that the major part of the apps have this 2-step process. When they first save the card and then pay for subscribtion

Isn't my flow the same?

no you need to move to the implementation I shared with you in the link

you don't need to show the customer the upcoming invoice. this is for your internal use to validate that the promotion_code is valid or not

the implications are not on your implementation but rather on what happens after that

basically having to refund or deal with disputes

Got it, but even if I show that to the customer I think is better to let them know exactly what they will be charged. Correct?

yes you can

but you need to be extra thorough with the details you pass to the create preview. Everything that you pass to that preview you should pass to the subscription afterwards

Yes, got it. I am just concerned on the security now

Since you are saying my implementation is not correct

it's not a security issue

it's more of a way to protect your business from potential disputes

the customer could claim that they saved their payment method on your website but they didn't ask you to start a subscription for them

so they contact their issuing bank and they would open a dispute

https://docs.stripe.com/disputes

Ah ok. But in either case, even if I implement differently, the merchant has the possibility to charge that from Stripe

your flow isn't wrong per se but it isn't the recommended way

what do you mean by that?

I mean that technically from Stripe is possible

yes technically it's doable

For a card to be charged without permission

yes

but you need to optimize your auth rate and reduce disputes/refunds

so we don't recommend that flow

So, normally should'nt Stripe prevent creating a subscribtion directly by passing payment_method_id

If this is not recommended

we are an ever-growing company and our recommendations evolve, but we also need to have backwards compatibility, otherwise we would break the integration of so many merchants. we might get to a day where we create a breaking change version and remove this flow, same as when we deprecated sources and tokens which were valid as a way to create a subscription or payment in general

another example is Charges objects. Today Charges are still part of the API but we don't recommend using Charges to make payments

Thank you for the explanation