#Syafiq-3ds

just use a SetupIntent, what is what they are for!

https://stripe.com/docs/payments/save-and-reuse

Is this the intended affect?
yes
How would i know whether or not the authentication process was successful?
webhooks! https://stripe.com/docs/payments/handling-payment-events

with a link that leads me to the test 3DS page
also to clarify, you are not supposed to use that link(I assume you looked at next_action.use_stripe_sdk and found a link in there)? You're supposed to use our Javascript library ,it presents the 3D Secure window in a popup instead of a redirect, and you know the authentication is complete because your Javascript code gets notified

so overall I think you should stop and follow one of our guides(in your case, https://stripe.com/docs/payments/save-and-reuse).

Thanks for the quick response. I guess i will have to restructure some stuff in the backend then

when using SetupIntent, does this take into account whether or not 3DS is needed?

The link you sent me doesnt seem to mention 3DS authentication

all our integrations support 3D Secure

but specifically confirmSetup will show a 3D Secure interface if it is required to validate the card

would the return url work within a mobile application? or will i need to use an sdk to streamline the process?

you'd use an SDK

there are specific tabs at the top for each one, they are all different integrations

confirmSetup and that guide is for a webpage using Javascript

there are equivalents for Android and iOS though that all work broadly the same way

Im currently using flutter and im using the package flutter_stripe

i can see that there is a method confirmSetupIntent, but no further details on how it works

https://pub.dev/packages/flutter_stripe

do you have a specific question about it?

It takes a SetupIntent and "confirms" it, which means — takes payment details from the UI components you're collecting the card in, it calls the backend API to attempt to validate/authorise the card, in some cases that requires a 3D Secure authentication, if that's required it automatically presents the bank's 3D Secure challenge in your app, then when that's all done the function returns

for the 3DS, will the SDK provide a response on whether or not the setup succeeds or fails?

yes

I don't know how it works with that flutter library since it's semi-official but in iOS there's a completion block you'd use and in Android something similiar

you can see it returns a Future which resolves to the SetupIntent when it's done(https://github.com/flutter-stripe/flutter_stripe/blob/08b7a1e9896fc4aa12eb1d4734cf2c72fe9cd8a7/packages/stripe/lib/src/stripe.dart#L275) so you'd inspect that

it will make more sense when you start following a guide and using it, I would imagine.

Thank you for the link, ill have a look at it

Quick other question

After saving the card and the 3DS auth succeeds, is there ever a scenario where the card needs to be authenticated again or is it a one time setup thing?

"4000002760003184 This card requires authentication on all transactions, regardless of how the card is set up."

yes, any of the future payments might need 3D Secure

it's up to the bank

you need to handle that case. You can use test cards like that one to test that out and your recovery flows, or you can use the 3155 card from https://stripe.com/docs/testing#regulatory-cards to test the 'happy path' where the future payments get exemptions

https://stripe.com/ie/guides/strong-customer-authentication#merchant-initiated-transactions-including-variable-subscriptions
+
https://stripe.com/ie/guides/strong-customer-authentication#what-happens-if-an-exemption-fails

are worth reading

ive been testing with the 3155 card and its going through as intended

are there any other specific flow that i would need to consider and handle?

I'd definitely try all the test cards in general, but for the case you're thinking of(saving a card then charging off-session) those the main two, getting the exemption and not getting it

in the application (which is essentially a c2c auction house for clothing), users get to place bids and sellers are able to sell the product to the bidders. When placing the bid, the user does not get charged immediately, instead the charged amount is stored in our database. When a seller makes a transaction, the payment intent is generated for both the bidder and the seller, and the transaction can only be initiated by the seller.

In this case, when the payment intent is made for the bidder, and if their card required additional 3DS, how the bidder receive the link to continue with the authentication process?

depends how you build it! but typically you would email them and get them to come back to your site

the docs hide this part a little bit but see https://stripe.com/docs/payments/save-and-reuse-cards-only?platform=web#web-create-payment-intent-off-session ; you would have a page on your site to complete the payment that you direct the customer to

Ill have a look at this now. If i have any questions in the future, do i create a new comment on the channel or do i just reply to this thread?

it's best to ask in the main channel! (we generally close these threads after about an hour of inactivity to keep things manageable)