Nadiya-public-private-key-validation | Stripe Developers | Page 1

final forge Jan 19, 2022, 4:07 PM

#

Hello 👋
I'm not sure about this. Could you provide a bit more context about the usecase for this?

lament badger Jan 19, 2022, 4:09 PM

#

we're trying to build a platform where users on this site can create public landing page for their customers, so that there customers can pay through the payment form.

so, each user in this platform are associated with a public and private key pair, they've to add those keys from a form.

#

so, to prevent invalid keys , and unexpected errors while the customer doing a payment, we would like to validate the keys before it

final forge Jan 19, 2022, 4:13 PM

#

hmm thats an interesting usecase.
Unfortunately, I don't think we have any APIs that supports validation of the keys.
Have you looked into using Stripe Connect? Yours would be an idea use case

lament badger Jan 19, 2022, 4:18 PM

#

yes, we were using stripe connect, but the client not interested to use stripe connect due to following reason

they don't want to manage users payments(they just want to provide the services, and don't want to handle user's-and their customers payment related queries)
"if there is a very bad users who create some troubles on the platform with their customer endusers, then the credit of the platformer from Stripe company decreases and Stripe has the right to suspend the platformer's account, which in turn means the suspension of entire app system."

this was what they said, and i'm not sure about the 2nd point to be honest.

final forge Jan 19, 2022, 4:21 PM

#

I see.
Ideally if they don't want to interface directly with the users, Destination charges fit their needs. https://stripe.com/docs/connect/charges#types

lament badger Jan 19, 2022, 4:21 PM

#

we were using destination charges with connect

final forge Jan 19, 2022, 4:22 PM

#

got it

lament badger Jan 19, 2022, 4:22 PM

#

but still , those create all the payment logs and everything in the platform account right?
only short summary in the user's stripe connect account

#

the platformer (client) don't want to have any interaction with the payment related activities of user and their customer

#

ok, back to question. if we call any other available api with a wrong secret key, it'll return any useful error message and i should make use of that message?

final forge Jan 19, 2022, 4:34 PM

#

I guess you could make some no-op API calls like listing customers or something and check the call succeeds or not

lament badger Jan 19, 2022, 5:04 PM

#

what about the public key?

pine adder Jan 19, 2022, 5:07 PM

#

Hi Nadiya. Taking over for hanzo. Give me a moment to catch up

#

So you can do the same with a public key. A good API call that works with the publishable key is this: https://stripe.com/docs/api/tokens/create_pii

#Nadiya-public-private-key-validation