#nikolay-3ds

hi there, do you have a test site which we can take a look at?

unfortunately not ☹️

can you share how you're passing back the url and opening the iframe then? I'll try to see what i can spot from the relevant code snippets

Sorry for long answer.

I pass the url through confirming payment_intent request and passing variable "return_url".

After that I take the info about stripe auth url and pass it to my iframe

<div class="BzgREOsItcYagNi4FdM7">
    <form method="POST" target="three_ds_iframe"
          action="https://hooks.stripe.com/redirect/authenticate/src_1KoMkJJOqWMVy2CgXovzuCjB?client_secret=src_client_secret_ICZIHw7gpQprRDpgnvoI8uRO&amp;source_redirect_slug=test_YWNjdF8xS2g2ZGxKT3FXTVZ5MkNnLF9MVk5WelEwaEh6bjNnUGhPU085b0ZHS3pOS1F6YnRU0100cNdykMfV">
        <input type="hidden" name="TermUrl"
               value="https://my.own.site/hanlder/v1/three_ds?order_id=my_order_id&amp;return_url=https%3A%2F%2Fwww.my.ows.site%2F3ds_confirm.html">
    </form>
    <iframe class="PlCVRajtfVlOO5sG40aj" name="three_ds_iframe"
            src="https://hooks.stripe.com/redirect/authenticate/src_1KoMkJJOqWMVy2CgXovzuCjB?client_secret=src_client_secret_ICZIHw7gpQprRDpgnvoI8uRO&amp;source_redirect_slug=test_YWNjdF8xS2g2ZGxKT3FXTVZ5MkNnLF9MVk5WelEwaEh6bjNnUGhPU085b0ZHS3pOS1F6YnRU0100cNdykMfV"
            data-test-id="3ds-iframe"></iframe>
</div>

are these two different examples?

no, i want to say

I make a request from my backend to stripe backend

POST https://api.stripe.com/v1/payment_intents/pi_id/confirm
Content-Type: application/x-www-form-urlencoded
Authorization: auth_info

payment_method=pm_id&return_url=https://my.own.site/urls/orders/3ds_callback&use_stripe_sdk=false&payment_method_options[card][request_three_d_secure]=any

then I have a response and send info about three_ds callback to my frontend

"next_action": {
    "redirect_to_url": {
      "return_url": "https://my.own.site/threeDS_callback",
      "url": "https://hooks.stripe.com/redirect/authenticate/src_1KidzvJOqWMVy2CgnSvYJHOR?client_secret=src_client_secret_7clnnti3ZxZnCkPyLHluYs8c&source_redirect_slug=test_YWNjdF8xS2g2ZGxKT3FXTVZ5MkNnLF9MUFN2enZTQmtKMFYwcllYUHRqUlpOSUh5MHhtQ3Fu0100T8jUnZmB"
    },
    "type": "redirect_to_url"
  }

My frontend make a on it's side post form like this

<div class="BzgREOsItcYagNi4FdM7">
    <form method="POST" target="three_ds_iframe"
          action="https://hooks.stripe.com/redirect/authenticate/src_1KoMkJJOqWMVy2CgXovzuCjB?client_secret=src_client_secret_ICZIHw7gpQprRDpgnvoI8uRO&amp;source_redirect_slug=test_YWNjdF8xS2g2ZGxKT3FXTVZ5MkNnLF9MVk5WelEwaEh6bjNnUGhPU085b0ZHS3pOS1F6YnRU0100cNdykMfV">
        <input type="hidden" name="TermUrl"
               value="https://my.own.site/hanlder/v1/three_ds?order_id=my_order_id&amp;return_url=https%3A%2F%2Fwww.my.ows.site%2F3ds_confirm.html">
    </form>
    <iframe class="PlCVRajtfVlOO5sG40aj" name="three_ds_iframe"
            src="https://hooks.stripe.com/redirect/authenticate/src_1KoMkJJOqWMVy2CgXovzuCjB?client_secret=src_client_secret_ICZIHw7gpQprRDpgnvoI8uRO&amp;source_redirect_slug=test_YWNjdF8xS2g2ZGxKT3FXTVZ5MkNnLF9MVk5WelEwaEh6bjNnUGhPU085b0ZHS3pOS1F6YnRU0100cNdykMfV"
            data-test-id="3ds-iframe"></iframe>
</div>

👀

And I expecting to see threeDS page opened in iframe.

But it looks like iframe trying to open url from src

src="https://hooks.stripe.com/redirect/authenticate/src_1KoMkJJOqWMVy2CgXovzuCjB?client_secret=src_client_secret_ICZIHw7gpQprRDpgnvoI8uRO&source_redirect_slug=test_YWNjdF8xS2g2ZGxKT3FXTVZ5MkNnLF9MVk5WelEwaEh6bjNnUGhPU085b0ZHS3pOS1F6YnRU0100cNdykMfV"

And get the result on the screenshot of console.

And instead of input to insert threeds verification code, in my opened iframe i see this pic

i'm probably going to need a while to think about this. I see you've written in to Stripe Support. If you don't mind, is it okay if i respond to you on that ticket after looking into this? I don't want you to wait around without a fixed end time when you can be doing something else.