-
-
Notifications
You must be signed in to change notification settings - Fork 710
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support for Strong Customer Authentication (SCA) in Stripe integration - Part 2 #4170
Comments
Regarding current item 2: "User flow for admin to set unauthenticated card info for orders, with proper notification when the card cannot be saved because authentication is required" It is still possible that SCA authentication will not be needed for the customer or the payment. But If it is required at this point, you are not able to proceed to save the card on Stripe because the customer cannot authenticate. (Unless we want shop owners to be able to enter authentication info for customers, e.g. when they are communicating directly. I suspect this would be violating the regulation though.) |
Notes from running tests on our payment flows using test cards specified by Stripe to trigger error flows:
|
@kristinalim has done a great job of understanding the subscriptions workflow. For the most part subscriptions will work fine once the above has been completed such that we create PaymentIntent objects everytime we save a card. There is also the option to ensure that all existing subs can simply continue using this: Sometimes a bank can re-request 3DSecure Auth for an existing saved card that has previously submitted 3D secure Auth (and has a PaymentIntent created). In this case we need to have a flow that notifies the customer in advance and ensures that they can re-enter the authorisation with minimal disruption to their order. This is a tricky flow to manage and I think it doesn't need to be completed with any urgency because UK are the only EU folks to be using Stripe for Subs and UK has an 18month extension. |
I have now closed epic #4180 as the integration with PaymentIntents is complete. |
I do believe this is now done :) #6683 came up in the course of testing and should be fixed soon as well. |
Description
Banks will start declining payments that have not been SCA-authenticated in countries that will require this. We need to start supporting SCA, and thankfully Stripe makes this easy/manageable.
See migration guidelines here.
See discussion here #3927 and the articles here.
Issues:
Acceptance Criteria
The problem will be solved when there is:
The text was updated successfully, but these errors were encountered: