Adding the payment source
How to add a Stripe payment source to an order
Problem
You have a pending order with a selected payment method that is associated with a Stripe payment integration. You want to give your customer the possibility to select one of the payment sources available from that gateway — e.g. a credit card — and use it to process the payment.
Solution
To add a Stripe payment source to an order, you have to create a Stripe payment source object and associate it with the order, as described in the Checkout guide.
Adding a payment sourceExample
1. Get the payment source type
The following request retrieves the attributes of the payment method associated with the order identified by the "qaMAhZkZvd" ID:
2. Create the payment source and associate it with the order
The following request creates a Stripe payment object and associates it with the order identified by the "qaMAhZkZvd" ID:
Additional notes
Client secret generation
At the moment of the Stripe payment source creation, a PaymentIntent
object is created on the server-side — see Stripe documentation for any reference. Its client_secret
is returned in the related attribute of the response and can be used in your client to securely confirm the PaymentIntent
object and complete the payment workflow.
Asynchronous authorization
Stripe payments are asynchronous. When a Commerce Layer's stripe_payment
is created and associated with an order, Stripe immediately creates a payment intent using the current order's total_amount
as the amount
to be authorized. Since the payment's authorization is based on a webhook, depending on your checkout implementation, two scenarios may occur:
the order is placed before the authorization is created
the order is placed after the authorization is created
Authorization check on order placement
To prevent any issues in case of an attempt to place the order before the authorization is created by the Stripe webhook we introduced a control on order placement to check if the payment has been authorized. If not, we automatically refresh the payment source and try to force the authorization. In case, for any reason (e.g. the payment intent has not been confirmed client-side), the payment can't be authorized the order placement fails.
Payment source nullification
If a Stripe payment is authorized but the related order is not placed yet, the associated payment source cannot be changed. Anyway, if the order is placed after the authorization is created by the Stripe webhook there is a time interval where the order status is still pending and so the order is still editable (i.e. the customer can add or remove items from the cart, changing its amount). If this happens the order amount and the succeded authorization amount may differ, resulting in an error. To prevent that scenario previously created Stripe's payment sources are nullified in case of order edit/refresh (or if the payment method associated with the order is changed) and must be recreated. In this case, if the payment has already been authorized, the related authorization is voided and the order's payment status is set back from authorized to paid.
In view of this, make sure to set the payment source as the last step of your checkout implementation.
In some special cases (e.g. to give the user the possibility to change previously inserted credit card details) you may want to force the payment source nullification, even if the order has not been edited/refreshed and/or the related payment is already authorized. To do that, you can leverage the _nullify_payment_source
attribute of the order and manually trigger the payment source nullification, along with the related authorization void (if any) and payment status reset.
More to read
See our documentation if you need more information on how to retrieve an order, include associations, create or update a Stripe payment. See our Checkout guide for more details on how to place an order.
Placing the orderLast updated