stripe & mastercard SecureID

[samvara]

Hello,

I am using the "native"/on board stripe solution. Since yesterday people who are using a Mastercard experience problems.

Once they enter the data correctly and submit the information, a new tab opens. For a short time you see the Mastercard Identity check-window loading, then the tab is closed and the shop redirects to
https://<<SHOPURL>>/confirm/stripe?payment_intent=pi_xxxxx&payment_intent_client_secret=pi_xxxxx_secret_xxxxx&source_type=card

There the headline CONFIRMATION is shown, below
two buttons: "change payment" & "Try again". Meaning payment did not go through and clients do not know what to do.

Does anyone know why this is happening and how this can be solved?

Thanks
samvara.

[aimeos]

Seems like there's no successful response from Stripe after the redirect to the Stripe server for 3DSecure checks. Can you investigate a bit more what exactly happens?

[nowrap]

Hello and thanks for your reply.

We tried to insvestigate this issue in order tp provide more details.

First we used our dev-instance. This system is configured with a stripe test account and the omnipay setting testrmode is set to yes.

For testing 3DS and 3DS2 we used this cards:
https://stripe.com/docs/payments/3d-sec ... e-ds-cards

Everytime the checkout says it will redirect to the payment provider and does so automatically.
So far so good, i guess.

Stripe shows different confirmation pages for 3DS and 3DS2.

If i click "fail", a callback is triggered to the aimeos /shop/confirm/stripe? page with the buttons already mentioned: "change payment" & "Try again"

If i do a new checkout process and clicking "complete" on the stripe page, i am getting also a callback with the same url - only some parameter values are different. But it shows mainly also the two buttons: "change payment" & "Try again"
Only sometimes it completes the order and show the "complete /shop/confirm/" page.

How does aimeos or omnipay analyzes the callback link?

Regards
.nowrap

[nowrap]

I digged a bit more.

The callback url runs through:

• vendor/aimeos/aimeos-laravel/src/Aimeos/Shop/Controller/CheckoutController.php

• vendor/aimeos/ai-client-html/src/Client/Html/Checkout/Confirm/Standard.php

The confirmAction() calls the "checkout/confirm".

Within the init() the $orderItem->getStatusPayment() is -1 (PAY_UNFINISHED)

[aimeos]

Are the updatePush() or updateSync() methods from the base Omnipay class called?
- https://github.com/aimeoscom/ai-payment ... y.php#L489
- https://github.com/aimeoscom/ai-payment ... y.php#L533

[nowrap]

Thx for the reply. I will look into it.

[nowrap]

It seems that there is an omnipay-stripe issue:
https://github.com/thephpleague/omnipay ... issues/225

[nowrap]

I added dumps() to the updatePush() or updateSync() methods.
But none are printed.

The redirect url from stripe look like this:
/shop/confirm/stripe?payment_intent=pi_<id>&payment_intent_client_secret=pi_<id2>_secret_<id3>&source_redirect_slug=test_<long_id>

// EDIT
But it's reaching updateSync() in vendor/aimeos/ai-payments/src/MShop/Service/Provider/Payment/Stripe.php
$order->getStatusPayment() is also -1 here

// EDIT 2
I provoked an error. This is showing the stack trace:

[nowrap]

I also tested the stripe payment without our custom payment decorator.
But it still behaves the same.

[nowrap]

I found this aimeos/ai-payments github issue:
https://github.com/aimeoscom/ai-payments/issues/37

It's the same line i was testing with.
But forcing the if statement to become true throws a follow up exception with user context.