Re: [w3c/webpayments-payment-apps-api] Why does a Payment App need to see the line items? (#91) from Adrian Hope-Bailie on 2017-02-28 (public-webpayments-specs@w3.org from March 2017)

From: Adrian Hope-Bailie <notifications@github.com>
Date: Tue, 28 Feb 2017 09:43:18 -0800
To: w3c/webpayments-payment-apps-api <webpayments-payment-apps-api@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3c/webpayments-payment-apps-api/issues/91/283111711@github.com>

This was discussed in the Payment Apps Taskforce call today. 

## Proposal

1. Add a flag to [PaymentMethodData](https://w3c.github.io/browser-payment-api/#dom-paymentmethoddata) that allows a merchant to explicitly request that line items are shared with the payment app if that payment method is selected.
2. Default this to `false` (do not share) if not provided

### Example

```javascript
const methodData = [{
  supportedMethods: ["basic-card"],
  filters: {
    supportedNetworks: ['aFamousBrand', 'aDebitNetwork'],
    supportedTypes: ['debit']
  },
  data: {}
}, {
  supportedMethods: ["bobpay.com"],
  shareLineItems: true,
  data: {
    merchantIdentifier: "XXXX",
    bobPaySpecificField: true
  }
}];
const request = new PaymentRequest(methodData, details, options);
```

### Discussion

There was not consensus that this address user privacy concern but it does appear (as has been stated in this thread and was pointed out by @alyver on the call) that many payment methods REQUIRE this data.

We did not discuss how browsers might handle this or if they would prompt users to allow this data to be shared.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/webpayments-payment-apps-api/issues/91#issuecomment-283111711

Received on Wednesday, 1 March 2017 01:51:58 UTC