- From: Peter Linss <notifications@github.com>
- Date: Thu, 10 Feb 2022 13:53:07 -0800
- To: w3ctag/design-reviews <design-reviews@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Thursday, 10 February 2022 21:53:19 UTC
I expect this is likely covered somewhere, but I'm missing it. The spec/explainer talks mostly about the merchant, customer, and account provider, and only briefly mentions payment processors. When I've built e-commerce sites, I've always interfaced directly with a single payment processor, and never directly with an account provider. I believe this approach to be very common (at least in the US) and want to make sure that this has little friction both for the user and developer. As a customer, I'm fine with registering an authentication mechanism with my account provider (either the bank directly or the credit card company). If the site I'm trying to make a purchase at is using a payment processor, will the payment processor be able to contact the account provider to authenticate me (I accept the back-channel communication is likely outside the scope of the spec) or will the site need to talk directly to the account provider? or will I as a customer need to re-register my authentication mechanism with the payment provider? (and presumable every new payment processor I encounter?) -- Reply to this email directly or view it on GitHub: https://github.com/w3ctag/design-reviews/issues/675#issuecomment-1035560375 You are receiving this because you are subscribed to this thread. Message ID: <w3ctag/design-reviews/issues/675/1035560375@github.com>
Received on Thursday, 10 February 2022 21:53:19 UTC