Reply to: 3D Secure/Taking credit card payments

Am currently using Stripe for taking payments on a website. Got some news from them in the last few months about changes due to SCA coming into effect. Didn't take much effort to "upgrade" - just needed to ensure the WordPress payment plugin supported SCA, and it was good to go.

Guess it depends on who your payment gateway provider is, and how your website works with it.

It depends on how it was implemented, again this was a few years ago, but if not using a 3rd party, i remember you had to change your code, so, it vaguely went, push data to card provider, they responded with some tokens and if 3d secure was required. You needed to handle the various 3d secure error codes. If multiple payment providers you may need functionality to switch this on and off for each provider.

Then you had to display an iframe and pass in the token details. You had to provide a call back url so you could then update the transaction your side.

I think you needed a bit of javascript then to handle displaying the success or failure of payment.

But if you implemented a 3rd party gateway then it may have been as simple as clicking on the checkbox for 3d secure.

Again, this was a few years ago, so it may have changed.

It's not 80 days work but one person, talking to card people, delays, getting things setup, programming, testing and 4 weeks sounds possible. 4 people, 4 weeks sounds a piss take unless there is something we don't know.

Well if you can't do it without their involvement and it comes down to cost. Your options are to suck it up, as the "overcharge" is all internal and ClientCo is not actually losing out. Or if it's blowing a hole in your budget, rise the concern with the project board or w/e. 80 man-days is definitely excessive for the work involved, but it's not uncommon for line managers to exaggerate effort, either to "look busy" or to plug holes in their budgets.

Yup pretty sure the 3DS page will come from card processor, last place I had involvement with this it was a check box to turn it on and page from the card processor was presented in an iframe, not sure if this would still be the case.

I think this is exactly the problem - generally they are trying to overcharge us - 80 days at £700 per day - which is £56k - just for implementing a payment gateway.....

Do you have a choice? Seems to me like intra-company political issue, more than a technical one.

Every time I have been prompted for 3D secure by a merchant, the prompt was looking as coming from the card processor, rather than the merchant website. I don't see how it could take much more than installing an update or ticking a box on the merchant side to turn it on.

Yeah we are asking them to confirm the 4 roles they need and justify each weeks work (e.g. what will they work on in week 1 for 37.5 hours) - we have no problem with it taking 4 weeks but we will not be using 4 people for the full 4 weeks each -so loathed to pay the £30k they are asking for.

This is my view and thus why 4 people for 4 weeks is too much - I get the feeling we are being charged for them learning how to do it...

Standard api for MasterCard

What are they charging you for / should be seemless


Sent from my iPhone using Contractor UK Forum

Are you sure they have not just put down 4 people involved in that project and it's expected to take 4 weeks. So a UI developer may take a couple of days to change the UI, another developer to do the main bulk of the work. Another does DB changes, testing etc?

I do remember 3D secure being a pain in the arse for a clients perm developers. But they had multiple credit card providers.

It might take four weeks with release cycles etc, however it won't take 80 days worth of effort unless you are paying Accenture or the like!

Nope think gateway provide is MasterCard...

it is our internal 'digital/agile' team who are quoting that - generally thought is they are taking the piss and it is probably right....

Who is your gateway provider? And are they the ones who are telling you it will take 80 days?