1. I need to customize the Stripe plugin that already exists for HikaShop.
[[login to view URL]]
My webiste: [login to view URL]
I sell digital goods (Serials using HikaSerial)
The [login to view URL] file in the plugin is using a small customization from line 59. I attached a copy of the file in this email.
I'm not an expert in PHP, so I just copied part of the code from [login to view URL] and looks like this: [login to view URL] (click the button view demo). So I would like to use the way it looks now and not the HTML form from the original Stripe plugin as is better looking.
I would like that HikaShop would retrieve the last 4 numbers of the customer's credit card to show it in the confirmation email that results from HikaShop. I've seen that integration in other websites that uses Stripe.
When a payment is captured, it will put as a customer's name in the email field. And the email field will remain empty so the customer is not getting the Stripe receipt. Also, the stripe checkout is asking for the ZIP check, I would like it to be imported from the order's billing address, so the customer will need to add only the credit card number, exp date and the CVC code, but Stripe will get the rest of the info from the order's billing address to check the information.
I want to make the plugin compatible with Radar 2.0. It says: To activate, make sure your payments meet the integration requirements. So, before activate that in my account, I would like to make sure it is compatible. This is shown in my Stripe Dashboard:
I'm trying hardly to avoid fraudulent transactions in my account. I sell digital goods, so I am a target for scammers because they get my products right away. When the scammers buy with an stolen credit card, they keep the digital goods and I have to issue a refund to the original credit card owner and plus I have to pay a charge back fee of $15 to Stripe.
At the moment the system works like this: Customer purchases. Stripe's Radar detects a possible threat (not always, I would say 10% of real threats) resulting in that sometimes block the payment [when the risk is 'highest'] and the status in HikaShop will become as 'cancelled' status. When Stripe Radar considers it as risk 'elevated', Stripe puts the payment for a manual review but HikaShop marks it as 'confirmed' status and the scammer gets the digital product.
So I need that when Stripe radar consider a payment as 'elevated' will send a new status to HikaShop that we can create like i.e.: 'Pending for manual review' without confirming the order.
2. As an extra shield I discovered the [login to view URL] website, it is very good as it detects if an IP address belongs to anonymizing services as Proxies, VPN, Tor, etc. which are used to possible fraudulent transactions. Even gives you a possible fraud score based in the IP address. They have a service for filtering visitors in the website just by adding a file called [login to view URL] and to call the file by adding this in the [login to view URL] of all pages: <?php include('[login to view URL]'); ?>. The problem is that a lot of my customers they use VPNs as their companies work that way so I can't block all that is consider as a non-clean IP address, I tried it for 3 days and it resulted in that the 25% of the traffic to my website was blocked, and the sales on the website were reduced considerably.
So, my idea is to integrate the [login to view URL] service with the Stripe plugin somehow, to let Stripe capture the payment but if the IPQS service detects that is from a high-risk IP, intercept it and HikaShop to mark it as 'Pending for manual review' (New status that we will create in HikaShop).
You can check the IPQS documentation here (it is needed to create an account to view it): [login to view URL]