Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Acknowledge order of webhook events #189

Open
waiting-for-dev opened this issue Feb 23, 2023 · 4 comments
Open

Acknowledge order of webhook events #189

waiting-for-dev opened this issue Feb 23, 2023 · 4 comments
Assignees
@waiting-for-dev
Labels
enhancement New feature or request
Milestone
v5.1

Comments

@waiting-for-dev
Copy link
Contributor

There's no guarantee that webhook events will arrive in the correct order. For instance, we could get authorization before a failure but be the reverse instead.

Partially replaces #160
@waiting-for-dev waiting-for-dev added the enhancement New feature or request label Feb 23, 2023
@waiting-for-dev waiting-for-dev mentioned this issue Feb 23, 2023
Closed
@loicginoux
Copy link
Contributor

the doc refering this https://stripe.com/docs/webhooks/best-practices#event-ordering
the solution for this seems tricky.
the event creation date (the event payload contains a created_at) is not a good source of truth. The last created is not necessarily the correct "final" state.
A solution I have heard is to have internally a state machine of the object in relation to the event (an intent or a charge) that follow the state machine of the stripe object, and validate that a trnasition is possible given an event received...
Not sure that this method covers all cases. I'll domore research on it in the next few days

@waiting-for-dev
Copy link
Contributor Author

Thanks for your feedback, @loicginoux!

the event creation date (the event payload contains a created_at) is not a good source of truth. The last created is not necessarily the correct "final" state.

Hmm, are you sure? I understand that they're generated in order, but the delivery doesn't need to happen in that same order. From the docs:

Stripe does not guarantee delivery of events in the order in which they are generated.

Good point about maintaining an internal state machine.

@loicginoux
Copy link
Contributor

I had a chat with a developer in the process of releasing Stripe payment for his company, he is more advanced in the implementation and gave us few technical advises after he had support from a Stripe Customer Solution Engineer. The Stripe team member advised him to do it this way. I still need to investigate more and we will definitely need to confirm that with Stripe support as well. I'll let you know when I have more information

@loicginoux loicginoux mentioned this issue Feb 24, 2023
Closed
@elia elia added this to the v5 milestone Mar 8, 2023
@waiting-for-dev
Copy link
Contributor Author

The solution here is not trivial and challenging to tackle without adding other infrastructure. An application should:

  • Receive the webhook.
  • Return a 200 to Stripe.
  • Validate the operation to perform (like the state machine proposed by @loicginoux, but we can also leverage the Solidus' state machine can_? methods).
  • If not possible, schedule for retry with whatever worker processor is used.

Like in #188 (comment), allowing applications to configure the adapter for Omnes subscribers would at least open gates for per-use-case implementations.

@elia elia modified the milestones: v5, v5.1 Apr 27, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@waiting-for-dev waiting-for-dev

Labels
enhancement New feature or request
Projects
None yet
Milestone
v5.1
Development

No branches or pull requests
3 participants
@elia @waiting-for-dev @loicginoux