I want to make a donation system for a twitch-like platform.
And I want to use Stripe.
I already make lot of searches. And I know that I need to add an external account for every streamer who want to be paid (by donation).
But I can't add External account, I have this message :
The provided key 'rk_live_********************2TSc' does not have the
required permissions for this endpoint on account
'acct_***************d'. This is a restricted API key, but the
required permissions are not available for use by restricted keys.
Am I good with using "External Account" ?
Can you help me with this message please ?
You cannot create external accounts with restricted keys (ie. the keys that start with rk_live_) that only have a subset of permissions. You need to use your secret keys (ie. the key that starts with sk_live_). You can get this from your dashboard here:
https://dashboard.stripe.com/account/apikeys
Related
Is it possible to get DocuSign Signing groups from account ABC and create same Signing GROUP in account XYZ? We know that we can create signing groups using DocuSign API. Our main concern is that We want to create/import Signing Groups with same SigningGroupID.
As we are saving Signing group ID in our application processes and we want to use same Signing group IDs in some other user account.
Could you please confirm us if this is possible and will not cause any issues?
Is there any other option available for us?
Signing groups are an account object. That means they are part of a specific account. They use a numeric identifier (up to 1,000,000) that is unique inside the account and is generated randomly when you use the API to create a new one.
There's no way to set the group ID directly.
Your best solution is to have a mapping table in your database that maps your groups to your accounts. Another solution is to first make an API call to obtain (list) all the groups and find the one you want and its ID. That solution is less recommended as it requires an extra API call each time.
We have created a connect account using the API in Stripe. We followed the documentation here. The custom connected account can either be a "company" or an "individual" or "non-profit". We would also like to enable the user to change the tax_id (EIN) programatically. We use the following code
custom_account_rep = stripe.Account.modify(
stripe_custom_account_id,
company = {'tax_id' : center_ein} )
The following error is displayed.
stripe error : InvalidRequestError(message='You cannot change `company[tax_id]` via API if an account is verified.
It is clear that we cannot enable the user to modify the account once it is verified. How do we get the "status" that the account is "verified"?
The account object does not have any field called "status". Not sure if this is relevant, but we also have an external bank account linked to this custom connect account. The external bank account has a status (and its value is "new"). Please help.
At the moment there isn't just one field that you can check for the status of company verification for a Custom Connect account. For your specific use case, you can check a few fields on the Account object to see whether company.tax_id has been verified or not.
Check requirements.currently_due and requirements.past_due. If company.tax_id is in either of these arrays, that means the tax ID needs to be set for the Account (because it was either never provided, or was provided and failed verification).
Check requirements.pending_verification. If company.tax_id is in this array, that means it is currently going through verification and can still be updated.
You can read more about business verification here: https://stripe.com/docs/connect/identity-verification-api#determining-if-identity-or-business-verification-is-needed
I have a question regarding base URI with user and account objects in REST API.
To summarize:
one user can have multiple account attached,
one account is attached to one company,
without OAuth, we can get base URI by calling API /login_information,
with OAuth, we can get base URL by calling API /oauth/userinfo
Is it right ?
If yes, can we say that one base URI is attached to one account and will be the same for every user attached to this account ?
In addition, is it possible to get base URI by calling an endpoint dedicated to the account, and not the user ?
Thanks in advance for your answer.
Everything you write is correct, you understand this pretty well.
The reason you cannot use an account API endpoint to find the baseUrl is the architecture of how this works. The DocuSign code is deployed to many data-centers, but it's the same code. The same APIs run on na2, eu1, au etc. etc. So they are not aware directly that they have a different baseUri than other data centers.
The OAuth endpoints are different/separate and can get information from all data centers.
OAuth is always about a specific user, because you cannot login directly to an account, but you have your own user that you use. An account is shared, but each user has their own password.
The only way to do something remotely similar to what you're asking is if you use the DocuSign organization feature.
You can then use the DocuSign Admin API to obtain information about the organization and the accounts in it. That information includes a siteId that tells you if it's on na1, na2, eu1 etc. Using that you can construct the baseURI.
Lots of limitations to this, so not sure that would help you.
I am using the Cloud Identity basic and I am admin.
my domain and it's subdomain have many consumer account, which we got to know via "Transfer tool for unmanaged users" . Now the question is :-
how to manage / add consumer accounts via API, as I am looking for the automated process
but details available below link is hard stop for me.
https://cloud.google.com/solutions/migrating-consumer-accounts-to-cloud-identity-or-g-suite
https://support.google.com/cloudidentity/answer/7044710?hl=en&ref_topic=7558419
it is going to create the account with overriding the existing managed id. which I do not want , I want to send email to user for account migration [which is possible via admin UI but seems not with API, but in my organization manual addition of many users is not ]
1) Is there a way by google API to identify adding user, is a consumer account for my domain and subdomain or not? some way or the another , so new user and consumer accounts can be managed separately.
2) I do not want to "Require users to rename their existing account." as it will be more difficult for my org and unmanaged.
Any direction will be welcome , and let me know if more information needed.
https://cloud.google.com/solutions/migrating-consumer-accounts-to-cloud-identity-or-g-suite
https://support.google.com/cloudidentity/answer/7044710?hl=en&ref_topic=7558419
Unfortunately, there is currently no public API to initiate a user transfer or to query whether a given email address is used by a consumer user account. This functionality is currently only exposed via the UI in the transfer tool for unmanaged users.
However, if you have a large number of consumer accounts that you need to send transfer, then Support might be able to help you.
I am a part of a group trying to create an Amazon Mechanical Turk Requester task. We'd like to either have a group account or have multiple accounts with access to the same project. I've been looking around and cannot find a way to do this. Is it possible to make this happen without sharing a single account?
This may not be perfect, but if you're an MTurk API customer, you can use Identity and Access Management (IAM) to have a single account (with a credit card on file) but provide multiple sets of API credentials (AWS Access Keys and Secret Keys) that you can provide to reach person/group that wants to use the account. This isn't a perfect solution because:
It is only applicable to the MTurk Application Programming Interface (API)
There aren't quotas or controls to limit spending on one person vs. another
Each account can still access each other's HITs (it isn't separate accounts)
You can learn more about IAM support in MTurk here: https://blog.mturk.com/introducing-mechanical-turk-api-support-for-iam-credentials-8f2de8cd6afb
There is not currently a way to do something similar in the Requester Website (requester.mturk.com).
Hope that helps a little.