Mar 15, 2026 · 09:42
feat(payments): implement Stripe Connect OAuth flow
feat/stripe-connect@a8f2e1c
Suggestions
- ›Verify that the OAuth callback URL is whitelisted in Stripe Dashboard settings to prevent redirect failures in production.
- ›Consider adding rate limiting to the /api/stripe/connect endpoint to prevent abuse during the OAuth handshake.
Change Map
| Affected File | Description | Risk |
|---|---|---|
| src/services/stripe/connect.ts +142 | New Stripe Connect client wrapper | direct |
| src/api/stripe/callback.ts +87 | OAuth callback handler | direct |
| src/middleware/auth.ts +23-8 | Added Stripe session validation | indirect |
| src/types/payment.ts +45 | Payment type definitions | indirect |
Commit Message
feat(payments): implement Stripe Connect OAuth flow - Add StripeConnectService with createAccountLink and handleOAuthCallback - Register /api/stripe/connect and /api/stripe/callback routes - Extend auth middleware to validate Stripe-connected sessions - Add ConnectedAccount, PaymentIntent, PayoutStatus types