t1k:web:commerce:payment-integration
| Field | Value |
|---|---|
| Module | commerce |
| Version | 1.7.0 |
| Effort | medium |
| Tools | — |
Keywords: checkout, Paddle, payment, Polar, SePay, Stripe, subscriptions, VietQR, webhooks
How to invoke
Section titled “How to invoke”/t1k:web:commerce:payment-integration[provider] [task]Payment Integration
Section titled “Payment Integration”Production-proven payment processing with SePay (Vietnamese banks), Polar (global SaaS), Stripe (global infrastructure), Paddle (MoR subscriptions), and Creem.io (MoR + licensing).
When to Use
Section titled “When to Use”- Payment gateway integration (checkout, processing)
- Subscription management (trials, upgrades, billing)
- Webhook handling (notifications, idempotency)
- QR code payments (VietQR, NAPAS)
- Software licensing (device activation)
- Multi-provider order management
- Revenue splits and commissions
Platform Selection
Section titled “Platform Selection”| Platform | Best For |
|---|---|
| SePay | Vietnamese market, VND, bank transfers, VietQR |
| Polar | Global SaaS, subscriptions, automated benefits (GitHub/Discord) |
| Stripe | Enterprise payments, Connect platforms, custom checkout |
| Paddle | MoR subscriptions, global tax compliance, churn prevention |
| Creem.io | MoR + licensing, revenue splits, no-code checkout |
Quick Reference
Section titled “Quick Reference”references/sepay/overview.md- Auth, supported banksreferences/sepay/api.md- Endpoints, transactionsreferences/sepay/webhooks.md- Setup, verificationreferences/sepay/sdk.md- Node.js, PHP, Laravelreferences/sepay/qr-codes.md- VietQR generationreferences/sepay/best-practices.md- Production patterns
references/polar/overview.md- Auth, MoR conceptreferences/polar/products.md- Pricing modelsreferences/polar/checkouts.md- Checkout flowsreferences/polar/subscriptions.md- Lifecycle managementreferences/polar/webhooks.md- Event handlingreferences/polar/benefits.md- Automated deliveryreferences/polar/sdk.md- Multi-language SDKsreferences/polar/best-practices.md- Production patterns
Stripe
Section titled “Stripe”references/stripe/stripe-best-practices.md- Integration designreferences/stripe/stripe-sdks.md- Server SDKsreferences/stripe/stripe-js.md- Payment Elementreferences/stripe/stripe-cli.md- Local testingreferences/stripe/stripe-upgrade.md- Version upgrades- External: https://docs.stripe.com/llms.txt
Paddle
Section titled “Paddle”references/paddle/overview.md- MoR, auth, entity IDsreferences/paddle/api.md- Products, prices, transactionsreferences/paddle/paddle-js.md- Checkout overlay/inlinereferences/paddle/subscriptions.md- Trials, upgrades, pausereferences/paddle/webhooks.md- SHA256 verificationreferences/paddle/sdk.md- Node, Python, PHP, Goreferences/paddle/best-practices.md- Production patterns- External: https://developer.paddle.com/llms.txt
Creem.io
Section titled “Creem.io”references/creem/overview.md- MoR, auth, global supportreferences/creem/api.md- Products, checkout sessionsreferences/creem/checkouts.md- No-code links, storefrontsreferences/creem/subscriptions.md- Trials, seat-basedreferences/creem/licensing.md- Device activationreferences/creem/webhooks.md- Signature verificationreferences/creem/sdk.md- Next.js, Better Auth- External: https://docs.creem.io/llms.txt
Multi-Provider
Section titled “Multi-Provider”references/multi-provider-order-management-patterns.md- Unified orders, currency conversion
Scripts
Section titled “Scripts”scripts/sepay-webhook-verify.js- SePay webhook verificationscripts/polar-webhook-verify.js- Polar webhook verificationscripts/checkout-helper.js- Checkout session generator
Key Capabilities
Section titled “Key Capabilities”| Platform | Highlights |
|---|---|
| SePay | QR/bank/cards, 44+ VN banks, webhooks, 2 req/s |
| Polar | MoR, subscriptions, usage billing, benefits, 300 req/min |
| Stripe | CheckoutSessions, Billing, Connect, Payment Element |
| Paddle | MoR, overlay/inline checkout, Retain (churn prevention), tax |
| Creem.io | MoR, licensing, revenue splits, no-code checkout |
Implementation
Section titled “Implementation”See references/implementation-workflows.md for step-by-step guides per platform.
General flow: auth → products → checkout → webhooks → events
Gotchas
Section titled “Gotchas”- Idempotency-key required on every payment retry — without it, double-charging is a bounded UUID set away from production. Use
BoundedUUIDSet(FIFO, max 10k entries) for in-memory, plus a server-side dedup table for cross-restart. - Per-provider 401 retry table differs — Stripe: 3 retries with jitter; PayPal: 1 retry then human; Adyen: never retry. Code one per-provider table.
- Webhook signature verification is per-payload, NOT per-request — Stripe rotates signing secrets; cache + grace period both prev and current.
- 3DS challenge windows time out — bound the challenge wait to 5 minutes server-side or risk dangling order rows.
- SCA/PSD2 requires re-authentication on saved cards in EU — silent decline if your flow assumes US-style frictionless reuse.