Ghost icon indicating copy to clipboard operation
Ghost copied to clipboard
verified publisher icon TryGhost

Prevent extraneous subscriptions

Open 9larsons opened this issue 1 year ago • 2 comments

ref https://linear.app/tryghost/issue/ONC-38/

  • Stripe checkout webhooks should only create members for products that exist in Ghost
  • Ghost makes assumptions about the default product that do not stand up to Stripe having extraneous subscription products

We found that members were being created when customers used Stripe for subscriptions that are for products unrelated to Ghost (shared Stripe account). This problem is two-fold: 1) these members have not been to/know of the Ghost site and 2) the subscription caused the member to be linked to the default subscription while using the price of the paid for subscription, causing errors in MRR reporting.

9larsons avatar May 23 '24 02:05 9larsons

@cmraible If you want to repro, I found the following the easiest/cleanest:

  • open dashboard.stripe.com and create a new account (it can be helpful to rename it)
  • stripe login with Stripe CLI to link to the account you made
  • get a clean db yarn knex-migrator reset && yarn knex-migrator init
  • run ghost with yarn dev --stripe
  • connect the fresh site to Stripe w/ test mode; you'll need to link to the Account you created, so don't skip the form. I previously had to link a ton of info to Stripe, including bank account which is obnoxious.. you may need to do the same. Unless I'm missing something, their test mode is a little finicky and requires full details before being able to use everything. note: if you do this once in Stripe, when linking Stripe to Ghost you can copy over details; I cannot seem to find this option within Stripe when creating a new Account and trying to fill details they're asking for
  • make sure your Stripe account is toggled to Test Mode
  • create a product in Stripe
  • create a checkout link for the product
  • complete the checkout (4242 4242 4242 4242 test card)

You can use this to repro the issue on main, then test w/ the changes using the same setup - don't need to redo everything.

9larsons avatar May 29 '24 13:05 9larsons

@9larsons thanks for the repro instructions! I was able to reproduce this locally on main, and then I ran it on this branch and the member was not created, so it seems to be working as expected for me. I got a bit wrapped up in other work today so haven't had time to really review the code or consider any other edge cases, but I can at least confirm that it's working for me too! I'll plan to take a more detailed look through this tomorrow AM.

cmraible avatar May 30 '24 01:05 cmraible

Closing this for now as we want to come at this from a different angle later.

ErisDS avatar Jul 23 '24 16:07 ErisDS