Page MenuHomePhabricator
Create Task
Maniphest T386085

Italian ApplePay rejections
Closed, ResolvedPublic
Actions

Description

@krobinson forwarded a report about recent ApplePay failures here. Preliminary digging shows 154 affected donations failing on fraud scores. However, the fraud scores seem to be tripping due to a default minfraud score being assigned due to the minfraud API call failing. I see the following in the logs for these donations:

Feb 11 11:11:08 payments1006 adyen_gateway_fraud: 228919160:228919160.1 "addRiskScore" An error occurred during minFraud query. Assigning MinFraudErrorScore.
Feb 11 11:11:08 payments1006 adyen_gateway_fraud: 228919160:228919160.1 region must be an ISO 3166-2 subdivision code

This suggests the country code isn't being sent or received correctly.

The default minfraud score especially hurts us with ApplePay, as we're already assigning a default CVV and AVS score due to the payment method, leading to a straight rejection.

To find examples, hop on to frlog1002 and run logdog "FINAL STATUS: 'pending-poke:reject' - visa, apple"

A large majority are Italian donors from today.

Let's figure out what's wrong with the API call. I think the pending transaction resolver will help us here, but that also needs follow-up to confirm.

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
Only send ISO 3166-2 codes as 'region' to minfraudmediawiki/extensions/DonationInterfacemaster+79 -1
Customize query in gerrit

Related Objects

Event Timeline

jgleeson created this task.Feb 11 2025, 12:00 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptFeb 11 2025, 12:00 PM
jgleeson triaged this task as High priority.Feb 11 2025, 12:01 PM
krobinson added a subscriber: MBeat33.Feb 11 2025, 12:12 PM
AKanji-WMF moved this task from Triage to Chaos Crew Backlog on the Fundraising-Backlog board.Feb 11 2025, 2:47 PM
Ejegg subscribed.Feb 11 2025, 2:56 PM

Apple Pay is giving us a full name for the 'state_province', which for other payment methods we always collect via a dropdown that uses the ISO code. So we need to either discard or map that when it's not an ISO code.

gerritbot added a comment.Feb 11 2025, 3:57 PM

Change #1118832 had a related patch set uploaded (by Ejegg; author: Ejegg):

[mediawiki/extensions/DonationInterface@master] Only send ISO 3166-2 codes as 'region' to minfraud

https://gerrit.wikimedia.org/r/1118832

gerritbot added a project: Patch-For-Review.Feb 11 2025, 3:57 PM
Ejegg moved this task from Backlog to Ready for Review on the Fundraising Tech - Chaos Crew board.Feb 11 2025, 3:58 PM
gerritbot added a comment.Feb 11 2025, 5:18 PM

Change #1118832 merged by jenkins-bot:

[mediawiki/extensions/DonationInterface@master] Only send ISO 3166-2 codes as 'region' to minfraud

https://gerrit.wikimedia.org/r/1118832

Maintenance_bot removed a project: Patch-For-Review.Feb 11 2025, 5:30 PM
ReleaseTaggerBot added a project: MW-1.44-notes (1.44.0-wmf.17; 2025-02-18).Feb 11 2025, 6:00 PM
Ejegg added a comment.Feb 11 2025, 7:14 PM

OK, the fix for this went out about an hour ago, and I haven't seen any more minfraud errors since then.

MBeat33 added a comment.Feb 11 2025, 8:07 PM

Thank you @Ejegg

Ejegg moved this task from Ready for Review to Done on the Fundraising Tech - Chaos Crew board.Feb 11 2025, 8:35 PM
XenoRyet closed this task as Resolved.Feb 24 2025, 8:40 PM
Damilare mentioned this in T386137: 2025 Sprint C Priorities / End of sprint summary.Feb 25 2025, 9:08 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits