Overview

Create a Stripe SetupIntent for the authenticated customer and return its client_secret. Your front end passes that secret to Stripe.js to confirm and save a card off-session — including any SCA / 3D Secure step — without charging it. The customer is taken from the JWT, so no customer fields are needed in the request.

Example:

curl --request POST \
  --url 'https://www.pelcro.com/api/v1/sdk/customer/setupIntent?site_id=1232' \
  --header 'Authorization: Bearer <JWT>' \
  --header 'Accept: application/json'

Important Behaviors

• Requires the account to have an active Stripe connected account; otherwise the endpoint returns 422.
• payment_method_types reflects the gateway's enabled capabilities — card always, plus bacs_debit or us_bank_account when those are enabled on the account.
• The response is a Stripe session-shaped object; for card setup the relevant fields are client_secret and status (most other fields are null).