I have a marketplace website with a Stripe account for processing payments. I have a number of suppliers and I have set them up using Stripe connect. After payment, the appropriate amounts are sent to the suppliers connected stripe accounts and I take a fee, sent to my main Stripe account.
The problem I have is that in my dashboard in Stripe.com when looking at my suppliers connected accounts I can see ALL of their transactions, not just the ones related to sales on my website. If they make a payment or receive money outside of my website I can see that in my Stripe.com dashboard.
The Connection (PHP)
$response = \Stripe\OAuth::token( [
'grant_type' => 'authorization_code',
'code' => $code,
] );
We are ready to go live with this site and obviously cant do so with this issue.
I am unable to find the related documentation on the stripe website. Can anyone let me know how to restrict my view to only see transactions from connected accounts that happen on my website?
This is expected for Standard Accounts - you will be able to see all of their transaction data, irrespective of what application it's coming from.
I would suggest using Express accounts (Custom is also a solution, though it's a large change integration-wise). These accounts can only have one platform, so any transaction on their account would originate from you.
https://stripe.com/docs/connect/oauth-express-accounts
Another thing you could do is delve into Stripe's new 'Stripe App' system, which might provide the best granular permissions for your accounts:
https://stripe.com/docs/stripe-apps/create-app