I want to suspend users who cancel a transfer in my app until the transfer is resolved.
I can suspend their email/username, but then they could make new ones fairly quickly. Same goes for dwolla accounts (accountid). The same even goes for browser fingerprints.
I believe that suspending the usage of a given routing / account number from the app would be the most powerful enforcement.
The thing is that the funding sources endpoint does not send these values. I am only getting IDs. Should I be able to get routing/account numbers? If so, this resolves my issue.
When it comes to ID’s, I suppose, that if someone opens two dwolla accounts, and if both accounts use the same routing number / account number combination, that the two resulting funding source IDs will be different. (Please correct me if I’m wrong, as this will resolve my issue.)
I understand that I can get the routing/account numbers by having the user enter them on my app (just as collateral data really) and then creating the funding source via the dwolla API. Although this makes my app’s onboarding process more complicated, I am willing to implement it. However, there is a possibility in which the user wants to use a funding source that he/she has already placed into their dwolla account via the dwolla platform. What happens in that case, where the app creates an already-created funding source?