To enhance transaction security and protect your customers, Stripe has implemented restrictions on card tokenisation using publishable keys on client-side surfaces. These measures help reduce the risk of fraudulent activity.

By default, tokenising a card with publishable keys is only allowed for the following Stripe-provided integrations: Stripe Web Elements, Checkout, and Mobile Elements.

If you’ve built your own custom front-end which collects card details and passes them to the Stripe API using your publishable key, you need to go to the dashboard’s integration settings page. Change the settings to Enable card data collection with a publishable key without using Stripe's pre-built UI elements.