Authenticate Payer
                            Request to authenticate a payer, i.e. verify the identity of a cardholder. You can subsequently use the resulting authentication data when submitting a financial transaction request to prove that you have performed payer authentication.
You must first invoke the Initiate Authentication operation and where the response indicates that payer authentication is available, you must then invoke the Authenticate Payer operation with the same orderId and transactionId submitted on the Initiate Authentication operation.
To increase the likelihood of the authentication being successful, provide as much information about the payer and the transaction as possible.
If the information in the request is sufficient to allow the authentication scheme to confirm the payer's identity the response will include the authentication data (frictionless flow). Alternatively (challenge flow), it may be necessary for the payer to interact with the authentication scheme to confirm their identity (e.g. by providing a one-time password sent to them by their card issuer). In this case the response will contain an HTML excerpt that you must inject into your page. This will establish the interaction between the payer and the authentication scheme. After authentication has been completed the payer will be redirected back to your website using the URL provided by you in field authentication.redirectResponseUrl in the Authenticate Payer request.
If you are authenticating the payer when establishing a payment agreement with your payer for a series of recurring, installment or unscheduled payments you must provide details about the agreement in the agreement parameter group.
Usage Note
Using the Initiate Authenticate and Authenticate Payer operations for 3-D Secure authentication requires you to manage a variety of authentication flows and understand the 3-D Secure version 2 data flows as published by EMVCo.
A more simple alternatively is to use the gateway's threeDS.js library.
Authentication
This operation requires authentication via one of the following methods:
- Certificate authentication.
- 
                            
                                            Basic HTTP authentication as described at
                                            w3.org.
                                            Provide 'merchant.<your gateway merchant ID>' in the userid portion and your API password in the password portion.
Request
URL Parameters
Alphanumeric + additional characters
        REQUIRED
    The unique identifier issued to you by your payment provider.
This identifier can be up to 12 characters in length.
Data may consist of the characters 0-9, a-z, A-Z, '-', '_'
Min length: 1 Max length: 40String
        REQUIRED
    A unique identifier for this order to distinguish it from any other order you create.
Use this identifier when referring to this order in subsequent transactions and in retrieval operations. This value must be unique for every order you create using your merchant profile.
Data can consist of any characters
Min length: 1 Max length: 40String
        REQUIRED
    Unique identifier for this transaction to distinguish it from any other transaction on the order.
An order can have transactions representing:
- Movement of money. For example, payments and refunds.
- Validations. For example, account verification or 3-D Secure authentication of the payer.
- Undoing other transactions. For example, voiding a payment transaction.
- Chargebacks.
- Fees from your payment service provider.
If you attempt an operation and it fails (eg you try to PAY on a card with no funds), then you need a new id for each retry.
Data can consist of any characters
Min length: 1 Max length: 40Fields
Additional details for account funding transactions (order.purchaseType=ACCOUNT_FUNDING).
Account funding transactions are transactions that pull money from the sender's card account for the purpose of funding another account, the recipient's account. Depending on the type of account funding transaction you may be required to provide some or all the details in this parameter group.
Enumeration
                        
                                            OPTIONAL
                                
                Defines if the sender is a person, a commercial organization, a non-profit organization or a government
Value must be a member of the following list. The values are case sensitive.
CRYPTOCURRENCY_PURCHASE
                                        MERCHANT_SETTLEMENT
                                        OTHER
                                        PAYROLL
                                        Details about the recipient who will subsequently receive the funds that you are debiting from the sender in this transaction.
Details about the account of recipient who will subsequently receive the funds that you are debiting from the sender in this transaction.
Enumeration
                        
                                            OPTIONAL
                                
                If the recipient account type is an account with an associated card (accountFunding.recipient.account.identifierType=CARD_NUMBER) you must specify the funding method of the card.
If not provided the value is defaulted to UNKNOWN.
Value must be a member of the following list. The values are case sensitive.
CHARGE
                                        The payer has a line of credit with the issuer which must be paid off monthly.
CREDIT
                                        The payer has a revolving line of credit with the issuer.
DEBIT
                                        Funds are immediately debited from the payer's account with the issuer.
UNKNOWN
                                        The account funding method is not known. This is the default value.
String
                        
                                            OPTIONAL
                                
                The account identifier for the payment recipient's account.
For example, this may be a card number or bank account number. You must specify the type of identifier in field accountFunding.recipient.account.identifierType. The value provided will be returned masked in the response.
Data can consist of any characters
Enumeration
                        
                                            OPTIONAL
                                
                Defines the type of the recipient's account identifier that you have provided in field accountFunding.recipient.account.identifier.
If not provided the value is defaulted to OTHER.
Value must be a member of the following list. The values are case sensitive.
BANK_ACCOUNT_BIC
                                        The recipient's account identifier is a bank account number and Business Identifier Code (BIC).
BANK_ACCOUNT_IBAN
                                        The recipient's account identifier is an International Bank Account Number (IBAN).
BANK_ACCOUNT_NATIONAL
                                        The recipient's account identifier is a bank account number and a national bank identifier, for example, a routing number (RTN).
CARD_NUMBER
                                        The recipient's account identifier is a card number.
EMAIL_ADDRESS
                                        The recipient's account identifier is an email address.
OTHER
                                        The recipient's account identifier type can not be classified using any of the other categories.\n" + This is the default value
PHONE_NUMBER
                                        The recipient's account identifier is a phone number.
SOCIAL_NETWORK_PROFILE_ID
                                        The recipient's account identifier is a social network profile ID.
STAGED_WALLET_USER_ID
                                        The recipient's account identifier is a wallet user ID.
String
                        
                                            OPTIONAL
                                
                Country of the recipient.
Data can consist of any characters
Date
                        
                                            OPTIONAL
                                
                The date of birth of the recipient in yyyy-mm-dd format.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
String
                        
                                            OPTIONAL
                                
                First name of the recipient.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                Last name of the recipient.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The post code or zip code of the recipient.
Data can consist of any characters
Boolean
                        
                                            OPTIONAL
                                
                Defines if the sender and recipient of the account funding payment are the same or not.
If not provided the value is defaulted to FALSE.
JSON boolean values 'true' or 'false'.
Enumeration
                        
                                            OPTIONAL
                                
                Defines if the sender is a person, a commercial organization, a non-profit organization or a government
Value must be a member of the following list. The values are case sensitive.
COMMERCIAL_ORGANIZATION
                                        GOVERNMENT
                                        NON_PROFIT_ORGANIZATION
                                        PERSON
                                        A series of related orders that execute one commercial agreement.
For example, linking the orders for a series of recurring payments (a mobile phone subscription), split tenders (one payment using two cards), or when the merchant offers to take payments by a series of installments (hire purchase).
Enumeration
                        
                                            OPTIONAL
                                
                Indicates if all the payments within the agreement use the same amount or if the amount differs between the payments.
The field must be provided for recurring payment agreements.
Value must be a member of the following list. The values are case sensitive.
FIXED
                                        All payments in the recurring payment agreement have the same amount. Examples include magazine subscriptions or gym memberships.
VARIABLE
                                        The amount for the payments within the recurring payment agreement differs between payments. Examples include usage-based charges like utility or phone bills.
Date
                        
                                            OPTIONAL
                                
                Date at which your agreement with the payer to process payments expires.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
String
                        
                                            OPTIONAL
                                
                Your identifier for the agreement you have with the payer to process payments.
When you collect cards from your payers and store them for later use, you must provide an agreement ID when you use the stored values for:
- Recurring payments: you have an agreement with the payer that authorizes you to automatically debit their account at agreed intervals for fixed or variable amounts. For example, gym membership, phone bills, or magazine subscriptions.
- Installment payments: you have an agreement with the payer that authorizes you to process multiple payments over an agreed period of time for a single purchase. For example, the payer purchases an item for $1000 and pays for it in four monthly installments.
- Unscheduled: you have an agreement with the payer that authorizes you to process future payments when required. For example, the payer authorizes you to process an account top-up transaction for a transit card when the account balance drops below a certain threshold.
Data can consist of any characters
Decimal
                        
                                            OPTIONAL
                                
                The maximum amount for a single payment in the series as agreed with the payer under your agreement with them.
The amount must be provided in the currency of the order.
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
Integer
                        
                                            OPTIONAL
                                
                The minimum number of days between payments agreed with the payer under your agreement with them.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Integer
                        
                                            OPTIONAL
                                
                The number of merchant-initiated payments within the recurring payment agreement.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Enumeration
                        
                                            OPTIONAL
                                
                The frequency of the payments within the series as agreed with the payer under your agreement with them.
Value must be a member of the following list. The values are case sensitive.
AD_HOC
                                        The agreement if for payments on an ah-hoc basis.
DAILY
                                        The agreement if for a daily payment.
FORTNIGHTLY
                                        The agreement if for a fortnightly payment.
MONTHLY
                                        The agreement if for a monthly payment.
OTHER
                                        The agreement is for payments according to a schedule other than the ones listed in the other enumeration values for this field.
QUARTERLY
                                        The agreement if for a quarterly payment.
TWICE_YEARLY
                                        The agreement if for a payment twice a year.
WEEKLY
                                        The agreement if for a weekly payment.
YEARLY
                                        The agreement if for a yearly payment.
Enumeration
                        
                                            OPTIONAL
                                
                The type of commercial agreement that the payer has with you.
Specify the agreement type when you have provided a value for agreement.id and this payment is the first in a series of payments. The default value is OTHER.
The gateway will use the value you specify for subsequent payments in the series.
Value must be a member of the following list. The values are case sensitive.
INSTALLMENT
                                        An agreement where the payer authorizes the payment for a single purchase to be split into a number of payments processed at agreed intervals. For example, pay for a purchase in six monthly installments.
OTHER
                                        An agreement where the merchant wants to link related payments for any purpose other than processing recurring, installment, or unscheduled payments. For example, split tender payments.
RECURRING
                                        An agreement where the payer authorizes the merchant to process payments for recurring bills or invoices at agreed intervals (for example, weekly, monthly). The amount might be fixed or variable.
UNSCHEDULED
                                        An agreement where the payer authorizes the merchant to automatically deduct funds for a payment for an agreed purchase when required (unscheduled). For example, auto top-ups when the account value falls below a threshold.
String
                        = AUTHENTICATE_PAYER
                                    FIXED
                                
                Any sequence of zero or more unicode characters.
Information about how the payer's identity is verified.
For example, using 3-D Secure authentication.
This parameter group include payer authentication options available to you, parameters you need to perform payer authentication for an available method, and the results of payer authentication.
Information about payer authentication using 3-D Secure authentication version 2.
Information provided by the 3-D Secure Software Development Kit (SDK) that is used by an app on the payer's device to enable 3-D Secure authentication of the payer to be performed in-app.
You must populate the fields in this parameter group when you authenticate the payer in-app using 3-D Secure authentication version 2.
String
                        REQUIRED
                                        
                A unique identifier for the app on the payer's device.
The 3-D Secure SDK generates this identifier each time the app is installed or updated.
This field corresponds to EMVCo field sdkAppID
Data can consist of any characters
String
                        REQUIRED
                                        
                Information about the payer's device collected and encrypted by the 3-D Secure SDK.
The data is a JSON Web Encryption (JWE) object in JSON format. When using the REST/JSON gateway API, express this as a JSON string (i.e. the embedded quotes will be escaped).
This field corresponds to EMVCo field sdkEncData
Data can consist of any characters
JSON Text
                        REQUIRED
                                        
                A public key generated by the 3-D Secure SDK.
This key is used to establish a secure session between the 3DS SDK and the issuer's Access Control Server (ACS) when the payer is required to be presented with an authentication challenge.
The key is a JSON Web Key (JWK) object in JSON format. When using the REST/JSON gateway API, express this as a JSON string (i.e the embedded quotes will be escaped).
This field corresponds to EMVCo field sdkEphemPubKey
Data is valid Json Format
Enumeration
                        
                                            OPTIONAL
                                
                The User Interface (UI) formats that the payer's device supports.
These are the formats that can be used to render the screens presented to the payer during an authentication challenge.
You only need to provide this value if you only support one of these formats.
This field corresponds to EMVCo data element sdkInterface in the field deviceRenderOptions.
Value must be a member of the following list. The values are case sensitive.
HTML
                                        The device supports HTML format.
NATIVE
                                        The device supports the UI format native to the payer's device.
String
                        REQUIRED
                                        
                An identifier of the vendor and version of the 3-D Secure SDK assigned by EMVCo.
This field corresponds to EMVCo field sdkReferenceNumber
Data can consist of any characters
Integer
                        
                                            OPTIONAL
                                
                The duration (in seconds) available to the payer to authenticate.
Will default to 900 if not provided. Note: The value will be rounded up to the nearest minute.
This field corresponds to EMVCo field sdkMaxTimeout
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
String
                        REQUIRED
                                        
                A unique identifier assigned by the 3-D Secure SDK for the transaction.
This field corresponds to EMVCo field sdkTransID
Data can consist of any characters
Comma separated enumeration
                        
                                            OPTIONAL
                                
                Indicates the UI types which the SDK supports for displaying authentication challenges within the app.
A comma separated list of the payer authentication methods that you will accept for this payment.
You only need to provide this value if all of these values are not supported.
Note: OTHER_HTML is only supported when authentication.3ds2.sdk.interface allows a HTML UI format.
This field corresponds to EMVCo data element sdkUiType in the field deviceRenderOptions.
Value must be one or more comma separated members of the following list. The values are case sensitive.
TEXT
                                        The payer is asked to enter text into a field displayed on the UI. For example, ask the payer to enter a One Time Password sent to their registered mobile phone number.
SINGLE_SELECT
                                        The payer is asked to select a single option from a number of presented options. For example, ask the payer if they want a One Time Password to be sent to either their email address or mobile phone number registered with their issuer.
MULTI_SELECT
                                        The payer is asked to select multiple options from a number of presented options. For example, ask the payer to select valid responses to a question.
OUT_OF_BAND
                                        The payer is presented with screens rendered by an out-of-band service during an authentication challenge, For example, the payer is asked to confirm the payment from their banking app.
OTHER_HTML
                                        The payer is presented with an authentication challenge using other mechanisms supported in HTML but not in the native UI format. For example, the payer is asked to confirm an image presented on the screen.
Enumeration
                        
                                            OPTIONAL
                                
                Indicates if you want the payer to be presented with an authentication challenge for this transaction.
You can use this to support local mandates or your risk tolerance. For example, you may prefer that a challenge is always performed when you store card details on file.
If you do not provide a value, the gateway will use NO_PREFERENCE. If there is no payer present (for example, recurring payments), then the gateway will ignore this field and use NO_CHALLENGE.
Note: 'challenge' means requiring the payer to take action to identify themselves, for example, entering a password.
Value must be a member of the following list. The values are case sensitive.
CHALLENGE_MANDATED
                                        The merchant requires that the payer is presented with an authentication challenge.
CHALLENGE_PREFERRED
                                        The merchant prefers that the payer is presented with an authentication challenge.
NO_CHALLENGE
                                        The merchant prefers that the payer is not presented with an authentication challenge.
NO_PREFERENCE
                                        The issuer determines whether or not the payer should be presented with an authentication challenge. The merchant does not have a preference.
REQUEST_WHITELISTING
                                        Tells the issuer that you prefer them to present the payer with a challenge and that you want them to invite the payer to add you to their list of trusted merchants. If the payer whitelists you, they can skip authentication for any future payments. You will be able to tell whether the payer has added you to their list of trusted merchants by looking at authentication.psd2.whitelistStatus in the authentication response following the completion of the challenge.
String
                        
                                            OPTIONAL
                                
                Description of the goods being purchased.
If supported, this description will be displayed on the authentication UI presented to the payer.
Data can consist of any characters
This parameter group is only applicable if you are subject to the Regulatory Technical Standards (RTS) requirements for Strong Customer Authentication (SCA) under the Payment Services Directive 2 (PSD2) regulations in the European Economic Area.
It provides details about SCA exemptions under PSD2.
Enumeration
                        
                                            OPTIONAL
                                
                Indicates why this payment qualifies for exemption from Strong Customer Authentication (SCA) under the Payment Services Directive 2 (PSD2).
Note:
- For recurring payments provide the RECURRING_PAYMENT value only if the amount is the same. If the amount varies, provide MERCHANT_INITIATED_TRANSACTION instead.
Value must be a member of the following list. The values are case sensitive.
AUTO
                                        If either a LOW_RISK or LOW_VALUE_PAYMENT exemption applies to the transaction, it is automatically claimed by the gateway on behalf of the merchant.
LOW_RISK
                                        Exemption is claimed because the acquirer has a low fraud rate.
LOW_VALUE_PAYMENT
                                        Exemption is claimed as the amount is below 30 Euro.
MERCHANT_INITIATED_TRANSACTION
                                        The transaction is excluded as it was initiated by the merchant based on an agreement with the payer. For example, a recurring payment (for a varied or fixed amount), installment payment, or account top-up. In these cases, the payer is not present and cannot participate in an authentication interaction. Merchant initiated transactions are only applicable to subsequent transactions on the order and are out of scope of the PSD2 RTS on Strong Customer Authentication (SCA). The payer must be authenticated during the first transaction that established the agreement.
NONE
                                        An exemption is not claimed for this transaction. The merchant requires Strong Customer Authentication (SCA) be performed.
RECURRING_PAYMENT
                                        The transaction is exempt as it was initiated by the merchant based on an agreement with the payer for a recurring payment for a fixed amount. This value is only applicable to subsequent transactions on the order. In this case, the payer is not present and cannot participate in an authentication interaction. The payer must be authenticated during the first transaction that established the agreement.
SECURE_CORPORATE_PAYMENT
                                        The transaction is exempt as it is a corporate or Business-to-Business (B2B) payment performed using dedicated payment processes and protocols that are not available to consumers and offer at least equivalent security levels.
WHITELISTED_MERCHANT
                                        The transaction is exempt because the payer has added you to the list of their trusted merchants (as maintained by the issuer).
Url
                        
                                            OPTIONAL
                                
                The URL to which you want to redirect the payer after completing the payer authentication process.
This will be a URL on your website, with the URL encoded as defined in RFC3986. This means special characters such spaces, hyphens, etc must be encoded.
You must provide this URL, unless you are certain that there will be no interaction with the payer.
Ensure that the URL begins with 'https' and is longer than 11 characters.
Details of the payer's billing address.
The payer's billing address.
This data may be used to qualify for better interchange rates on corporate purchase card transactions.
String
                        
                                            OPTIONAL
                                
                The city portion of the address.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The name of the company associated with this address.
Data can consist of any characters
Upper case alphabetic text
                        
                                            OPTIONAL
                                
                The 3 letter ISO standard alpha country code of the address.
Data must consist of the characters A-Z
Alphanumeric + additional characters
                        
                                            OPTIONAL
                                
                The post code or zip code of the address.
Data may consist of the characters 0-9, a-z, A-Z, ' ', '-'
String
                        
                                            OPTIONAL
                                
                The state or province of the address.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The three character ISO 3166-2 country subdivision code for the state or province of the address.
Providing this field might improve your payer experience for 3-D Secure payer authentication.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The first line of the address.
For example, this may be the street name and number, or the Post Office Box details.
Note: The transaction response will contain a concatenation of street and street2 data. If the concatenated value is more than the maximum field length, street2 data will be truncated.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The second line of the address (if provided).
Note: This field will be empty in the transaction response, as street2 data will be concatenated into the street field.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                A transient identifier for the request, that can be used to match the response to the request.
The value provided is not validated, does not persist in the gateway, and is returned as provided in the response to the request.
Data can consist of any characters
Information associated with the customer's account.
Information about the customer's account with you
Information about how you authenticated the payer.
A record that ties together a customer's account on your website or application with a card which they use, using a service such as Mastercard Identity Check Express (IDCX).
By performing payer authentication for that card, and recording that against the secured login, it is possible to achieve a frictionless payer authentication flow for future transactions by showing that they have securely logged in to the merchant using that account. To demonstrate this, you should provide the customer.account.authentication.data, customer.account.authentication.method and customer.account.authentication.time fields.
Enumeration
                        
                                            OPTIONAL
                                
                Used to perform additional behaviour relating to the association between the customer account and their card.
Value must be a member of the following list. The values are case sensitive.
AUTHENTICATION
                                        You are submitting a payment or non-payment Authentication request with evidence of strong customer authentication you have already performed to be validated against a previously created record, in order to obtain frictionless authentication for the payer.
REGISTRATION
                                        You are submitting evidence of strong customer authentication performed by your website or application using a suitable, certified authentication mechanism, in order to record an association between this customer login and the 3DS authenticated cardholder.
String
                        
                                            OPTIONAL
                                
                The data returned by an authentication service that you used to authenticate the customer when they logged on to your site/service.
For example, a FIDO token provided by a federated identity provider.
Data can consist of any characters
Enumeration
                        
                                            OPTIONAL
                                
                The method you used to authenticate the payer.
Value must be a member of the following list. The values are case sensitive.
CUSTOMER_ACCOUNT_LOGIN
                                        The merchant authenticated the payer using a credential system (for example,password) that they manage.
FEDERATED_IDENTITY_LOGIN
                                        The merchant authenticated the payer using a federated identity management service such as Google or Facebook
FIDO_AUTHENTICATION
                                        The merchant authenticated the payer using hardware, mobile, or biometrics based authentication that is compliant with FIDO Alliance specifications.
ISSUER_ACCOUNT_LOGIN
                                        The merchant authenticated the payer using a credential system for example, password) managed by the issuer.
NONE
                                        The merchant did not authenticate the payer.
THIRD_PARTY_ACCOUNT_LOGIN
                                        The merchant authenticated the payer using a credential system managed by a third party.
DateTime
                        
                                            OPTIONAL
                                
                The data and time you authenticated the payer using the method specified in customer.account.authentication.method.
You must provide the authentication time if you authenticated the payer.
An instant in time expressed in ISO8601 date + time format - "YYYY-MM-DDThh:mm:ss.SSSZ"
Information about the payer's historical activity related to their customer account with you.
Integer
                        
                                            OPTIONAL
                                
                Number of times the account holder has tried to add or change their card over the last 24 hours.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Integer
                        
                                            OPTIONAL
                                
                The number of transactions (successful and abandoned) that have been requested in the last year for all payment methods stored against this customer account.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Date
                        
                                            OPTIONAL
                                
                The date the payer created an account with you.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Information about the payer authentication performed for a previous transaction with you.
String
                        
                                            OPTIONAL
                                
                The unique transaction identifier used by the issuer's Access Control Server (ACS) to identify the transaction.
If you are processing a recurring payment, then provide the transaction acsTransactionId for the transaction where the payer was authenticated.
Data can consist of any characters
Base64
                        
                                            OPTIONAL
                                
                The authentication token obtained as the result of a previous authentication request.
Data is Base64 encoded
DateTime
                        
                                            OPTIONAL
                                
                The date and time the payer was authenticated for the prior transaction.
If you are processing a recurring payment, then provide the time and date for the transaction where the payer was authenticated.
An instant in time expressed in ISO8601 date + time format - "YYYY-MM-DDThh:mm:ss.SSSZ"
String
                        
                                            OPTIONAL
                                
                The transaction ID of a previous Authenticate Payer request on the order, which the gateway can retrieve and use instead of you providing the data explicitly in the customer.account.history.issuerAuthentication.authenticationToken, customer.account.history.issuerAuthentication.type and customer.account.history.issuerAuthentication.time and customer.account.history.issuerAuthentication.acsTransactionId fields.
You should provide this if you are performing an authentication request to obtain a new authentication token to replace one which is no longer valid due to age or details such as the amount of the transaction having changed.
Data can consist of any characters
Enumeration
                        
                                            OPTIONAL
                                
                The method used to authenticate the payer for a prior transaction with you.
Value must be a member of the following list. The values are case sensitive.
3DS_FRICTIONLESS
                                        3DS authentication was performed without payer interaction.
3DS_CHALLENGE
                                        3DS authentication was performed and the payer was challenged for additional information.
ADDRESS_VERIFICATION
                                        The issuer verifed the billing address provided by the payer. 3DS authentication was not used.
OTHER
                                        The issuer verifed the payer using another method.
Date
                        
                                            OPTIONAL
                                
                The date the payer's account with you was last updated.
For example, they changed address details or changed card details.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Date
                        
                                            OPTIONAL
                                
                The date the payer last changed the password for their account with you.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Integer
                        
                                            OPTIONAL
                                
                The number of transactions (successful and abandoned) that have been requested in the last 24 hours for all payment methods stored against this customer account.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Date
                        
                                            OPTIONAL
                                
                The date you first shipped goods to the payer's shipping address provided in the shipping.address parameter group.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Boolean
                        
                                            OPTIONAL
                                
                Have you experienced suspicious or fraudulent activity on the account in the past.
JSON boolean values 'true' or 'false'.
String
                        
                                            OPTIONAL
                                
                Your identifier for the payer's account with you.
This should be an immutable identifier, rather than the customer's name, email or such data that could be changed by the customer.
Data can consist of any characters
Email
                        
                                            OPTIONAL
                                
                The email address of the customer.
The field format restriction ensures that the email address is longer than 3 characters and adheres to a generous subset of valid RFC 2822 email addresses.
Ensures that the email address is longer than 3 characters and adheres to a generous subset of valid RFC 2822 email addresses
String
                        
                                            OPTIONAL
                                
                The payer's first name.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The payer's last or surname.
Data can consist of any characters
Telephone Number
                        
                                            OPTIONAL
                                
                The payer's mobile phone or cell phone number in ITU-T E123 format, for example +1 607 1234 5678
The number consists of:
- '+'
- country code (1, 2 or 3 digits)
- 'space'
- national number ( which may embed single spaces characters for readability).
Data consists of '+', country code (1, 2 or 3 digits), 'space', and national number (which may embed single space characters for readability)
Telephone Number
                        
                                            OPTIONAL
                                
                The payer's phone number in ITU-T E123 format, for example +1 607 1234 456
The number consists of:
- '+'
- country code (1, 2 or 3 digits)
- 'space'
- national number ( which may embed single spaces characters for readability).
Data consists of '+', country code (1, 2 or 3 digits), 'space', and national number (which may embed single space characters for readability)
Information about the device used by the payer for this transaction.
String
                        
                                            OPTIONAL
                                
                The User-Agent header of the browser the customer used to place the order.For example, MOZILLA/4.0 (COMPATIBLE; MSIE 5.0; WINDOWS 95)
You must provide a value in this field if you are performing 3-D Secure authentication of the payer and set authentication.channel = PAYER_BROWSER.
Data can consist of any characters
Detailed information about the payer's browser.
If you are using 3-D Secure authentication to authenticate the payer, then this information is used by the issuer's Access Control Server (ACS) to identify the capabilities of the payers browser so that it can render content appropriately when authenticating the payer.
You must provide values for fields in this parameter group if you are performing 3-D Secure authentication of the payer and set authentication.channel = PAYER_BROWSER.
Enumeration
                        
                                            OPTIONAL
                                
                Dimensions of the challenge window (in width x height in pixels) displayed to the payer during 3D-Secure authentication.
This must be provided for authentication operations where authentication.channel is PAYER_BROWSER.
Value must be a member of the following list. The values are case sensitive.
250_X_400
                                        390_X_400
                                        500_X_600
                                        600_X_400
                                        FULL_SCREEN
                                        String
                        
                                            OPTIONAL
                                
                The content of the Accept request-header field as sent from the payer's browser.
This is used to determine which content types are supported by the browser.
This must be provided for authentication operations where authentication.channel is PAYER_BROWSER.
Data can consist of any characters
Integer
                        
                                            OPTIONAL
                                
                The bit depth (in bits per pixel) of the color palette for displaying images.
You obtain this value from the screen.colorDepth property of the payer's browser.
This must be provided for authentication operations where authentication.channel is PAYER_BROWSER.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Boolean
                        
                                            OPTIONAL
                                
                Indicates whether or not the payer's browser supports Java.
You obtain this value from the navigator.javaEnabled property of the payer's browser
This must be provided for authentication operations where authentication.channel is PAYER_BROWSER.
JSON boolean values 'true' or 'false'.
Boolean
                        
                                            OPTIONAL
                                
                Indicates whether or not the payer's browser supports JavaScript.
You can determine this by setting the relevant value in a form to false, and then attempting to update it to true using JavaScript.
JSON boolean values 'true' or 'false'.
String
                        
                                            OPTIONAL
                                
                The language supported for the payer's browser as defined in IETF BCP47.
You obtain this value from the navigator.language property of the payer's browser.
This must be provided for authentication operations where authentication.channel is PAYER_BROWSER.
Data can consist of any characters
Integer
                        
                                            OPTIONAL
                                
                The total height of the payer's browser screen in pixels.
You obtain this value from the screen.height property of the payer's browser
This must be provided for authentication operations where authentication.channel is PAYER_BROWSER.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Integer
                        
                                            OPTIONAL
                                
                The total width of the payer's browser screen in pixels.
You obtain this value from the screen.width property of the payer's browser
This must be provided for authentication operations where authentication.channel is PAYER_BROWSER.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Browser Time Zone Offset
                        
                                            OPTIONAL
                                
                Time difference between UTC time and the Cardholder browser local time, in minutes.
The time zone offset is the difference, in minutes, between UTC and local time. Note that this means that the offset is positive if the local time zone is behind UTC and negative if it is ahead. For example, for time zone UTC+10:00 (Australian Eastern Standard Time, Vladivostok Time, Chamorro Standard Time), -600 would be presented.
This must be provided for authentication operations where authentication.channel is PAYER_BROWSER.
Browser time zone offset between -840 to +840.
String
                        
                                            OPTIONAL
                                
                The IP address of the device used by the payer, in nnn.nnn.nnn.nnn format.
Data can consist of any characters
Additional information about the external token repository you are configured with.
These fields are MANDATORY for MerchantLink merchants and must not contain sensitive data.
String
                        
                                            OPTIONAL
                                
                Provide the site code required to save card details against a token.
For example: '{"siteCode":"BNE"}'.
Data can consist of any characters
Information about the order associated with this transaction.
Decimal
                        
                                            OPTIONAL
                                
                The total amount for the order. This is the net amount plus any surcharge.
If you provide any sub-total amounts, then the sum of these amounts (order.itemAmount, order.taxAmount, order.shippingAndHandlingAmount, order.cashbackAmount, order.gratuityAmount), minus the order.discountAmount must equal the net amount.
The value of this field in the response is zero if payer funds are not transferred.
Either Amount or netAmount must be provided
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
Upper case alphabetic text
                        REQUIRED
                                        
                The currency of the order expressed as an ISO 4217 alpha code, e.g. USD.
Data must consist of the characters A-Z
Information about a price reduction you have applied to the order.
For example, you may apply discounts for trade, employees, bulk purchase, or a sales promotion.
Decimal
                        
                                            OPTIONAL
                                
                The total amount of the discount you have applied to the order.
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
String
                        
                                            OPTIONAL
                                
                The code you use to identify the reason for the discount.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                A description of your reason for the discount.
Data can consist of any characters
Decimal
                        
                                            OPTIONAL
                                
                The total item amount for the order.
If you do not provide this value but provide line item data, then this amount is calculated as the sum of the item.quantity times the item.unitPrice for all the line items (total item amount).
If you provide both this value and line item data, then the order.itemAmount MUST equal the total item amount.
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
Decimal
                        
                                            OPTIONAL
                                
                The amount payable for the order before surcharging is applied.
If you specify a net amount the gateway will calculate the surcharge for you. Alternatively, you can specify the surcharge amount (order.surchargeAmount) yourself.
Either Amount or netAmount must be provided
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
Enumeration
                        
                                            OPTIONAL
                                
                Indicates the purchase of specific types of goods or services.
You must provide a value if your Merchant Category Code (MCC) is one of the following:
6051 (Quasi Cash – Merchant or Non-Financial Institutions – Foreign Currency, Non-Fiat Currency) and this transaction is for the purchase of cryptocurrency. Set the value to CRYPTOCURRENCY.
6211 (Securities – Brokers/Dealers) and this transaction is for the purchase of high-risk securities. Set the value to HIGH_RISK_SECURITIES.
6012 (Merchandise and Services—Customer Financial Institutions) or 6051 (Non-Financial Institutions – Foreign Currency, Non-Fiat Currency) and this transaction is for debt repayment. Set the value to DEBT_REPAYMENT.
If the transaction pulls money from an account for the purpose of crediting another account you must set purchase type to ACCOUNT_FUNDING.
If the transaction is loading funds onto a prepaid payment instrument (e.g. a prepaid card or wallet) you must set the value to PREPAID_PAYMENT_INSTRUMENT_LOADING.
You may set purchase type to OTHER for any other type of payment.
Value must be a member of the following list. The values are case sensitive.
ACCOUNT_FUNDING
                                        The transaction pulls money from an account for the purpose of crediting another account. You may be required to provide additional details about the account funding transaction in the accountFunding parameter group.
CRYPTOCURRENCY
                                        The transaction is for the purchase of a cryptocurrency.
DEBT_REPAYMENT
                                        You may be required to provide additional details about the debt repayment in the debtRepayment parameter group.
HIGH_RISK_SECURITIES
                                        The transaction is for the purchase of high-risk securities.
OTHER
                                        Use this value if the purchase type for the transaction does not fit in any of the other categories.
PREPAID_PAYMENT_INSTRUMENT_LOADING
                                        The transaction is loading funds onto a prepaid payment instrument (e.g. a prepaid card or wallet).
Decimal
                        
                                            OPTIONAL
                                
                The total shipping and handling amount for the order.
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
Contact information provided by you for printing on payer's account statements.
Descriptor address of the merchant.
String
                        
                                            OPTIONAL
                                
                The city portion of the address.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The name of the company associated with this address.
Data can consist of any characters
Upper case alphabetic text
                        
                                            OPTIONAL
                                
                The 3 letter ISO standard alpha country code of the address.
Data must consist of the characters A-Z
Alphanumeric + additional characters
                        
                                            OPTIONAL
                                
                The post code or zip code of the address.
Data may consist of the characters 0-9, a-z, A-Z, ' ', '-'
String
                        
                                            OPTIONAL
                                
                The state or province of the address.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The first line of the address.
For example, this may be the street name and number, or the Post Office Box details.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The second line of the address (if provided).
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                Descriptor name of the merchant.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                Descriptor phone number of the merchant's business.
Data can consist of any characters
Information about orders for items not yet available (pre-order) or for items previously purchased (reorder).
Boolean
                        
                                            OPTIONAL
                                
                Indicates that the purchase includes merchandise with a future availability or release date.
JSON boolean values 'true' or 'false'.
Date
                        
                                            OPTIONAL
                                
                The date that preordered items are expected to be available.
Provide this field if the payer is ordering items before you have them available for purchase.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Boolean
                        
                                            OPTIONAL
                                
                Indicates that the purchase includes merchandise that the payer has previously ordered.
JSON boolean values 'true' or 'false'.
Decimal
                        
                                            OPTIONAL
                                
                A fee charged by you to cover the cost of accepting a payment method.
This is an additional amount charged by you for accepting one payment method (e.g. a credit card) instead of another (e.g. cash).
If you provide a surcharge amount, you should include it in the total amount for the order.
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
Use this parameter group to provide a breakdown of tax types, amount per tax type, and rate per tax type included in order.taxAmount.
Decimal
                        
                                            OPTIONAL
                                
                The tax amount included in this order for the tax type.
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
Decimal
                        
                                            OPTIONAL
                                
                The tax rate (percentage) used to determine the tax amount included in this order for the tax type.
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
String
                        
                                            OPTIONAL
                                
                The type of tax included in the order amount.
The correct value as used by your acquirer may have to be provided. Contact your payment service provider for details.
Data can consist of any characters
Decimal
                        
                                            OPTIONAL
                                
                The total tax amount for the order.
If you do not provide this value but provide line item data, then this amount is calculated as the sum of the item.quantity times the item.unitTaxAmount for all the line items (total tax amount).
If you provide both this value and line item data, then the order.taxAmount MUST equal the total tax amount.
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
Information about payments that transfer money to another store of value, such as a gift card or gaming chips.
Enumeration
                        
                                            OPTIONAL
                                
                The type of value store to which money is being transferred.
The default value is NOT_A_TRANSFER.
Value must be a member of the following list. The values are case sensitive.
ACCOUNT_FUNDING
                                        Payment to add funds to the payer's account with the merchant. These funds can be used for future purchases.
NOT_A_TRANSFER
                                        This payment is not for the purpose of transferring money to another store of value. It is a payment for goods or services.
PREPAID_LOAD
                                        Payment to add funds to a prepaid card or gift card.
QUASI_CASH_TRANSACTION
                                        Payment for items that are directly convertible to cash. For example, money orders, casino gaming chips, or traveller's checks.
Decimal
                        
                                            OPTIONAL
                                
                The amount of money being transferred, in units of order.valueTransfer.currency.
The default value is order.amount
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
Upper case alphabetic text
                        
                                            OPTIONAL
                                
                The currency of the store.
If the money is being transferred to multiple currencies, then use the currency of the highest transferred value.
The default value is order.currency.
Data must consist of the characters A-Z
Integer
                        
                                            OPTIONAL
                                
                The number of prepaid or gift card being purchased.
The default value is one when you set order.valueTransfer.accountType = PREPAID_LOAD. For all other values of order.valueTransfer.accountType the default is zero.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Enumeration
                        
                                            OPTIONAL
                                
                The wallet provider used to collect the customer's payment details used for this transaction.
Value must be a member of the following list. The values are case sensitive.
CHASE_PAY
                                        Chase Pay wallet provider.
MASTERPASS_ONLINE
                                        MasterPass Online wallet provider.
SECURE_REMOTE_COMMERCE
                                        Secure Remote Commerce (SRC) wallet provider.
ASCII Text
                        
                                            OPTIONAL
                                
                Identifier of the payment session containing values for any of the request fields to be used in this operation.
Values provided in the request will override values contained in the session.
Data consists of ASCII characters
ASCII Text
                        
                                            OPTIONAL
                                
                Use this field to implement optimistic locking of the session content.
Do this if you make business decisions based on data from the session and wish to ensure that the same data is being used for the request operation.
To use optimistic locking, record session.version when you make your decisions, and then pass that value in session.version when you submit your request operation to the gateway.
If session.version provided by you does not match that stored against the session, the gateway will reject the operation with error.cause=INVALID_REQUEST.
See Making Business Decisions Based on Session Content.
Data consists of ASCII characters
Shipping information for this order.
The address to which this order will be shipped.
String
                        
                                            OPTIONAL
                                
                The city portion of the address.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The name of the company associated with this address.
Data can consist of any characters
Upper case alphabetic text
                        
                                            OPTIONAL
                                
                The 3 letter ISO standard alpha country code of the address.
Data must consist of the characters A-Z
Alphanumeric + additional characters
                        
                                            OPTIONAL
                                
                The post code or zip code of the address.
Data may consist of the characters 0-9, a-z, A-Z, ' ', '-'
Enumeration
                        
                                            OPTIONAL
                                
                Indicates whether the shipping address provided is the same as the payer's billing address.
Provide this value if you are not providing the full shipping and billing addresses, but you can affirm that they are the same or different.
The default value for this field is:
SAME - if the shipping and billing address are supplied, and all fields are the same (ignoring non-alphanumerics).
DIFFERENT - if the shipping and billing address are supplied, and at least one field is different (ignoring non-alphanumerics).
UNKNOWN - either shipping address or billing address is absent.
Value must be a member of the following list. The values are case sensitive.
DIFFERENT
                                        The shipping and billing addresses are different.
SAME
                                        The shipping and billing addresses are the same.
UNKNOWN
                                        It is not known if the shipping and billing addresses are the same.
Enumeration
                        
                                            OPTIONAL
                                
                How you obtained the shipping address.
Value must be a member of the following list. The values are case sensitive.
ADDRESS_ON_FILE
                                        Order shipped to an address that you have on file.
NEW_ADDRESS
                                        Order shipped to an address provided by the payer for this transaction.
String
                        
                                            OPTIONAL
                                
                The state or province of the address.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The three character ISO 3166-2 country subdivision code for the state or province of the address.
Providing this field might improve your payer experience for 3-D Secure payer authentication.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The first line of the address.
For example, this may be the street name and number, or the Post Office Box details.
Note: The transaction response will contain a concatenation of street and street2 data. If the concatenated value is more than the maximum field length, street2 data will be truncated.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The second line of the address (if provided).
Note: This field will be empty in the transaction response, as street2 data will be concatenated into the street field.
Data can consist of any characters
Details of the contact person at the address the goods will be shipped to.
Email
                        
                                            OPTIONAL
                                
                The contact person's email address.
The field format restriction ensures that the email address is longer than 3 characters and adheres to a generous subset of valid RFC 2822 email addresses.
Ensures that the email address is longer than 3 characters and adheres to a generous subset of valid RFC 2822 email addresses
String
                        
                                            OPTIONAL
                                
                The first name of the person to whom the order is being shipped.
Data can consist of any characters
String
                        
                                            OPTIONAL
                                
                The last name or surname of the person to whom the order is being shipped.
Data can consist of any characters
Telephone Number
                        
                                            OPTIONAL
                                
                The contact person's mobile phone or cell phone number in ITU-T E123 format, for example +1 607 1234 5678
The number consists of:
- '+'
- country code (1, 2 or 3 digits)
- 'space'
- national number ( which may embed single spaces characters for readability).
Data consists of '+', country code (1, 2 or 3 digits), 'space', and national number (which may embed single space characters for readability)
Telephone Number
                        
                                            OPTIONAL
                                
                The contact person's phone number in ITU-T E123 format, for example +1 607 1234 456
The number consists of:
- '+'
- country code (1, 2 or 3 digits)
- 'space'
- national number ( which may embed single spaces characters for readability).
Data consists of '+', country code (1, 2 or 3 digits), 'space', and national number (which may embed single space characters for readability)
Enumeration
                        
                                            OPTIONAL
                                
                Indicates whether the supplied name for the recipient of shipping matches the cardholder name.
Provide this value if you are not providing the full name or cardholder name, but you can affirm that they are the same or different.
Default value is UNKNOWN
Value must be a member of the following list. The values are case sensitive.
DIFFERENT
                                        The shipping and billing addresses are different.
SAME
                                        The shipping and billing addresses are the same.
UNKNOWN
                                        It is not known if the shipping and billing addresses are the same.
Enumeration
                        
                                            OPTIONAL
                                
                The shipping method used for delivery of this order.
Value must be a member of the following list. The values are case sensitive.
ELECTRONIC
                                        Electronic delivery.
GROUND
                                        Ground (4 or more days).
NOT_SHIPPED
                                        Order for goods that are not shipped (for example, travel and event tickets)
OVERNIGHT
                                        Overnight (next day).
PICKUP
                                        Shipped to a local store for pick up.
PRIORITY
                                        Priority (2-3 days).
SAME_DAY
                                        Same day.
Alphanumeric + additional characters
                        
                                            OPTIONAL
                                
                The post code or zip code of the address the order is shipped from.
Data may consist of the characters 0-9, a-z, A-Z, ' ', '-'
The details describing the source of the funds to be used.
For card payments these may be represented by combining one or more of the following: explicitly provided card details, a session identifier which the gateway will use to look up the card details and/or a card token. Precedence rules will be applied in that explicitly provided card details will override session card details which will override card token details. Each of these may represent partial card details, however the combination must result in a full and complete set of card details. See Using Multiple Sources of Card Details for examples.
Information about the source of funds when it is directly provided (as opposed to via a token or session).
For browser payments, the source of funds details are usually collected from the payer on the payment provider's website and provided to you when you retrieve the transaction details (for a successful transaction). However, for some payment types (such as giropay), you must collect the information from the payer and supply it here.
Details about the card.
Use this parameter group when you have sourced payment details using:
Cards: the card details entered directly or collected using a Point of Sale (POS) terminal.
Device payment methods such as Apple Pay, Android Pay, Samsung Pay or Google Pay.
Digital wallets such as Masterpass, Visa Checkout or Amex Express Checkout.
Card scheme tokens where the card was tokenized using a card scheme tokenization service such as Mastercard Digital Enablement Service (MDES).
If the payer chose to pay using a device you must provide payment details in this parameter group.
Use this parameter group when accepting payments using device payment methods such as Apple Pay, Android Pay or Samsung Pay.
Details used to process a digital payment where the payment data keys for the online payment cryptogram are provided using the 3-D Secure format.
Use this parameter group for:
-  • Device payments: if you decrypt the payment token yourself. In this case, you source these fields directly from the decrypted payment token.
 You do not need to use this parameter group if you provide the payment token in sourceOfFunds.provided.card.devicePayment.paymentToken.
- • Card scheme tokens: if you decrypt the transaction credentials yourself.
Digits
                        
                                            OPTIONAL
                                
                The Electronic Commerce Indicator generated for payments made using a device payment method.
You source this field directly from the decrypted payment token.
This field is not applicable for payments using digital wallets or card scheme tokens.
Data is a string that consists of the characters 0-9.
Base64
                        
                                            OPTIONAL
                                
                A cryptogram used to authenticate the transaction.Use this field for:
- • Device payments: source this field directly from the decrypted payment token.
- • Card scheme tokens: source this field directly from the decrypted transaction credentials.
Data is Base64 encoded
Enumeration
                        
                                            OPTIONAL
                                
                The format of the cryptogram provided for the digital payment.Use this field for:
- • Device payments: provide the cryptogram format when you decrypt the payment token and provide the payment details (including the online payment cryptogram) in the transaction request.
This field does not apply to Card Scheme token payments.
Value must be a member of the following list. The values are case sensitive.
3DSECURE
                                        The payment data keys for the online payment cryptogram are provided using the 3-D Secure format.
EMV
                                        The payment data keys for the online payment cryptogram are provided using the EMV format.
String
                        
                                            OPTIONAL
                                
                This is the payment token that you received from the device's payment SDK.
For example:
For Apple Pay - this is the PKPaymentToken.paymentData value.
For Google - this is PaymentMethodToken.getToken().
Note 1: The gateway API considers this value to be a string, NOT JSON itself. Therefore when using the JSON gateway API, this field will typically look like:
"sourceOfFunds": {
"provided": {
"card": {
"devicePayment": {
"paymentToken": "{\"data\":\"869ss19ew ....
Note 2: The gateway will ignore the currency and amount information in the payment token, and will instead use the values passed on the amount and currency fields. For normal usage, you should populate those fields with the exact same values as you got from the SDK.
Data can consist of any characters
Expiry date, as shown on the card.
Digits
                        REQUIRED
                                        
                Month, as shown on the card.
If using a scheme token this is the token expiry month.
Months are numbered January=1, through to December=12.
Data is a number between 1 and 12 represented as a string.
Digits
                        REQUIRED
                                        
                Year, as shown on the card.
If using a scheme token this is the token expiry year.
The Common Era year is 2000 plus this value.
Data is a string that consists of the characters 0-9.
String
                        
                                            OPTIONAL
                                
                The cardholder's name as printed on the card.
Data can consist of any characters
Digits
                        
                                            OPTIONAL
                                
                Credit card number as printed on the card.
Data is a string that consists of the characters 0-9.
Digits
                        
                                            OPTIONAL
                                
                Card verification code, as printed on the back or front of the card or as provided for a card scheme token.
Data is a string that consists of the characters 0-9.
Alphanumeric
                        
                                            OPTIONAL
                                
                Gateway token that uniquely identifies a card and associated details.
Data may consist of the characters 0-9, a-z, A-Z
Response
Fields
Additional details for account funding transactions (order.purchaseType=ACCOUNT_FUNDING).
Account funding transactions are transactions that pull money from the sender's card account for the purpose of funding another account, the recipient's account. Depending on the type of account funding transaction you may be required to provide some or all the details in this parameter group.
Enumeration
                        
                                            CONDITIONAL
                                
                Defines if the sender is a person, a commercial organization, a non-profit organization or a government
Value must be a member of the following list. The values are case sensitive.
CRYPTOCURRENCY_PURCHASE
                                        MERCHANT_SETTLEMENT
                                        OTHER
                                        PAYROLL
                                        Details about the recipient who will subsequently receive the funds that you are debiting from the sender in this transaction.
Details about the account of recipient who will subsequently receive the funds that you are debiting from the sender in this transaction.
Enumeration
                        
                                            CONDITIONAL
                                
                If the recipient account type is an account with an associated card (accountFunding.recipient.account.identifierType=CARD_NUMBER) you must specify the funding method of the card.
If not provided the value is defaulted to UNKNOWN.
Value must be a member of the following list. The values are case sensitive.
CHARGE
                                        The payer has a line of credit with the issuer which must be paid off monthly.
CREDIT
                                        The payer has a revolving line of credit with the issuer.
DEBIT
                                        Funds are immediately debited from the payer's account with the issuer.
UNKNOWN
                                        The account funding method is not known. This is the default value.
String
                        
                                            CONDITIONAL
                                
                The account identifier for the payment recipient's account.
For example, this may be a card number or bank account number. You must specify the type of identifier in field accountFunding.recipient.account.identifierType. The value provided will be returned masked in the response.
Data can consist of any characters
Enumeration
                        
                                            CONDITIONAL
                                
                Defines the type of the recipient's account identifier that you have provided in field accountFunding.recipient.account.identifier.
If not provided the value is defaulted to OTHER.
Value must be a member of the following list. The values are case sensitive.
BANK_ACCOUNT_BIC
                                        The recipient's account identifier is a bank account number and Business Identifier Code (BIC).
BANK_ACCOUNT_IBAN
                                        The recipient's account identifier is an International Bank Account Number (IBAN).
BANK_ACCOUNT_NATIONAL
                                        The recipient's account identifier is a bank account number and a national bank identifier, for example, a routing number (RTN).
CARD_NUMBER
                                        The recipient's account identifier is a card number.
EMAIL_ADDRESS
                                        The recipient's account identifier is an email address.
OTHER
                                        The recipient's account identifier type can not be classified using any of the other categories.\n" + This is the default value
PHONE_NUMBER
                                        The recipient's account identifier is a phone number.
SOCIAL_NETWORK_PROFILE_ID
                                        The recipient's account identifier is a social network profile ID.
STAGED_WALLET_USER_ID
                                        The recipient's account identifier is a wallet user ID.
String
                        
                                            CONDITIONAL
                                
                Country of the recipient.
Data can consist of any characters
Date
                        
                                            CONDITIONAL
                                
                The date of birth of the recipient in yyyy-mm-dd format.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
String
                        
                                            CONDITIONAL
                                
                First name of the recipient.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                Last name of the recipient.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The post code or zip code of the recipient.
Data can consist of any characters
Boolean
                        
                                            CONDITIONAL
                                
                Defines if the sender and recipient of the account funding payment are the same or not.
If not provided the value is defaulted to FALSE.
JSON boolean values 'true' or 'false'.
Enumeration
                        
                                            CONDITIONAL
                                
                Defines if the sender is a person, a commercial organization, a non-profit organization or a government
Value must be a member of the following list. The values are case sensitive.
COMMERCIAL_ORGANIZATION
                                        GOVERNMENT
                                        NON_PROFIT_ORGANIZATION
                                        PERSON
                                        A series of related orders that execute one commercial agreement.
For example, linking the orders for a series of recurring payments (a mobile phone subscription), split tenders (one payment using two cards), or when the merchant offers to take payments by a series of installments (hire purchase).
Enumeration
                        
                                            CONDITIONAL
                                
                Indicates if all the payments within the agreement use the same amount or if the amount differs between the payments.
The field must be provided for recurring payment agreements.
Value must be a member of the following list. The values are case sensitive.
FIXED
                                        All payments in the recurring payment agreement have the same amount. Examples include magazine subscriptions or gym memberships.
VARIABLE
                                        The amount for the payments within the recurring payment agreement differs between payments. Examples include usage-based charges like utility or phone bills.
Date
                        
                                            CONDITIONAL
                                
                Date at which your agreement with the payer to process payments expires.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
String
                        
                                            CONDITIONAL
                                
                Your identifier for the agreement you have with the payer to process payments.
When you collect cards from your payers and store them for later use, you must provide an agreement ID when you use the stored values for:
- Recurring payments: you have an agreement with the payer that authorizes you to automatically debit their account at agreed intervals for fixed or variable amounts. For example, gym membership, phone bills, or magazine subscriptions.
- Installment payments: you have an agreement with the payer that authorizes you to process multiple payments over an agreed period of time for a single purchase. For example, the payer purchases an item for $1000 and pays for it in four monthly installments.
- Unscheduled: you have an agreement with the payer that authorizes you to process future payments when required. For example, the payer authorizes you to process an account top-up transaction for a transit card when the account balance drops below a certain threshold.
Data can consist of any characters
Decimal
                        
                                            CONDITIONAL
                                
                The maximum amount for a single payment in the series as agreed with the payer under your agreement with them.
The amount must be provided in the currency of the order.
Data is a decimal number.
Integer
                        
                                            CONDITIONAL
                                
                The minimum number of days between payments agreed with the payer under your agreement with them.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Integer
                        
                                            CONDITIONAL
                                
                The number of merchant-initiated payments within the recurring payment agreement.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Enumeration
                        
                                            CONDITIONAL
                                
                The frequency of the payments within the series as agreed with the payer under your agreement with them.
Value must be a member of the following list. The values are case sensitive.
AD_HOC
                                        The agreement if for payments on an ah-hoc basis.
DAILY
                                        The agreement if for a daily payment.
FORTNIGHTLY
                                        The agreement if for a fortnightly payment.
MONTHLY
                                        The agreement if for a monthly payment.
OTHER
                                        The agreement is for payments according to a schedule other than the ones listed in the other enumeration values for this field.
QUARTERLY
                                        The agreement if for a quarterly payment.
TWICE_YEARLY
                                        The agreement if for a payment twice a year.
WEEKLY
                                        The agreement if for a weekly payment.
YEARLY
                                        The agreement if for a yearly payment.
Enumeration
                        
                                            CONDITIONAL
                                
                The type of commercial agreement that the payer has with you.
Specify the agreement type when you have provided a value for agreement.id and this payment is the first in a series of payments. The default value is OTHER.
The gateway will use the value you specify for subsequent payments in the series.
Value must be a member of the following list. The values are case sensitive.
INSTALLMENT
                                        An agreement where the payer authorizes the payment for a single purchase to be split into a number of payments processed at agreed intervals. For example, pay for a purchase in six monthly installments.
OTHER
                                        An agreement where the merchant wants to link related payments for any purpose other than processing recurring, installment, or unscheduled payments. For example, split tender payments.
RECURRING
                                        An agreement where the payer authorizes the merchant to process payments for recurring bills or invoices at agreed intervals (for example, weekly, monthly). The amount might be fixed or variable.
UNSCHEDULED
                                        An agreement where the payer authorizes the merchant to automatically deduct funds for a payment for an agreed purchase when required (unscheduled). For example, auto top-ups when the account value falls below a threshold.
Information about how the payer's identity is verified.
For example, using 3-D Secure authentication.
This parameter group include payer authentication options available to you, parameters you need to perform payer authentication for an available method, and the results of payer authentication.
Information about payer authentication using 3-D Secure authentication.
Parameters in this group apply to both 3-D Secure authentication version 1 and 3-D Secure Authentication version 2.
Depending on the 3-D Secure authentication version applicable you will also need additional parameters:
- 3-D Secure authentication version 2: see the authentication.3ds2 parameter group.
Alphanumeric
                        
                                            CONDITIONAL
                                
                Indicates the security level of the transaction.
This is the Electronic Commerce Indicator (ECI) value provided by the issuer's Access Control Server (ACS) to indicate the results of the attempt to authenticate the payer.
Data may consist of the characters 0-9, a-z, A-Z
Base64
                        
                                            CONDITIONAL
                                
                The base64 encoded value generated by the issuer.
The authentication token Included in subsequent transaction request messages and used by the card scheme to verify that the authentication occurred and the values provided are valid. The token should be used unaltered.
For 3DS version 1, this field corresponds to the Cardholder Authentication Verification Value (CAVV) for Visa, the Accountholder Authentication Value (AAV) for MasterCard and JCB, or the American Express Verification Value (AEVV) for American Express.
For 3DS version 2, this field corresponds to the Authentication Value.
Data is Base64 encoded
String
                        
                                            CONDITIONAL
                                
                A unique identifier for the 3-D Secure authentication transaction.
For 3DS version 1, this field corresponds to the XID. The XID is an identifier generated by the gateway on behalf of the merchant.
For 3DS version 2, this field corresponds to the identifier assigned by the scheme directory server.
This identifier should be used in subsequent operation requests unaltered.
An XID submitted in this field must be in base64 format.
Data can consist of any characters
Information about payer authentication using 3-D Secure authentication version 2.
String
                        
                                            CONDITIONAL
                                
                You can ignore this field unless you want to build your own mobile SDK for EMV 3DS using the gateway's API.
The field contains the unique identifier assigned by the 3DS Server for this authentication. This is referred to in the EMVCo specification for 3-D Secure as threeDSServerTransID.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                A unique transaction identifier assigned by the Access Control Server to identify the 3DS transaction.
The ACS transaction id should be used in subsequent operation requests unaltered.
Data can consist of any characters
JSON Text
                        
                                            CONDITIONAL
                                
                Additional information returned by the scheme or issuer in the authentication response that must be included (together with the standard authentication details) when submitting the transaction for processing by the acquirer.
Data is valid Json Format
String
                        
                                            CONDITIONAL
                                
                Unique identifier for the Directory Server (also called Registered Application Provider Identifier or RID).
This value is applicable when you authenticate the payer in-app using 3-D Secure authentication version 2.
In this case, provide this value in the directoryServerId field on the createTransaction method request message sent from the app on the payer's device to the 3-D Secure Software Development Kit (SDK).
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                A unique transaction identifier assigned by the scheme Directory Server to identify the 3DS transaction.
The DS transaction id should be used in subsequent operation requests unaltered.
Data can consist of any characters
Boolean
                        ALWAYS PROVIDED
                                        
                Indicates if the issuer's Access Control Server (ACS) completed the method call to obtain additional information about the payer's browser.
JSON boolean values 'true' or 'false'.
Enumeration
                        ALWAYS PROVIDED
                                        
                Indicates if the issuer's Access Control Server (ACS) support the method call.
Value must be a member of the following list. The values are case sensitive.
NOT_SUPPORTED
                                        The ACS does not support the method call protocol.
SUPPORTED
                                        The ACS supports the method call protocol.
Alphanumeric + additional characters
                        
                                            CONDITIONAL
                                
                The version of the EMV 3-D Secure protocol used to perform 3-D Secure authentication, in the format specified by EMVCo.
For example, 2.1.0.
Data may consist of the characters 0-9, a-z, A-Z, '.'
String
                        ALWAYS PROVIDED
                                        
                The unique identifier assigned to the merchant by the card scheme directory server when the merchant registered to use 3-D Secure authentication version 2 with their acquirer.
Provide this value only for American Express Safekey and mada secure. For other authentication schemes it will be generated by the gateway.
Data can consist of any characters
String
                        ALWAYS PROVIDED
                                        
                The unique name assigned to the merchant by the card scheme directory server when the merchant registered to use 3-D Secure authentication version 2 with their acquirer.
Provide this value only for American Express Safekey and mada secure. For other authentication schemes it will be generated by the gateway.
Data can consist of any characters
Information provided by the 3-D Secure Software Development Kit (SDK) that is used by an app on the payer's device to enable 3-D Secure authentication of the payer to be performed in-app.
You must populate the fields in this parameter group when you authenticate the payer in-app using 3-D Secure authentication version 2.
Url
                        
                                            CONDITIONAL
                                
                This value is only returned when you authenticate the payer in-app using 3-D Secure authentication version 2 and a challenge is required (authentication.channel = PAYER_APP and authentication.3ds2.transactionStatus = C).
You must call this URL after the challenge has been completed; for example, when the ACS has confirmed the challenge completion.
This allows the gateway to retrieve the authentication result after the challenge has been completed.
Ensure that the URL begins with 'https' and is longer than 11 characters.
Enumeration
                        
                                            CONDITIONAL
                                
                The User Interface (UI) formats that the payer's device supports.
These are the formats that can be used to render the screens presented to the payer during an authentication challenge.
You only need to provide this value if you only support one of these formats.
This field corresponds to EMVCo data element sdkInterface in the field deviceRenderOptions.
Value must be a member of the following list. The values are case sensitive.
HTML
                                        The device supports HTML format.
NATIVE
                                        The device supports the UI format native to the payer's device.
Integer
                        
                                            CONDITIONAL
                                
                The duration (in seconds) available to the payer to authenticate.
Will default to 900 if not provided. Note: The value will be rounded up to the nearest minute.
This field corresponds to EMVCo field sdkMaxTimeout
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Comma separated enumeration
                        
                                            CONDITIONAL
                                
                Indicates the UI types which the SDK supports for displaying authentication challenges within the app.
A comma separated list of the payer authentication methods that you will accept for this payment.
You only need to provide this value if all of these values are not supported.
Note: OTHER_HTML is only supported when authentication.3ds2.sdk.interface allows a HTML UI format.
This field corresponds to EMVCo data element sdkUiType in the field deviceRenderOptions.
Value must be one or more comma separated members of the following list. The values are case sensitive.
TEXT
                                        The payer is asked to enter text into a field displayed on the UI. For example, ask the payer to enter a One Time Password sent to their registered mobile phone number.
SINGLE_SELECT
                                        The payer is asked to select a single option from a number of presented options. For example, ask the payer if they want a One Time Password to be sent to either their email address or mobile phone number registered with their issuer.
MULTI_SELECT
                                        The payer is asked to select multiple options from a number of presented options. For example, ask the payer to select valid responses to a question.
OUT_OF_BAND
                                        The payer is presented with screens rendered by an out-of-band service during an authentication challenge, For example, the payer is asked to confirm the payment from their banking app.
OTHER_HTML
                                        The payer is presented with an authentication challenge using other mechanisms supported in HTML but not in the native UI format. For example, the payer is asked to confirm an image presented on the screen.
String
                        
                                            CONDITIONAL
                                
                A code indicating the reason for the transaction status returned in authentication.3ds2.transactionStatus.
Refer to the EMVCo specification for 3-D Secure.
Data can consist of any characters
Alpha
                        
                                            CONDITIONAL
                                
                Indicates the result of payer authentication with the issuer.
This is the value returned in the transaction status field from the issuer's Access Control Server (ACS). For example, Y, N, U, A, R
 Refer to the EMVCo specification for 3-D Secure.
Data may consist of the characters a-z, A-Z
String
                        
                                            CONDITIONAL
                                
                Unique identifier assigned to the issuer's Access Control Server (ACS) by the EMVCo.
This field corresponds to EMVCo field acsRefNumber.
Data can consist of any characters
Information provided by the issuer's Access Control Server (ACS) that is used to render the screens presented to the payer during an authentication challenge.
String
                        
                                            CONDITIONAL
                                
                A JSON Web Signature (JWS) object returned by the issuer's Access Control Server (ACS).
Use this field to validate the integrity of the information returned.
The body of the object contains the following data:
- ACS URL: URL of the issuer's ACS
- SDK public key: A public key generated by the 3-D Secure SDK (see authentication.3ds2.sdk.ephemeralPublicKey)
- ACS public key: A public key generated by the issuer's ACS.
When using the REST/JSON gateway API, this is returned as a JSON string (ie the embedded quotes will be escaped).
This field corresponds to EMVCo field acsSignedContent.
Data can consist of any characters
Decimal
                        
                                            CONDITIONAL
                                
                The amount for which the payer authentication has been performed.
Data is a decimal number.
Enumeration
                        
                                            CONDITIONAL
                                
                The method that the issuer will use to authenticate the payer.
Value must be a member of the following list. The values are case sensitive.
DYNAMIC
                                        The payer is authenticated using dynamic data. For example, a code sent to the payer's phone.
OUT_OF_BAND
                                        The payer is authenticated by the issuer using another method. For example, by using a bank app on the payer's mobile device.
STATIC
                                        The payer is authenticated using static data. For example, by providing responses to security questions for the payer's account.
Enumeration
                        ALWAYS PROVIDED
                                        
                Indicates if payer interaction was used to complete the authentication process.
Value must be a member of the following list. The values are case sensitive.
NOT_POSSIBLE
                                        Payer interaction was either not possible or not applicable to completing the authentication process. For example, there was a technical problem, or the authentication method is not supported for this payment method.
NOT_REQUIRED
                                        No payer interaction was required to complete the authentication process. The issuer was able to make a decision based on the data provided.
REQUIRED
                                        Payer interaction was required to complete the authentication process. For example, the payer was presented with a challenge to verify their identity.
This parameter group is only applicable if you are subject to the Regulatory Technical Standards (RTS) requirements for Strong Customer Authentication (SCA) under the Payment Services Directive 2 (PSD2) regulations in the European Economic Area.
It provides details about SCA exemptions under PSD2.
Enumeration
                        
                                            CONDITIONAL
                                
                Indicates why this payment qualifies for exemption from Strong Customer Authentication (SCA) under the Payment Services Directive 2 (PSD2).
Note:
- For recurring payments provide the RECURRING_PAYMENT value only if the amount is the same. If the amount varies, provide MERCHANT_INITIATED_TRANSACTION instead.
Value must be a member of the following list. The values are case sensitive.
AUTO
                                        If either a LOW_RISK or LOW_VALUE_PAYMENT exemption applies to the transaction, it is automatically claimed by the gateway on behalf of the merchant.
LOW_RISK
                                        Exemption is claimed because the acquirer has a low fraud rate.
LOW_VALUE_PAYMENT
                                        Exemption is claimed as the amount is below 30 Euro.
MERCHANT_INITIATED_TRANSACTION
                                        The transaction is excluded as it was initiated by the merchant based on an agreement with the payer. For example, a recurring payment (for a varied or fixed amount), installment payment, or account top-up. In these cases, the payer is not present and cannot participate in an authentication interaction. Merchant initiated transactions are only applicable to subsequent transactions on the order and are out of scope of the PSD2 RTS on Strong Customer Authentication (SCA). The payer must be authenticated during the first transaction that established the agreement.
NONE
                                        An exemption is not claimed for this transaction. The merchant requires Strong Customer Authentication (SCA) be performed.
RECURRING_PAYMENT
                                        The transaction is exempt as it was initiated by the merchant based on an agreement with the payer for a recurring payment for a fixed amount. This value is only applicable to subsequent transactions on the order. In this case, the payer is not present and cannot participate in an authentication interaction. The payer must be authenticated during the first transaction that established the agreement.
SECURE_CORPORATE_PAYMENT
                                        The transaction is exempt as it is a corporate or Business-to-Business (B2B) payment performed using dedicated payment processes and protocols that are not available to consumers and offer at least equivalent security levels.
WHITELISTED_MERCHANT
                                        The transaction is exempt because the payer has added you to the list of their trusted merchants (as maintained by the issuer).
Enumeration
                        
                                            CONDITIONAL
                                
                Indicates if the payer has whitelisted you with the issuer and has opted-out of Strong Customer Authentication (SCA).
Value must be a member of the following list. The values are case sensitive.
NOT_WHITELISTED
                                        The payer has not whitelisted the merchant with the issuer or the merchant's whitelist status is unknown.
WHITELISTED
                                        The payer has whitelisted the merchant with the issuer.
A collection of parameters required to produce the UI for payer authentication.
An example of a payer authentication UI is the redirection of the payer's browser to the issuer's Access Control Server (ACS) for 3-D Secure authentication. The gateway supports two models:
- SIMPLE: The gateway gives you content (HTML and JavaScript) to put on your payment page, and that automatically triggers the authentication user experience.
- CUSTOMIZED: The gateway gives you the raw parameters for the authentication method, and you create the required user experience yourself.
If you selected the SIMPLE case, the gateway will provide the authenticationRedirect data, even if your authentication system does not require it. This lets you have a single flow through your code for all authentication cases.
The raw parameters for the authentication method, for you to create the required user experience yourself.
The raw parameters for 3-D Secure authentication.
Url
                        
                                            CONDITIONAL
                                
                The URL of the issuer's Access Control Server (ACS) where payer authentication is performed.
Applicable: 3DS version 1 and 3DS version 2
Ensure that the URL begins with 'https' and is longer than 11 characters.
ASCII Text
                        
                                            CONDITIONAL
                                
                Base64 URL encoded CReq message, only returned for challenge transactions during browser flow.
Applicable: 3DS version 2
Data consists of ASCII characters
String
                        
                                            CONDITIONAL
                                
                The domain name of the site where payer authentication was performed.
For example, the domain-name of the issuer's Access Control Server (ACS) used for payer authentication using 3-D Secure authentication.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                Code to create the authentication UI.
Write this content into an empty <DIV> element being the last element in the <BODY> of your payment page.
Data can consist of any characters
DateTime
                        
                                            CONDITIONAL
                                
                Date and time of the payer authentication being performed.
An instant in time expressed in ISO8601 date + time format - "YYYY-MM-DDThh:mm:ss.SSSZ"
Enumeration
                        
                                            CONDITIONAL
                                
                If online authentication of the payer is available, then this field shows the type.
If no such authentication is available, the value is NONE.
Value must be a member of the following list. The values are case sensitive.
3DS1
                                        3-D Secure Version 1 authentication is available.
3DS2
                                        3-D Secure Version 2 authentication is available.
RUPAY
                                        RuPay authentication is available.
NONE
                                        No authentication is available.
Information on the billing address including the contact details of the payer.
The payer's billing address.
This data may be used to qualify for better interchange rates on corporate purchase card transactions.
String
                        
                                            CONDITIONAL
                                
                The city portion of the address.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The name of the company associated with this address.
Data can consist of any characters
Upper case alphabetic text
                        
                                            CONDITIONAL
                                
                The 3 letter ISO standard alpha country code of the address.
Data must consist of the characters A-Z
Alphanumeric + additional characters
                        
                                            CONDITIONAL
                                
                The post code or zip code of the address.
Data may consist of the characters 0-9, a-z, A-Z, ' ', '-'
String
                        
                                            CONDITIONAL
                                
                The state or province of the address.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The three character ISO 3166-2 country subdivision code for the state or province of the address.
Providing this field might improve your payer experience for 3-D Secure payer authentication.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The first line of the address.
For example, this may be the street name and number, or the Post Office Box details.
Note: The transaction response will contain a concatenation of street and street2 data. If the concatenated value is more than the maximum field length, street2 data will be truncated.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The second line of the address (if provided).
Note: This field will be empty in the transaction response, as street2 data will be concatenated into the street field.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                A transient identifier for the request, that can be used to match the response to the request.
The value provided is not validated, does not persist in the gateway, and is returned as provided in the response to the request.
Data can consist of any characters
Information about the customer, including their contact details.
Information about the customer's account with you
Information about how you authenticated the payer.
A record that ties together a customer's account on your website or application with a card which they use, using a service such as Mastercard Identity Check Express (IDCX).
By performing payer authentication for that card, and recording that against the secured login, it is possible to achieve a frictionless payer authentication flow for future transactions by showing that they have securely logged in to the merchant using that account. To demonstrate this, you should provide the customer.account.authentication.data, customer.account.authentication.method and customer.account.authentication.time fields.
Enumeration
                        
                                            CONDITIONAL
                                
                Used to perform additional behaviour relating to the association between the customer account and their card.
Value must be a member of the following list. The values are case sensitive.
AUTHENTICATION
                                        You are submitting a payment or non-payment Authentication request with evidence of strong customer authentication you have already performed to be validated against a previously created record, in order to obtain frictionless authentication for the payer.
REGISTRATION
                                        You are submitting evidence of strong customer authentication performed by your website or application using a suitable, certified authentication mechanism, in order to record an association between this customer login and the 3DS authenticated cardholder.
Enumeration
                        
                                            CONDITIONAL
                                
                Indicates the status of the functionality you have requested be performed on the association between customer account authentication data and the card.
Value must be a member of the following list. The values are case sensitive.
FAILED
                                        The customer account could not be associated with the card.
NOT_SUPPORTED
                                        No support is available from the scheme for recording an association between the customer account and the provided card, either because the scheme provides no such facility, or because the issuer has opted out.
SUCCESSFUL
                                        The customer account has successfully been associated with the card, and should provide frictionless 3DS authentication in future.
SUPPORTED
                                        The scheme supports the ability to record an association between the customer account and the card following a successful 3DS challenge.
String
                        
                                            CONDITIONAL
                                
                The data returned by an authentication service that you used to authenticate the customer when they logged on to your site/service.
For example, a FIDO token provided by a federated identity provider.
Data can consist of any characters
Enumeration
                        
                                            CONDITIONAL
                                
                The method you used to authenticate the payer.
Value must be a member of the following list. The values are case sensitive.
CUSTOMER_ACCOUNT_LOGIN
                                        The merchant authenticated the payer using a credential system (for example,password) that they manage.
FEDERATED_IDENTITY_LOGIN
                                        The merchant authenticated the payer using a federated identity management service such as Google or Facebook
FIDO_AUTHENTICATION
                                        The merchant authenticated the payer using hardware, mobile, or biometrics based authentication that is compliant with FIDO Alliance specifications.
ISSUER_ACCOUNT_LOGIN
                                        The merchant authenticated the payer using a credential system for example, password) managed by the issuer.
NONE
                                        The merchant did not authenticate the payer.
THIRD_PARTY_ACCOUNT_LOGIN
                                        The merchant authenticated the payer using a credential system managed by a third party.
DateTime
                        
                                            CONDITIONAL
                                
                The data and time you authenticated the payer using the method specified in customer.account.authentication.method.
You must provide the authentication time if you authenticated the payer.
An instant in time expressed in ISO8601 date + time format - "YYYY-MM-DDThh:mm:ss.SSSZ"
Information about the payer's historical activity related to their customer account with you.
Integer
                        
                                            CONDITIONAL
                                
                Number of times the account holder has tried to add or change their card over the last 24 hours.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Integer
                        
                                            CONDITIONAL
                                
                The number of transactions (successful and abandoned) that have been requested in the last year for all payment methods stored against this customer account.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Date
                        
                                            CONDITIONAL
                                
                The date the payer created an account with you.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Information about the payer authentication performed for a previous transaction with you.
String
                        
                                            CONDITIONAL
                                
                The unique transaction identifier used by the issuer's Access Control Server (ACS) to identify the transaction.
If you are processing a recurring payment, then provide the transaction acsTransactionId for the transaction where the payer was authenticated.
Data can consist of any characters
Base64
                        
                                            CONDITIONAL
                                
                The authentication token obtained as the result of a previous authentication request.
Data is Base64 encoded
DateTime
                        
                                            CONDITIONAL
                                
                The date and time the payer was authenticated for the prior transaction.
If you are processing a recurring payment, then provide the time and date for the transaction where the payer was authenticated.
An instant in time expressed in ISO8601 date + time format - "YYYY-MM-DDThh:mm:ss.SSSZ"
String
                        
                                            CONDITIONAL
                                
                The transaction ID of a previous Authenticate Payer request on the order, which the gateway can retrieve and use instead of you providing the data explicitly in the customer.account.history.issuerAuthentication.authenticationToken, customer.account.history.issuerAuthentication.type and customer.account.history.issuerAuthentication.time and customer.account.history.issuerAuthentication.acsTransactionId fields.
You should provide this if you are performing an authentication request to obtain a new authentication token to replace one which is no longer valid due to age or details such as the amount of the transaction having changed.
Data can consist of any characters
Enumeration
                        
                                            CONDITIONAL
                                
                The method used to authenticate the payer for a prior transaction with you.
Value must be a member of the following list. The values are case sensitive.
3DS_FRICTIONLESS
                                        3DS authentication was performed without payer interaction.
3DS_CHALLENGE
                                        3DS authentication was performed and the payer was challenged for additional information.
ADDRESS_VERIFICATION
                                        The issuer verifed the billing address provided by the payer. 3DS authentication was not used.
OTHER
                                        The issuer verifed the payer using another method.
Date
                        
                                            CONDITIONAL
                                
                The date the payer's account with you was last updated.
For example, they changed address details or changed card details.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Date
                        
                                            CONDITIONAL
                                
                The date the payer last changed the password for their account with you.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Integer
                        
                                            CONDITIONAL
                                
                The number of transactions (successful and abandoned) that have been requested in the last 24 hours for all payment methods stored against this customer account.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Date
                        
                                            CONDITIONAL
                                
                The date you first shipped goods to the payer's shipping address provided in the shipping.address parameter group.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Boolean
                        
                                            CONDITIONAL
                                
                Have you experienced suspicious or fraudulent activity on the account in the past.
JSON boolean values 'true' or 'false'.
String
                        
                                            CONDITIONAL
                                
                Your identifier for the payer's account with you.
This should be an immutable identifier, rather than the customer's name, email or such data that could be changed by the customer.
Data can consist of any characters
Email
                        
                                            CONDITIONAL
                                
                The email address of the customer.
The field format restriction ensures that the email address is longer than 3 characters and adheres to a generous subset of valid RFC 2822 email addresses.
Ensures that the email address is longer than 3 characters and adheres to a generous subset of valid RFC 2822 email addresses
String
                        
                                            CONDITIONAL
                                
                The payer's first name.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The payer's last or surname.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The contact person's mobile phone or cell phone number.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The phone number of the person to whom the order is being billed.
Data can consist of any characters
Information about the device used by the payer for this transaction.
String
                        
                                            CONDITIONAL
                                
                The User-Agent header of the browser the customer used to place the order.For example, MOZILLA/4.0 (COMPATIBLE; MSIE 5.0; WINDOWS 95)
You must provide a value in this field if you are performing 3-D Secure authentication of the payer and set authentication.channel = PAYER_BROWSER.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The IP address of the device used by the payer, in nnn.nnn.nnn.nnn format.
Data can consist of any characters
This group is an encrypted JSON object containing authentication data obtained during the authentication process.
You can ignore this group if you are making a subsequent payment or Verify operation with the gateway, instead just rely on the response.gatewayRecommendation field.
However this group is applicable if:
- you want to use 3-D Secure authentication data obtained to process the payment via another channel
- you want to interpret some details of the 3-D Secure authentication response.
The decryption will yield a JSON object which will contain a subset of the following fields.
- authentication.3ds.authenticationToken
- authentication.3ds.acsEci
- authentication.3ds.transactionId
- authentication.3ds2.statusReasonCode
- authentication.3ds2.transactionStatus
- authentication.3ds2.dsTransactionId
- sourceOfFunds.provided.card.expiry.month
- sourceOfFunds.provided.card.expiry.year
- sourceOfFunds.provided.card.number
- sourceOfFunds.token
- order.id
- transaction.authenticationStatus
- transaction.id
String
                        ALWAYS PROVIDED
                                        
                Base64 encoded ciphertext.
Data can consist of any characters
String
                        ALWAYS PROVIDED
                                        
                Base64 encoded GCM nonce.
Data can consist of any characters
String
                        ALWAYS PROVIDED
                                        
                Base64 encoded GCM tag.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                Your payment service provider might have configured your merchant profile to support several lines of business.
Each line of business can have different payment parameters, such as bank account, supported cards or such.
For example, lineOfBusiness = TICKET_SALES can have a different bank account from lineOfBusiness = MERCHANDISING. One line of business on your profile might be "null". To use that, do not provide the lineOfBusiness field.
Data can consist of any characters except space
Alphanumeric + additional characters
                        ALWAYS PROVIDED
                                        
                The unique identifier issued to you by your payment provider.
This identifier can be up to 12 characters in length.
Data may consist of the characters 0-9, a-z, A-Z, '-', '_'
Information about the order associated with this transaction.
Decimal
                        ALWAYS PROVIDED
                                        
                The total amount for the order. This is the net amount plus any surcharge.
If you provide any sub-total amounts, then the sum of these amounts (order.itemAmount, order.taxAmount, order.shippingAndHandlingAmount, order.cashbackAmount, order.gratuityAmount), minus the order.discountAmount must equal the net amount.
The value of this field in the response is zero if payer funds are not transferred.
Data is a decimal number.
Enumeration
                        
                                            CONDITIONAL
                                
                Indicates the result of payer authentication.
Value must be a member of the following list. The values are case sensitive.
AUTHENTICATION_ATTEMPTED
                                        Payer authentication was attempted and a proof of authentication attempt was obtained.
AUTHENTICATION_AVAILABLE
                                        Payer authentication is available for the payment method provided.
AUTHENTICATION_EXEMPT
                                        Exemption from the Regulatory Technical Standards (RTS) requirements for Strong Customer Authentication (SCA) under the Payment Services Directive 2 (PSD2) regulations in the European Economic Area has been claimed or granted.
AUTHENTICATION_FAILED
                                        The payer was not authenticated. You should not proceed with this transaction.
AUTHENTICATION_NOT_IN_EFFECT
                                        There is no authentication information associated with this transaction.
AUTHENTICATION_NOT_SUPPORTED
                                        The requested authentication method is not supported for this payment method.
AUTHENTICATION_PENDING
                                        Payer authentication is pending completion of a challenge process.
AUTHENTICATION_REJECTED
                                        The issuer rejected the authentication request and requested that you do not attempt authorization of a payment.
AUTHENTICATION_REQUIRED
                                        Payer authentication is required for this payment, but was not provided.
AUTHENTICATION_SUCCESSFUL
                                        The payer was successfully authenticated.
AUTHENTICATION_UNAVAILABLE
                                        The payer was not able to be authenticated due to a technical or other issue.
DateTime
                        ALWAYS PROVIDED
                                        
                Indicates the date and time the gateway considers the order to have been created.
An instant in time expressed in ISO8601 date + time format - "YYYY-MM-DDThh:mm:ss.SSSZ"
Upper case alphabetic text
                        ALWAYS PROVIDED
                                        
                The currency of the order expressed as an ISO 4217 alpha code, e.g. USD.
Data must consist of the characters A-Z
Information about a price reduction you have applied to the order.
For example, you may apply discounts for trade, employees, bulk purchase, or a sales promotion.
Decimal
                        
                                            CONDITIONAL
                                
                The total amount of the discount you have applied to the order.
Data is a decimal number.
String
                        
                                            CONDITIONAL
                                
                The code you use to identify the reason for the discount.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                A description of your reason for the discount.
Data can consist of any characters
String
                        ALWAYS PROVIDED
                                        
                A unique identifier for this order to distinguish it from any other order you create.
Use this identifier when referring to this order in subsequent transactions and in retrieval operations. This value must be unique for every order created by your merchant profile.
Data can consist of any characters
Decimal
                        
                                            CONDITIONAL
                                
                The total item amount for the order.
Data is a decimal number.
DateTime
                        ALWAYS PROVIDED
                                        
                Indicates the date and time the gateway considers the order to have last been updated.
An instant in time expressed in ISO8601 date + time format - "YYYY-MM-DDThh:mm:ss.SSSZ"
Digits
                        
                                            CONDITIONAL
                                
                A 4-digit code used to classify your business by the type of goods or services it offers.This is also known as the Merchant Category Code (MCC).
You only need to provide the MCC if you want to override the default value configured for your acquirer link.The value you provide must match one of those configured by your payment service provider.
Data is a string that consists of the characters 0-9.
Decimal
                        
                                            CONDITIONAL
                                
                The amount payable for the order before surcharging is applied.
If you specify a net amount the gateway will calculate the surcharge for you. Alternatively, you can specify the surcharge amount (order.surchargeAmount) yourself.
Data is a decimal number.
Url
                        
                                            CONDITIONAL
                                
                The URL to which the gateway will send Webhook notifications when an order is created or updated.
To receive notifications at this URL, you must enable Webhook notifications in Merchant Administration. Ensure the URL is HTTPS
Ensure that the URL begins with 'https' and is longer than 11 characters.
String
                        
                                            CONDITIONAL
                                
                An optional identifier for the order.
For example, a shopping cart number, an order number, or an invoice number.
Data can consist of any characters
Decimal
                        
                                            CONDITIONAL
                                
                The total shipping and handling amount for the order.
Data is a decimal number.
Contact information provided by you for printing on payer's account statements.
Descriptor address of the merchant.
String
                        
                                            CONDITIONAL
                                
                The city portion of the address.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The name of the company associated with this address.
Data can consist of any characters
Upper case alphabetic text
                        
                                            CONDITIONAL
                                
                The 3 letter ISO standard alpha country code of the address.
Data must consist of the characters A-Z
Alphanumeric + additional characters
                        
                                            CONDITIONAL
                                
                The post code or zip code of the address.
Data may consist of the characters 0-9, a-z, A-Z, ' ', '-'
String
                        
                                            CONDITIONAL
                                
                The state or province of the address.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The first line of the address.
For example, this may be the street name and number, or the Post Office Box details.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The second line of the address (if provided).
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                Descriptor name of the merchant.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                Descriptor phone number of the merchant's business.
Data can consist of any characters
Enumeration
                        
                                            CONDITIONAL
                                
                The current progression of this order through the payment process.
Value must be a member of the following list. The values are case sensitive.
AUTHENTICATED
                                        The payer was successfully authenticated.
AUTHENTICATION_INITIATED
                                        Payer authentication has been initiated but not completed.
AUTHENTICATION_NOT_NEEDED
                                        Payer authentication was not performed as it was not needed.
AUTHENTICATION_UNSUCCESSFUL
                                        Payer authentication was not able to be successfully completed.
AUTHORIZED
                                        The payment has been authorized successfully but the authorized amount has not yet been captured, in part, full, or excess.
CANCELLED
                                        The initial transaction for this order has been voided successfully.
CAPTURED
                                        The authorized amount for this order, in full or excess, has been captured successfully.
CHARGEBACK_PROCESSED
                                        A Chargeback has been processed against this order.
DISBURSED
                                        The order amount has successfully been disbursed to the payer.
DISPUTED
                                        The payment has been disputed and is under investigation. A request for information has been received or a chargeback is pending.
EXCESSIVELY_REFUNDED
                                        The payment has been captured in part, full, or excess, but the captured amount in excess has been refunded successfully.
FAILED
                                        The payment has not been successful.
FUNDING
                                        The order transfers money to or from the merchant, without the involvement of a payer. For example, recording monthly merchant service fees from your payment service provider.
INITIATED
                                        A browser payment that has successfully been initiated for this order. No payment has yet been made.
PARTIALLY_CAPTURED
                                        The authorized amount for this order, in part, has been captured successfully.
PARTIALLY_REFUNDED
                                        The payment has been captured in part, full, or excess, but the captured amount in part has been refunded successfully.
REFUNDED
                                        The payment has been captured in part, full, or excess, but the captured amount in full has been refunded successfully.
REFUND_REQUESTED
                                        A refund against captured amounts on this order has been requested but not executed. Requires further action to approve the refund.
VERIFIED
                                        The card details for this order have successfully been verified. No payment has yet been initiated or made.
Provide these parameters if you are a payment aggregator or facilitator and process payments on behalf of other merchants.
These merchants are referred to as your sub-merchants.
The sub-merchant's details you provide may be displayed on the payer's cardholder statement.
Note that your acquirer may require you to register with the card scheme(s) before allowing you to submit sub-merchant details with a transaction.
This data must be on the initial transaction of an order, subsequent transactions with sub-merchant will be rejected.
Note: If you are requesting payer authentication using 3-D Secure Version 2 then you must provide values for order.subMerchant.address.country and order.subMerchant.bankIndustryCode.
The sub-merchant's address.
String
                        
                                            CONDITIONAL
                                
                The city portion of the address.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The name of the company associated with this address.
Data can consist of any characters
Upper case alphabetic text
                        
                                            CONDITIONAL
                                
                The 3 letter ISO standard alpha country code of the address.
Data must consist of the characters A-Z
Alphanumeric + additional characters
                        
                                            CONDITIONAL
                                
                The post code or zip code of the address.
Data may consist of the characters 0-9, a-z, A-Z, ' ', '-'
String
                        
                                            CONDITIONAL
                                
                The state or province of the address.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The first line of the address.
For example, this may be the street name and number, or the Post Office Box details.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The second line of the address (if provided).
Data can consist of any characters
Information about the sub-merchant's registration to use a payer authentication protocol.
For example, using 3-D Secure authentication.
Information about the sub-merchant's registration to use 3-D Secure authentication version 2.
These details are used to identify the sub-merchant to the card scheme's directory server.
String
                        
                                            CONDITIONAL
                                
                The unique identifier assigned to the merchant by the card scheme directory server when the merchant registered to use 3-D Secure authentication version 2 with their acquirer.
For American Express and UnionPay if it is provided it will be used otherwise it will be generated by the gateway. This identifier should not be provided for other supported authentication schemes, as it will be generated by the gateway.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The unique name assigned to the merchant by the card scheme directory server when the merchant registered to use 3-D Secure authentication version 2 with their acquirer.
For American Express and UnionPay if it is provided it will be used otherwise it will be generated by the gateway. This name should not be provided for other supported authentication schemes, as it will be generated by the gateway.
Data can consist of any characters
Enumeration
                        ALWAYS PROVIDED
                                        
                The protocol used for payer authentication.
Value must be a member of the following list. The values are case sensitive.
AMEX_SAFEKEY
                                        American Express SafeKey EMV 3DS authentication
UNIONPAY
                                        UnionPay EMV 3DS authentication
VERIFIED_BY_VISA
                                        Visa Verified by Visa EMV 3DS authentication
Digits
                        
                                            CONDITIONAL
                                
                Code used by acquirer to describe the business or industry the sub-merchant operates in.
You must provide a value if you want the gateway to perform 3-D Secure Version 2 authentication of the payer.
Data is a string that consists of the characters 0-9.
Telephone Number
                        
                                            CONDITIONAL
                                
                Only provide this field if you have received a notification from the scheme that either you or the sub-merchant has a high number of disputes.
In this case, provide a phone number that payers can use to contact the sub-merchant in case of a dispute. Where applicable, the issuer may display this phone number on the cardholder statement. The phone number must be provided in ITU-T E123 format.
Data consists of '+', country code (1, 2 or 3 digits), 'space', and national number (which may embed single space characters for readability)
Email
                        
                                            CONDITIONAL
                                
                The sub-merchant's email address.
Ensures that the email address is longer than 3 characters and adheres to a generous subset of valid RFC 2822 email addresses
String
                        ALWAYS PROVIDED
                                        
                Your identifier for the sub-merchant.
You can use this identifier in searches and reports in the gateway.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The sub-merchant's phone number
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The legal name of the sub-merchant.
Data can consist of any characters
String
                        ALWAYS PROVIDED
                                        
                The trading name of the sub-merchant, also known as doing business as (DBA), operating as or trading as.
For MasterCard transactions the name must not exceed 21 characters. For American Express transactions the name must not exceed 27 characters (or 36 characters including the aggregator name). The trading name may be displayed on the payer's cardholder statement. Therefore if you need to shorten it, use an abbreviation that will be meaningful to the payer when displayed on their statement.
Data can consist of any characters
Url
                        
                                            CONDITIONAL
                                
                The URL of the sub-merchant's website.
Ensure that the URL begins with 'https' and is longer than 11 characters.
Information about orders for items not yet available (pre-order) or for items previously purchased (reorder).
Boolean
                        
                                            CONDITIONAL
                                
                Indicates that the purchase includes merchandise with a future availability or release date.
JSON boolean values 'true' or 'false'.
Date
                        
                                            CONDITIONAL
                                
                The date that preordered items are expected to be available.
Provide this field if the payer is ordering items before you have them available for purchase.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Boolean
                        
                                            CONDITIONAL
                                
                Indicates that the purchase includes merchandise that the payer has previously ordered.
JSON boolean values 'true' or 'false'.
Decimal
                        
                                            CONDITIONAL
                                
                A fee charged by you to cover the cost of accepting a payment method.
This is an additional amount charged by you for accepting one payment method (e.g. a credit card) instead of another (e.g. cash).
If you provide a surcharge amount, you should include it in the total amount for the order.
Data is a decimal number.
Enumeration
                        
                                            CONDITIONAL
                                
                Indicates how the surcharge amount was determined for an order.
Value must be a member of the following list. The values are case sensitive.
CLIENT
                                        The surcharge amount was provided by the merchant.
GATEWAY
                                        The surcharge amount was calculated by the gateway based on surcharging rules configured by the merchant.
Use this parameter group to provide a breakdown of tax types, amount per tax type, and rate per tax type included in order.taxAmount.
Decimal
                        
                                            CONDITIONAL
                                
                The tax amount included in this order for the tax type.
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
Decimal
                        
                                            CONDITIONAL
                                
                The tax rate (percentage) used to determine the tax amount included in this order for the tax type.
Data is a string that consists of the characters 0-9 and '.' and represents a valid decimal number.
String
                        
                                            CONDITIONAL
                                
                The type of tax included in the order amount.
The correct value as used by your acquirer may have to be provided. Contact your payment service provider for details.
Data can consist of any characters
Decimal
                        
                                            CONDITIONAL
                                
                The total tax amount for the order.
Data is a decimal number.
Decimal
                        ALWAYS PROVIDED
                                        
                The amount that has been successfully authorized for this order.
Data is a decimal number.
Decimal
                        ALWAYS PROVIDED
                                        
                The amount that has been successfully captured for this order.
Data is a decimal number.
Decimal
                        ALWAYS PROVIDED
                                        
                The amount that has been successfully refunded for this order.
Data is a decimal number.
Information about payments that transfer money to another store of value, such as a gift card or gaming chips.
Enumeration
                        
                                            CONDITIONAL
                                
                The type of value store to which money is being transferred.
The default value is NOT_A_TRANSFER.
Value must be a member of the following list. The values are case sensitive.
ACCOUNT_FUNDING
                                        Payment to add funds to the payer's account with the merchant. These funds can be used for future purchases.
NOT_A_TRANSFER
                                        This payment is not for the purpose of transferring money to another store of value. It is a payment for goods or services.
PREPAID_LOAD
                                        Payment to add funds to a prepaid card or gift card.
QUASI_CASH_TRANSACTION
                                        Payment for items that are directly convertible to cash. For example, money orders, casino gaming chips, or traveller's checks.
Decimal
                        
                                            CONDITIONAL
                                
                The amount of money being transferred, in units of order.valueTransfer.currency.
The default value is order.amount
Data is a decimal number.
Upper case alphabetic text
                        
                                            CONDITIONAL
                                
                The currency of the store.
If the money is being transferred to multiple currencies, then use the currency of the highest transferred value.
The default value is order.currency.
Data must consist of the characters A-Z
Integer
                        
                                            CONDITIONAL
                                
                The number of prepaid or gift card being purchased.
The default value is one when you set order.valueTransfer.accountType = PREPAID_LOAD. For all other values of order.valueTransfer.accountType the default is zero.
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
Enumeration
                        
                                            CONDITIONAL
                                
                The wallet provider used to collect the customer's payment details used for this transaction.
Value must be a member of the following list. The values are case sensitive.
MASTERPASS_ONLINE
                                        MasterPass Online wallet provider.
SECURE_REMOTE_COMMERCE
                                        Secure Remote Commerce (SRC) wallet provider.
String
                        
                                            CONDITIONAL
                                
                If, when integrating with the gateway, you are using a solution (e.g. a shopping cart or e-commerce solution) provided, supported or certified by your payment service provider, enter the solution ID issued by your payment service provider here.
If your payment service provider has not provided you with a solution ID, you should ignore this field.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The container for additional information about a transaction.
Only returned for some errors and is dependent on the merchant's configuration. Returned in error, declined and approved scenarios, but would only be used to trouble shoot issues.
Data can consist of any characters
Enumeration
                        ALWAYS PROVIDED
                                        
                Summary of the success or otherwise of the operation.
Value must be a member of the following list. The values are case sensitive.
ABORTED
                                        Transaction aborted by payer
ACQUIRER_SYSTEM_ERROR
                                        Acquirer system error occurred processing the transaction
APPROVED
                                        Transaction Approved
APPROVED_AUTO
                                        The transaction was automatically approved by the gateway. it was not submitted to the acquirer.
APPROVED_PENDING_SETTLEMENT
                                        Transaction Approved - pending batch settlement
AUTHENTICATION_FAILED
                                        Payer authentication failed
AUTHENTICATION_IN_PROGRESS
                                        The operation determined that payer authentication is possible for the given card, but this has not been completed, and requires further action by the merchant to proceed.
BALANCE_AVAILABLE
                                        A balance amount is available for the card, and the payer can redeem points.
BALANCE_UNKNOWN
                                        A balance amount might be available for the card. Points redemption should be offered to the payer.
BLOCKED
                                        Transaction blocked due to Risk or 3D Secure blocking rules
CANCELLED
                                        Transaction cancelled by payer
DECLINED
                                        The requested operation was not successful. For example, a payment was declined by issuer or payer authentication was not able to be successfully completed.
DECLINED_AVS
                                        Transaction declined due to address verification
DECLINED_AVS_CSC
                                        Transaction declined due to address verification and card security code
DECLINED_CSC
                                        Transaction declined due to card security code
DECLINED_DO_NOT_CONTACT
                                        Transaction declined - do not contact issuer
DECLINED_INVALID_PIN
                                        Transaction declined due to invalid PIN
DECLINED_PAYMENT_PLAN
                                        Transaction declined due to payment plan
DECLINED_PIN_REQUIRED
                                        Transaction declined due to PIN required
DEFERRED_TRANSACTION_RECEIVED
                                        Deferred transaction received and awaiting processing
DUPLICATE_BATCH
                                        Transaction declined due to duplicate batch
EXCEEDED_RETRY_LIMIT
                                        Transaction retry limit exceeded
EXPIRED_CARD
                                        Transaction declined due to expired card
INSUFFICIENT_FUNDS
                                        Transaction declined due to insufficient funds
INVALID_CSC
                                        Invalid card security code
LOCK_FAILURE
                                        Order locked - another transaction is in progress for this order
NOT_ENROLLED_3D_SECURE
                                        Card holder is not enrolled in 3D Secure
NOT_SUPPORTED
                                        Transaction type not supported
NO_BALANCE
                                        A balance amount is not available for the card. The payer cannot redeem points.
PARTIALLY_APPROVED
                                        The transaction was approved for a lesser amount than requested. The approved amount is returned in order.totalAuthorizedAmount.
PENDING
                                        Transaction is pending
REFERRED
                                        Transaction declined - refer to issuer
SUBMITTED
                                        The transaction has successfully been created in the gateway. It is either awaiting submission to the acquirer or has been submitted to the acquirer but the gateway has not yet received a response about the success or otherwise of the payment.
SYSTEM_ERROR
                                        Internal system error occurred processing the transaction
TIMED_OUT
                                        The gateway has timed out the request to the acquirer because it did not receive a response. Points redemption should not be offered to the payer.
UNKNOWN
                                        The transaction has been submitted to the acquirer but the gateway was not able to find out about the success or otherwise of the payment. If the gateway subsequently finds out about the success of the payment it will update the response code.
UNSPECIFIED_FAILURE
                                        Transaction could not be processed
Enumeration
                        
                                            CONDITIONAL
                                
                If a payment fails, this indicates how you could change the request to bring about success.
This field is only present if your gateway configuration supports optional payment features.
Value must be a member of the following list. The values are case sensitive.
DO_NOT_PROCEED
                                        Do not proceed using this card. This will be presented if the gateway fails the request, but there is no apparent way for this transaction to succeed.
PROCEED
                                        Proceed with the next step in processing this payment by either: Authenticating the payer using the Authenticate Payer operation or Submitting the payment request as the payer is sufficiently authenticated, or updating card details.
Enumeration
                        ALWAYS PROVIDED
                                        
                A system-generated high level overall result of the operation.
Value must be a member of the following list. The values are case sensitive.
FAILURE
                                        The operation was declined or rejected by the gateway, acquirer or issuer
PENDING
                                        The operation is currently in progress or pending processing
SUCCESS
                                        The operation was successfully processed
UNKNOWN
                                        The result of the operation is unknown
Shipping information for this order.
The address to which the goods contained in this order are being shipped.
This data may be used to qualify for better interchange rates on corporate purchase card transactions.
String
                        
                                            CONDITIONAL
                                
                The city portion of the address.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The name of the company associated with this address.
Data can consist of any characters
Upper case alphabetic text
                        
                                            CONDITIONAL
                                
                The 3 letter ISO standard alpha country code of the address.
Data must consist of the characters A-Z
Alphanumeric + additional characters
                        
                                            CONDITIONAL
                                
                The post code or zip code of the address.
Data may consist of the characters 0-9, a-z, A-Z, ' ', '-'
Enumeration
                        
                                            CONDITIONAL
                                
                How you obtained the shipping address.
Value must be a member of the following list. The values are case sensitive.
ADDRESS_ON_FILE
                                        Order shipped to an address that you have on file.
NEW_ADDRESS
                                        Order shipped to an address provided by the payer for this transaction.
String
                        
                                            CONDITIONAL
                                
                The state or province of the address.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The three character ISO 3166-2 country subdivision code for the state or province of the address.
Providing this field might improve your payer experience for 3-D Secure payer authentication.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The first line of the address.
For example, this may be the street name and number, or the Post Office Box details.
Note: The transaction response will contain a concatenation of street and street2 data. If the concatenated value is more than the maximum field length, street2 data will be truncated.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The second line of the address (if provided).
Note: This field will be empty in the transaction response, as street2 data will be concatenated into the street field.
Data can consist of any characters
Enumeration
                        
                                            CONDITIONAL
                                
                Indicates whether the shipping address provided is the same as the payer's billing address.
Provide this value if you are not providing the full shipping and billing addresses, but you can affirm that they are the same or different.
The default value for this field is:
SAME - if the shipping and billing address are supplied, and all fields are the same (ignoring non-alphanumerics).
DIFFERENT - if the shipping and billing address are supplied, and at least one field is different (ignoring non-alphanumerics).
UNKNOWN - either shipping address or billing address is absent.
Value must be a member of the following list. The values are case sensitive.
DIFFERENT
                                        The shipping and billing addresses are different.
SAME
                                        The shipping and billing addresses are the same.
UNKNOWN
                                        It is not known if the shipping and billing addresses are the same.
Details of the contact person at the address the goods will be shipped to.
Email
                        
                                            CONDITIONAL
                                
                The contact person's email address.
The field format restriction ensures that the email address is longer than 3 characters and adheres to a generous subset of valid RFC 2822 email addresses.
Ensures that the email address is longer than 3 characters and adheres to a generous subset of valid RFC 2822 email addresses
String
                        
                                            CONDITIONAL
                                
                The first name of the person to whom the order is being shipped.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The last name or surname of the person to whom the order is being shipped.
Data can consist of any characters
Telephone Number
                        
                                            CONDITIONAL
                                
                The contact person's mobile phone or cell phone number in ITU-T E123 format, for example +1 607 1234 5678
The number consists of:
- '+'
- country code (1, 2 or 3 digits)
- 'space'
- national number ( which may embed single spaces characters for readability).
Data consists of '+', country code (1, 2 or 3 digits), 'space', and national number (which may embed single space characters for readability)
Telephone Number
                        
                                            CONDITIONAL
                                
                The contact person's phone number in ITU-T E123 format, for example +1 607 1234 456
The number consists of:
- '+'
- country code (1, 2 or 3 digits)
- 'space'
- national number ( which may embed single spaces characters for readability).
Data consists of '+', country code (1, 2 or 3 digits), 'space', and national number (which may embed single space characters for readability)
Enumeration
                        
                                            CONDITIONAL
                                
                Indicates whether the supplied name for the recipient of shipping matches the cardholder name.
Provide this value if you are not providing the full name or cardholder name, but you can affirm that they are the same or different.
Default value is UNKNOWN
Value must be a member of the following list. The values are case sensitive.
DIFFERENT
                                        The shipping and billing addresses are different.
SAME
                                        The shipping and billing addresses are the same.
UNKNOWN
                                        It is not known if the shipping and billing addresses are the same.
Enumeration
                        
                                            CONDITIONAL
                                
                The shipping method used for delivery of this order
Value must be a member of the following list. The values are case sensitive.
ELECTRONIC
                                        Electronic delivery.
GROUND
                                        Ground (4 or more days).
NOT_SHIPPED
                                        Order for goods that are not shipped (for example, travel and event tickets)
OVERNIGHT
                                        Overnight (next day).
PICKUP
                                        Shipped to a local store for pick up.
PRIORITY
                                        Priority (2-3 days).
SAME_DAY
                                        Same day.
Alphanumeric + additional characters
                        
                                            CONDITIONAL
                                
                The post code or zip code of the address the order is shipped from.
Data may consist of the characters 0-9, a-z, A-Z, ' ', '-'
Information about the payment type selected by the payer for this payment and the source of the funds.
Depending on the payment type the source of the funds can be a debit or credit card, bank account, or account with a browser payment provider (such as PayPal).
For card payments the source of funds information may be represented by combining one or more of the following: explicitly provided card details, a session identifier which the gateway will use to look up the card details and/or a card token. Precedence rules will be applied in that explicitly provided card details will override session card details which will override card token details. Each of these may represent partial card details, however the combination must result in a full and complete set of card details. See Using Multiple Sources of Card Details for examples.
Information about the source of funds when it is directly provided (as opposed to via a token or session).
For browser payments, the source of funds details are usually collected from the payer on the payment provider's website and provided to you when you retrieve the transaction details (for a successful transaction). However, for some payment types (such as giropay), you must collect the information from the payer and supply it here.
For ACH payments, the details about the payers bank account used for the payment as well as the type of ACH payment are provided in this parameter group.
Enumeration
                        
                                            CONDITIONAL
                                
                An indicator identifying the type of bank account.
- Consumer (checking or savings), or
- Business
For pre-arranged payments (sourceOfFunds.provided.ach.secCode=PPD) retrieve this information from the payer.
If payments were telephone-initiated (sourceOfFunds.provided.ach.secCode=TEL) or internet-initiated (sourceOfFunds.provided.ach.secCode=WEB) you may choose to limit the payer's options (e.g. only support consumer checking accounts), depending on your type of business (e.g. B2C online webshop).
Value must be a member of the following list. The values are case sensitive.
CONSUMER_CHECKING
                                        Consumer Checking Account
CONSUMER_SAVINGS
                                        Consumer Savings Account
CORPORATE_CHECKING
                                        Business Checking Account
String
                        
                                            CONDITIONAL
                                
                The name of the bank account holder, as it appears on the account at the receiving financial institution.
Retrieve this information from the payer.
Data can consist of any characters
Alphanumeric + additional characters
                        
                                            CONDITIONAL
                                
                The identifier of the bank account at the receiving financial institution.
By default, the bank account number will be returned in a masked format, for example, xxxxxx0000. If you wish to return unmasked bank account numbers, you must have the requisite permission, set responseControls.sensitiveData, and authenticate your call to the API using certificate authentication. Contact your payment service provider for further information.
Data may consist of the characters 0-9, a-z, A-Z, ' ', '-', '/'
Digits
                        
                                            CONDITIONAL
                                
                The identifier of the receiving financial institution.
Also known as:
- Routing number,
- Transit number, or
- ABA number
Retrieve this information from the payer.
See also http://en.wikipedia.org/wiki/Routing_transit_number.
Data is a string that consists of the characters 0-9.
Enumeration
                        
                                            CONDITIONAL
                                
                Identifies the Standard Entry Class (SEC) code to be sent to the issuer.
The SEC is defined by NACHA and describes the origin and intent of the payment. For details please refer to https://www.nacha.org/.
Value must be a member of the following list. The values are case sensitive.
PPD
                                        An ACH debit or credit payment (B2C) that has been authorized by an authenticated customer in written form (signed or similarly authenticated). PPD is used for pre-arranged payments (e.g. employee payroll, mortgage payments, expense reimbursement).
TEL
                                        An ACH debit payment (B2C) that has been authorized by an authenticated customer via phone. TEL may only be used if a relationship already exists between you and the consumer, or, the consumer initiates the contact with you.
WEB
                                        An ACH debit payment (B2C) that has been authorized by an authenticated customer via the internet or a wireless network.
Additional details related to a Bancontact payment.
String
                        ALWAYS PROVIDED
                                        
                The name of the bank account holder for the payer's bank account.
Data can consist of any characters
Additional details related to a BLIK browser payment.
String
                        ALWAYS PROVIDED
                                        
                The name of the bank account holder for the payer's bank account.
Data can consist of any characters
Additional details related to a Boleto Bancario browser payment.
When processing a Boleto Bancario payment you must also provide the payer's national identifier (customer.nationalId), your reference to the payer (customer.id) and the payer's date of birth (customer.dateOfBirth)
Enumeration
                        
                                            CONDITIONAL
                                
                The action to take if the payment is not honored.
Value must be a member of the following list. The values are case sensitive.
WRITE_OFF
                                        Write off the Boleto.
String
                        ALWAYS PROVIDED
                                        
                The name of the bank account holder for the payer's bank account.
Data can consist of any characters
Enumeration
                        
                                            CONDITIONAL
                                
                Type of the Customer i.e. Individual or Company.
If the value is not provided it will be defaulted to INDIVIDUAL.
Value must be a member of the following list. The values are case sensitive.
COMPANY
                                        Customer is an organization.
INDIVIDUAL
                                        Customer is an individual.
Digits
                        
                                            CONDITIONAL
                                
                Number of days granted by you to the customer after the due date of Boleto payment before the specified action is taken.
Data is a string that consists of the characters 0-9.
Date
                        
                                            CONDITIONAL
                                
                The date by which the Boleto amount needs to be paid.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Url
                        
                                            CONDITIONAL
                                
                The URL issued by the gateway which you must use to retrieve collection bank slip.
Ensure that the URL begins with 'https' and is longer than 11 characters.
Details about the card.
Use this parameter group when you have sourced payment details using:
Cards: the card details entered directly or collected using a Point of Sale (POS) terminal.
Device payment methods such as Apple Pay, Android Pay, Samsung Pay or Google Pay.
Digital wallets such as Masterpass, Visa Checkout or Amex Express Checkout.
Card scheme tokens where the card was tokenized using a card scheme tokenization service such as Mastercard Digital Enablement Service (MDES).
Enumeration
                        
                                            CONDITIONAL
                                
                You can provide this field for card types that have a savings/checking option, such as Maestro cards.
If you do not provide a value, we will use the acquirer's default. You can use paymentTypes.card.cardTypes in the 'Retrieve Payment Options' operation response to determine the card type.
Value must be a member of the following list. The values are case sensitive.
CHECKING
                                        SAVINGS
                                        Enumeration
                        ALWAYS PROVIDED
                                        
                The brand name used to describe the card that is recognized and accepted globally.
For many major card types this will match the scheme name. In some markets, a card may also be co-branded with a local brand that is recognized and accepted within its country/region of origin (see card.localBrand).
You may use this information to support surcharging decisions. This information is gathered from 3rd party sources and may not be accurate in all circumstances.
Value must be a member of the following list. The values are case sensitive.
MAESTRO
                                        Maestro
MASTERCARD
                                        MasterCard
UATP
                                        UATP (Universal Air Travel Plan)
UNKNOWN
                                        The brand of the card used in the transaction could not be identified
VISA
                                        Visa
Use this parameter group if the payer used a device payment technology (eg ApplePay).
You can either just present the device's payment token in the paymentToken subfield, or decrypt the payment token yourself and pass the components in the 3dSecure subfields.
Enumeration
                        
                                            CONDITIONAL
                                
                The format of the cryptogram provided for the device payment.
You must provide the cryptogram format when you decrypt the payment token and provide the payment details (including the online payment cryptogram) in the transaction request.
You do not need to provide the cryptogram format if you provide the payment token in sourceOfFunds.provided.card.devicePayment.paymentToken
Value must be a member of the following list. The values are case sensitive.
3DSECURE
                                        The payment data keys for the online payment cryptogram are provided using the 3-D Secure format.
EMV
                                        The payment data keys for the online payment cryptogram are provided using the EMV format.
The expiry date of the account number associated with a digital payment method.
The associated account number is returned in sourceOfFunds.provided.card.deviceSpecificNumber. This field is returned for:
- • Device payments: the expiry date for the Device Primary Account Number (DPAN).
- • Digital wallets: the expiry date for the Token PAN.
- • Card scheme tokens: the expiry date for the Token PAN.
Digits
                        ALWAYS PROVIDED
                                        
                Month from the expiry date of the device specific account number.
Months are numbered January=1, through to December=12.
Data is a number between 1 and 12 represented as a string.
Digits
                        ALWAYS PROVIDED
                                        
                Year from the expiry date of the device specific account number.
The Common Era year is 2000 plus this value.
Data is a string that consists of the characters 0-9.
Masked digits
                        ALWAYS PROVIDED
                                        
                The payer's account number associated with a digital payment method.
Use this field for:
- • Device payments: the payers's account number associated with the mobile device used for the payment. This is also known as the Device Primary Account Number (DPAN).
- • Digital wallets: the Token PAN returned by a digital wallet. The gateway only returns this value for Amex Express Checkout.
- • Card scheme tokens: the token generated by a card scheme tokenization service such as Mastercard Digital Enablement Service (MDES). The token is used as an identifier of the payer's Primary Account Number (PAN) securely stored by the service. For MDES, this token is referred to as the Token PAN. For VTS, this is the Token
Data is a string that consists of the characters 0-9, plus 'x' for masking
String
                        
                                            CONDITIONAL
                                
                This field only applies to transactions that originate from an EMV capable terminal.
It contains selected EMV fields as provided by the terminal.
For the list of field tags to include (if provided by the terminal), see Card Present Payments. Requests with any other tags are rejected by the gateway.
Some of the tags represent data that can occur on explicit fields in this API. You can submit the value either in this field, or in both places. For example, the PAN can be presented as EMV tag 5A in this field, or included both the sourceOfFunds.provided.card.number API field and in EMV tag 5A in this field.
If you specify the EMV tag only, we can populate the explicit field in the API. Fields where this is supported have the text "This field corresponds to EMV tag <tag name>" in their field descriptions.
If you specify both places, there will be no population of the explicit field or validation that the data matches.
The API response will not contain PCI sensitive fields.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                This field only applies to transactions that originate from an EMV capable terminal.
It contains the EMV fields returned from the issuer in response to an authorization request for the chip transaction when the transaction was sent online.
The card/terminal uses data returned from the issuer to make the final decision to accept or decline the transaction.
Data can consist of any characters
Enumeration
                        
                                            CONDITIONAL
                                
                The encryption framework used for the payment details received by the gateway.
Value must be a member of the following list. The values are case sensitive.
DEVICE
                                        Encrypted by a payer's device (such as a mobile phone).
DIGITAL_WALLET
                                        Encrypted by a payer's digital wallet.
DUKPT
                                        Encrypted by a payment terminal using Derived Unique Key Per Transaction (DUKPT).
Expiry date, as shown on the card.
This field corresponds to EMV tag 5F24
Digits
                        ALWAYS PROVIDED
                                        
                Month, as shown on the card.
If using a scheme token this is the token expiry month.
Months are numbered January=1, through to December=12.
Data is a number between 1 and 12 represented as a string.
Digits
                        ALWAYS PROVIDED
                                        
                Year, as shown on the card.
If using a scheme token this is the token expiry year.
The Common Era year is 2000 plus this value.
Data is a string that consists of the characters 0-9.
Enumeration
                        ALWAYS PROVIDED
                                        
                The method used by the payer to provide the funds for the payment.
You may use this information to support surcharging decisions. This information is gathered from 3rd party sources and may not be accurate in all circumstances.
Value must be a member of the following list. The values are case sensitive.
CHARGE
                                        The payer has a line of credit with the issuer which must be paid off monthly.
CREDIT
                                        The payer has a revolving line of credit with the issuer.
DEBIT
                                        Funds are immediately debited from the payer's account with the issuer.
UNKNOWN
                                        The account funding method could not be determined.
String
                        
                                            CONDITIONAL
                                
                The issuer of the card, if known.
WARNING: This information may be incorrect or incomplete – use at your own risk.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The brand name used to describe a card that is recognized and accepted within its country/region of origin.
The card may also be co-branded with a brand name that is recognized and accepted globally (see card.brand).
You may use this information to support surcharging decisions. This information is gathered from 3rd party sources and may not be accurate in all circumstances.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The cardholder's name as printed on the card.
Data can consist of any characters
Masked digits
                        ALWAYS PROVIDED
                                        
                The account number of the payer's account used for this authentication.
On requests, provide the number in the form that you receive it (as explained below). On responses, the gateway populates it with a form that the payer would recognize (also explained in more detail below).
- Request 
 On request, populate this field based on the payment method you are using for the payment:- • Card: the account number embossed onto the card.
- • Scheme tokens such as MDES (Mastercard Digital Enablement Service) - supply the value called the "Token PAN" or VTS (Visa Token Service) - supply the value called "token".
 
- Response 
 On return, the card number will be populated in 6.4 masking format, for example, 000000xxxxxx0000.
Data is a string that consists of the characters 0-9, plus 'x' for masking
The PIN (Personal Identification Number) entered by a payer at the point of sale that is used to authenticate their identity as the cardholder with the issuer.
Provide this data in the case where you want the PIN verified online by the issuer. The gateway can support PINs encoded in ISO 9564-1 formats 0, 1, 3 and 4, but the supported format will depend on integration.
Enumeration
                        
                                            CONDITIONAL
                                
                The PIN encryption state as determined by the terminal.
INVALID means the terminal detected some form of error in the encryption process. The gateway will decline transactions with INVALID encryption state. This field may be omitted when the value is VALID.
Value must be a member of the following list. The values are case sensitive.
INVALID
                                        The encryption state is invalid.
VALID
                                        The encryption state is valid.
Hex
                        ALWAYS PROVIDED
                                        
                The DUKPT key serial number supplied by the terminal.
Data is hexadecimal encoded
Enumeration
                        ALWAYS PROVIDED
                                        
                The organization that owns a card brand and defines operating regulations for its use.
The card scheme also controls authorization and settlement of card transactions among issuers and acquirers.
Value must be a member of the following list. The values are case sensitive.
MASTERCARD
                                        MasterCard
UATP
                                        UATP (Universal Air Travel Plan)
VISA
                                        Visa
Digits
                        
                                            CONDITIONAL
                                
                A number used to differentiate between cards with the same Primary Account Number (PAN).
This field corresponds to EMV tag 5F34
Data is a string that consists of the characters 0-9.
Enumeration
                        
                                            CONDITIONAL
                                
                This field only applies if you collect cards from your payers, store them, and either you or your payers use the stored value for subsequent payments.
If you store using gateway tokenization then you can ignore this field, unless you do payments with both stored and non-stored cards. If you do both, then you must supply the NOT_STORED value for the non-stored case. 
If you use Scheme Tokenization services like MDES and store the tokens provided, you have to provide the value STORED and if you pass the token value with out storing them, provide the value NOT_STORED. 
If you store yourself, you have to provide the TO_BE_STORED or STORED values for all payments.
Value must be a member of the following list. The values are case sensitive.
NOT_STORED
                                        Set this value if the card or token details provided will not be stored. This is the default value for merchants without tokenization.
STORED
                                        Set this value if the card or token details provided have been stored previously. This is the default value when paying with a gateway token.
TO_BE_STORED
                                        Set this value if this is the first transaction using the card and you intend to store the card or token details on success. This is the default value for tokenization merchants who present a payment with a PAN.
String
                        
                                            CONDITIONAL
                                
                Tags provide you with additional information about the card.
For example, identifying if it is an EBT (Electronic Benefits Transfer) or Health Benefit Card. You can use this information to support your decisions about accepting payments with this card. The data is encoded in JSON as an object map indexed on the tag name. Some standard tag names are EBT and HEALTH_BENEFIT_CARD_IIAS. If these tags apply to the card, the tag will have value true, otherwise it will be absent. Other tag names with other values might also exist, depending on which acquirer processed the transaction. For example, an EBT card might return value: {"ACME_CARD_IDENTIFIER":"23", "EBT":true} Contact your payment provider if you wish to understand all tags available for your acquirers.
Data can consist of any characters
Boolean
                        
                                            CONDITIONAL
                                
                Indicates whether card track data is provided.
JSON boolean values 'true' or 'false'.
If the payer chose to pay using a Electronic Benefits Transfer card, you must submit sourceOfFunds.type=EBT_CARD and provide the payer's card details in this parameter group.
Enumeration
                        
                                            CONDITIONAL
                                
                Indicates the type of benefits account used for the payment.
Value must be a member of the following list. The values are case sensitive.
CASH_BENEFITS
                                        Benefits provided as cash.
EWIC_BENEFITS
                                        Benefits provided under the Special Supplemental Nutrition Program for Women, Infants, and Children.
SNAP_BENEFITS
                                        Benefits provided under the Supplemental Nutrition Assistance Program.
Digits
                        
                                            CONDITIONAL
                                
                Value provided to you by the EBT merchant helpline when you requested manual authorization of the payment because you were unable to authorize the payment online.
For example, your point of sale (POS) machine is not working. When you manually authorize a payment you also need to provided the voucher number used to record the payment in sourceOfFunds.provided.EBT.voucherNumber.
Data is a string that consists of the characters 0-9.
Digits
                        
                                            CONDITIONAL
                                
                The identifier assigned to you by the USDA Food and Nutrition Service (FNS) when they authorized you to accept EBT payments at your store.
Data is a string that consists of the characters 0-9.
Digits
                        
                                            CONDITIONAL
                                
                The number of the paper form (voucher) that you used to record details of an EBT payment when you were unable to authorize the payment online.
For example, your point of sale (POS) machine is not working. When you use a voucher you also need to provide an authorization code in sourceOfFunds.provided.benefits.ebt.manualAuthorizationCode.
Data is a string that consists of the characters 0-9.
Additional details related to an eNETS browser payment.
Note: if you provide data for an eNETS payment, then you must also provide an email address for the customer in customer.email and a phone number for the customer in either customer.phone or customer.mobilePhone
String
                        ALWAYS PROVIDED
                                        
                The name of the bank account holder for the payer's bank account.
Data can consist of any characters
A gift card was used.
The payer's gift card details are provided in this parameter group.
Enumeration
                        ALWAYS PROVIDED
                                        
                The brand name used to describe the card that is recognized and accepted globally.
For many major card types this will match the scheme name.
Value must be a member of the following list. The values are case sensitive.
LOCAL_BRAND_ONLY
                                        The card does not have a global brand.
String
                        ALWAYS PROVIDED
                                        
                The brand name used to describe a card as determined by the gateway, based on the BIN range of the card.
Data can consist of any characters
Masked digits
                        ALWAYS PROVIDED
                                        
                Card number as printed or embossed on the gift card.
Data is a string that consists of the characters 0-9, plus 'x' for masking
Masked digits
                        
                                            CONDITIONAL
                                
                PIN number for the gift card.
Data is a string that consists of the characters 0-9, plus 'x' for masking
Additional details related to GrabPay browser payment.
String
                        ALWAYS PROVIDED
                                        
                The name of the account holder for the payer's GrabPay account.
Data can consist of any characters
Additional details related to Open Banking Bank Transfer.
String
                        ALWAYS PROVIDED
                                        
                Identifier of the payer's bank, also known as ASPSP (Account Servicing Payment Services Provider)
Data can consist of any characters
Additional details related to an OXXO browser payment.
When processing an OXXO payment you must also provide the payer's national identifier (customer.nationalId), your reference to the payer (customer.id) and the payer's date of birth (customer.dateOfBirth).
String
                        ALWAYS PROVIDED
                                        
                The name of the bank account holder for the payer's bank account.
Data can consist of any characters
Date
                        
                                            CONDITIONAL
                                
                The date by which your payer has to make the payment.
Do not provide a due date for USD currency transactions.
Data must comply with ISO 8601 extended date format, yyyy-mm-dd
Information about the payer's PayPal account.
It is provided to you when the payer successfully makes a payment using PayPal or when you have established a billing agreement with the payer.
Email
                        
                                            CONDITIONAL
                                
                The email address of the payer's PayPal account.
Ensures that the email address is longer than 3 characters and adheres to a generous subset of valid RFC 2822 email addresses
String
                        
                                            CONDITIONAL
                                
                The name of the account holder of the payer's PayPal account.
Data can consist of any characters
Details about the agreement you have established with the payer that allows you to bill the payer's PayPal account for goods or services.
Enumeration
                        
                                            CONDITIONAL
                                
                Indicates the number of billing agreements between you and this payer.
Value must be a member of the following list. The values are case sensitive.
MULTIPLE
                                        Indicates that you have multiple billing agreements with this payer. This means that a new agreement ID will be returned in response to each request.
SINGLE
                                        Indicates that you have a single billing agreement with this payer. This means that the same agreement ID will be returned in response to each request.
String
                        
                                            CONDITIONAL
                                
                Your description for the PayPal billing agreement.
This description is displayed to the payer when they are asked to approve the billing agreement.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                An identifier provided by PayPal for the billing agreement.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                Your name for the PayPal billing agreement.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The unique identifier for the payer assigned by PayPal.
Data can consist of any characters
Additional details related to Pay by Bank app payment.
Digits
                        
                                            CONDITIONAL
                                
                A unique reference to the payment request, also known as the Pay by Bank app secure token.
This identifier should be used when invoking the banking app within the payer's mobile.
Data is a string that consists of the characters 0-9.
Upper case alphabetic text
                        
                                            CONDITIONAL
                                
                The one-time six character code identifying the payment request, also known as the Pay by Bank app Basket Reference Number.
This code may be used by the payer to confirm the payment within their mobile banking app.
Data must consist of the characters A-Z
Additional details related to a POLi browser payment.
String
                        ALWAYS PROVIDED
                                        
                The name of the bank account holder for the payer's bank account.
Data can consist of any characters
Additional details related to a Przelewy24 browser payment.
String
                        ALWAYS PROVIDED
                                        
                The name of the bank account holder for the payer's bank account.
Data can consist of any characters
Details about the payer's bank account used for a payment made using SEPA
String
                        ALWAYS PROVIDED
                                        
                The name of the bank account holder for the payer's bank account.
Data can consist of any characters
Alphanumeric
                        
                                            CONDITIONAL
                                
                The international Business Identifier Code (BIC) for the payer's bank account.
Data may consist of the characters 0-9, a-z, A-Z
String
                        ALWAYS PROVIDED
                                        
                The International Bank Account Number (IBAN) for the payer's bank account.
By default, the bank account number will be returned in a masked format, for example, xxxxxx0000. If you wish to return unmasked bank account numbers, you must have the requisite permission, set responseControls.sensitiveData, and authenticate your call to the API using certificate authentication. Contact your payment service provider for further information.
Data can consist of any characters
Details about the payer's bank account used for a payment made using Sofortbanking.
The format of the bank account details differs per country.
String
                        
                                            CONDITIONAL
                                
                The name of the bank account holder for the payer's bank account.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The country-specific bank account number for the payer's bank account.
By default, the bank account number will be returned in a masked format, for example, xxxxxx0000. If you wish to return unmasked bank account numbers, you must have the requisite permission, set responseControls.sensitiveData, and authenticate your call to the API using certificate authentication. Contact your payment service provider for further information.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The country-specific bank identifier for the payer's bank account.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The international Business Identifier Code (BIC) for the payer's bank account.
Data can consist of any characters
Upper case alphabetic text
                        
                                            CONDITIONAL
                                
                The 3 letter ISO standard alpha country code of the payer's bank account.
Data must consist of the characters A-Z
String
                        
                                            CONDITIONAL
                                
                The International Bank Account Number (IBAN) for the payer's bank account.
By default, the bank account number will be returned in a masked format, for example, xxxxxx0000. If you wish to return unmasked bank account numbers, you must have the requisite permission, set responseControls.sensitiveData, and authenticate your call to the API using certificate authentication. Contact your payment service provider for further information.
Data can consist of any characters
Additional details related to a Trustly.
String
                        ALWAYS PROVIDED
                                        
                The name of the bank account holder for the payer's bank account.
Data can consist of any characters
Additional details related to a WeChat Pay browser payment.
String
                        ALWAYS PROVIDED
                                        
                The name of the account holder for the payer's WeChat Pay account.
Data can consist of any characters
Alphanumeric
                        
                                            CONDITIONAL
                                
                Gateway token that uniquely identifies a card and associated details.
Data may consist of the characters 0-9, a-z, A-Z
Alphanumeric
                        
                                            CONDITIONAL
                                
                The unique identifier assigned to you by the Token Service Provider that you requested a token from for this payment.
This field is mandatory for payments where the Chase Pay wallet was used.
Data may consist of the characters 0-9, a-z, A-Z
Enumeration
                        
                                            CONDITIONAL
                                
                The payment method used for this authentication.
If you are passing card or scheme token data on the API, then you need to set this value, and also provide the card or token details in the sourceOfFunds.provided.card group.
If you are making a payment with a gateway token, then you can leave this field unset, and only populate the sourceOfFund.token field.
Value must be a member of the following list. The values are case sensitive.
CARD
                                        Use this value for authentications using the card number.
NONE
                                        The transaction transfers money to or from the merchant, without the involvement of a payer. For example, recording monthly merchant service fees from your payment service provider.
SCHEME_TOKEN
                                        Use this value for authentications using scheme tokens.
Information about your merchant.
This group only applies if you:
- operate a gateway, and
- you are not boarding your merchants onto the gateway, and
- you are enabled for this capability on the gateway.
If you are such a gateway, use these fields to provide information about your merchant, so that our gateway can process their transaction on your behalf.
Note: In these cases, you must also provide a value for field order.merchantCategoryCode
Details about this merchant's account with the acquirers they use for payment processing.
A merchant might have one or more acquirers.
Each record in this group applies to one acquirer. If your gateway knows exactly which acquirer will use for this transaction, then you can provide just that acquirer's data. Alternatively, you can specify a set of acquirers, in which case the gateway will select between them based on the routing rules that configured in our gateway.
In this group, the term 'acquirer' includes banks acquiring scheme cards (such as MasterCard,or Visa), and alternative providers (such as UnionPay, or SEPA)String
                        ALWAYS PROVIDED
                                        
                The identifier (ID/SE Number/account name or such ) allocated to your merchant by their acquiring institution.
Data can consist of any characters
Information about the merchant's registration to use American Express SafeKey 3-D Secure authentication for this acquirer.
Regex
                        
                                            CONDITIONAL
                                
                The unique identifier assigned to the merchant by their acquirer when they registered to use American Express SafeKey 3-D Secure authentication.
Data must match regex
Upper case alphabetic text
                        
                                            CONDITIONAL
                                
                The ISO 3166 three-letter country code of the acquirer.
Data must consist of the characters A-Z
Integer
                        
                                            CONDITIONAL
                                
                The merchant's fraud rate, as determined by the acquirer, expressed in basis points (bps).
JSON number data type, restricted to being positive or zero. In addition, the represented number may have no fractional part.
String
                        ALWAYS PROVIDED
                                        
                The name of the acquirer on which your merchant has an account.This is the value as returned in transaction.acquirer.id, for example ACME_BANK.
Your payment service provider will supply the acquirer names that apply to you.
Data can consist of any characters
Digits
                        
                                            CONDITIONAL
                                
                A 4-digit code used to classify the merchant's business by the type of goods or services it offers.
This is also known as the Merchant Category Code (MCC).
You only need to provide this value if you are specifying more than one acquirer link, and some acquirers need different MCC values. If the same MCC applies to all acquirers, just specify it as order.merchantCategoryCode.
Data is a string that consists of the characters 0-9.
The address of this merchant.
String
                        ALWAYS PROVIDED
                                        
                The city or town of this merchant's billing address.
Data can consist of any characters
Upper case alphabetic text
                        ALWAYS PROVIDED
                                        
                The country of this merchant's billing address.
The value must be a three-letter country code according to ISO 3166-1 alpha-3.
Data must consist of the characters A-Z
String
                        ALWAYS PROVIDED
                                        
                The zip or postal code of this merchant's billing address.
Data can consist of any characters
String
                        ALWAYS PROVIDED
                                        
                The state or province code of the merchant's billing address.
For merchants in the United States provide the 2-letter ISO 3166-2 state code. For US military bases provide one of AE, AA, AP.
 For Canadian merchants provide the 2-letter ISO 3166-2 province code.
Data can consist of any characters
String
                        ALWAYS PROVIDED
                                        
                The first line of the street address of this merchant's billing address.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The second line of the street address of this merchant's billing address.
Data can consist of any characters
Information about the merchant's registration to use a payer authentication protocol.
For example, using 3-D Secure authentication.
Information about the merchant's registration to use 3-D Secure authentication version 2.
These details are used to identify the merchant to the card schemes directory server.
This API assumes that a merchant has only one registration for a each 3DS2 scheme across all the acquirers. If your merchant has more than one 3DS2 registration that could apply to this transaction, then you need to provide a lineOfBusiness field to narrow to one registration.
String
                        
                                            CONDITIONAL
                                
                The unique identifier assigned to the merchant by the card scheme directory server when the merchant registered to use 3-D Secure authentication version 2 with their acquirer.
Do not provide this value for Mastercard SecureCode, JCB JSecure, Discover ProtectBuy or Verified by Visa, For these authentication schemes, it will be generated by the gateway. For American Express if it is provided it will be used otherwise it will be generated by the gateway.
Data can consist of any characters
String
                        
                                            CONDITIONAL
                                
                The unique name assigned to the merchant by the card scheme directory server when the merchant registered to use 3-D Secure authentication version 2 with their acquirer.
Do not provide this value for Mastercard SecureCode, JCB JSecure, Discover ProtectBuy or Verified by Visa, For these authentication schemes, it will be generated by the gateway. For American Express if it is provided it will be used otherwise it will be generated by the gateway.
Data can consist of any characters
Digits
                        
                                            CONDITIONAL
                                
                The acquirer's Bank Identification Number (BIN).
This is used to identify the acquirer in messages to the scheme's Directory Server for 3-D Secure authentication version 2 transactions
Data is a string that consists of the characters 0-9.
Enumeration
                        ALWAYS PROVIDED
                                        
                The protocol used for payer authentication.
Value must be a member of the following list. The values are case sensitive.
AMEX_SAFEKEY
                                        American Express SafeKey EMV 3DS authentication
DINERS_PROTECTBUY
                                        Diners ProtectBuy EMV 3DS authentication
FASTR_BY_CB
                                        Carte Bancaire FAST'R by CB using EMV 3DS authentication
JCB_JSECURE
                                        JCB J/Secure using EMV 3DS authentication
MASTERCARD_SECURECODE
                                        Mastercard SecureCode EMV 3DS authentication
RUPAY
                                        VERIFIED_BY_VISA
                                        Visa Verified by Visa EMV 3DS authentication
Alphanumeric + additional characters
                        ALWAYS PROVIDED
                                        
                The identifier you use to uniquely identify this merchant on your system.
Data may consist of the characters 0-9, a-z, A-Z, '_', '-'
String
                        ALWAYS PROVIDED
                                        
                This merchant's registered business, trading or organization name.
This must match the merchant name you provided during registration with scheme Directory Servers.
Data can consist of any characters
Url
                        ALWAYS PROVIDED
                                        
                The URL of the merchant's website.
You must provide a value if you want the gateway to perform 3-D Secure authentication of the payer.
Ensure that the URL begins with 'https' and is longer than 11 characters.
DateTime
                        
                                            CONDITIONAL
                                
                Indicates the date and time the gateway considers the transaction to have last been updated.
An instant in time expressed in ISO8601 date + time format - "YYYY-MM-DDThh:mm:ss.SSSZ"
DateTime
                        
                                            CONDITIONAL
                                
                Indicates the date and time the gateway considers the transaction to have been created.
The gateway uses timeOfRecord as a point-in-time value for operations such as sorting, billing, and reporting.
An instant in time expressed in ISO8601 date + time format - "YYYY-MM-DDThh:mm:ss.SSSZ"
Information about this transaction.
String
                        
                                            CONDITIONAL
                                
                An identifier allocated by an acquirer to the merchant.
This may also be referred to as the Card Acceptor Identification Code (CAIC), Card Acceptor ID (CAID), or Service Establishment Number (SE Number).
Data can consist of any characters
Decimal
                        ALWAYS PROVIDED
                                        
                The total amount for the transaction.
Data is a decimal number.
Enumeration
                        
                                            CONDITIONAL
                                
                Indicates the result of payer authentication.
Value must be a member of the following list. The values are case sensitive.
AUTHENTICATION_ATTEMPTED
                                        Payer authentication was attempted and a proof of authentication attempt was obtained.
AUTHENTICATION_AVAILABLE
                                        Payer authentication is available for the payment method provided.
AUTHENTICATION_EXEMPT
                                        Exemption from the Regulatory Technical Standards (RTS) requirements for Strong Customer Authentication (SCA) under the Payment Services Directive 2 (PSD2) regulations in the European Economic Area has been claimed or granted.
AUTHENTICATION_FAILED
                                        The payer was not authenticated. You should not proceed with this transaction.
AUTHENTICATION_NOT_IN_EFFECT
                                        There is no authentication information associated with this transaction.
AUTHENTICATION_NOT_SUPPORTED
                                        The requested authentication method is not supported for this payment method.
AUTHENTICATION_PENDING
                                        Payer authentication is pending completion of a challenge process.
AUTHENTICATION_REJECTED
                                        The issuer rejected the authentication request and requested that you do not attempt authorization of a payment.
AUTHENTICATION_REQUIRED
                                        Payer authentication is required for this payment, but was not provided.
AUTHENTICATION_SUCCESSFUL
                                        The payer was successfully authenticated.
AUTHENTICATION_UNAVAILABLE
                                        The payer was not able to be authenticated due to a technical or other issue.
Upper case alphabetic text
                        ALWAYS PROVIDED
                                        
                The currency of the transaction expressed as an ISO 4217 alpha code, e.g. USD.
Data must consist of the characters A-Z
String
                        ALWAYS PROVIDED
                                        
                Unique identifier for this transaction to distinguish it from any other transaction on the order.
An order can have transactions representing:
- Movement of money. For example, payments and refunds.
- Validations. For example, account verification or 3-D Secure authentication of the payer.
- Undoing other transactions. For example, voiding a payment transaction.
- Chargebacks.
- Fees from your payment service provider.
If you attempt an operation and it fails (eg you try to PAY on a card with no funds), then you need a new id for each retry.
Data can consist of any characters
Enumeration
                        ALWAYS PROVIDED
                                        
                Indicates the type of action performed on the order.
Value must be a member of the following list. The values are case sensitive.
AUTHENTICATION
                                        Authentication
AUTHORIZATION
                                        Authorization
AUTHORIZATION_UPDATE
                                        Authorization Update
CAPTURE
                                        Capture
CHARGEBACK
                                        Chargeback
DISBURSEMENT
                                        Disbursement
FUNDING
                                        The transaction transfers money to or from the merchant, without the involvement of a payer. For example, recording monthly merchant service fees from your payment service provider.
PAYMENT
                                        Payment (Purchase)
REFUND
                                        Refund
REFUND_REQUEST
                                        Refund Request
VERIFICATION
                                        Verification
VOID_AUTHORIZATION
                                        Void Authorization
VOID_CAPTURE
                                        Void Capture
VOID_PAYMENT
                                        Void Payment
VOID_REFUND
                                        Void Refund
String
                        
                                            CONDITIONAL
                                
                The Web Services API version that you submitted the request in.
Data can consist of any characters
Errors
Information on possible error conditions that may occur while processing an operation using the API.
Enumeration
                        
                Broadly categorizes the cause of the error.
For example, errors may occur due to invalid requests or internal system failures.
Value must be a member of the following list. The values are case sensitive.
INVALID_REQUEST
                                        The request was rejected because it did not conform to the API protocol.
REQUEST_REJECTED
                                        The request was rejected due to security reasons such as firewall rules, expired certificate, etc.
SERVER_BUSY
                                        The server did not have enough resources to process the request at the moment.
SERVER_FAILED
                                        There was an internal system failure.
String
                        
                Textual description of the error based on the cause.
This field is returned only if the cause is INVALID_REQUEST or SERVER_BUSY.
Data can consist of any characters
String
                        
                Indicates the name of the field that failed validation.
This field is returned only if the cause is INVALID_REQUEST and a field level validation error was encountered.
Data can consist of any characters
String
                        
                Indicates the code that helps the support team to quickly identify the exact cause of the error.
This field is returned only if the cause is SERVER_FAILED or REQUEST_REJECTED.
Data can consist of any characters
Enumeration
                        
                Indicates the type of field validation error.
This field is returned only if the cause is INVALID_REQUEST and a field level validation error was encountered.
Value must be a member of the following list. The values are case sensitive.
INVALID
                                        The request contained a field with a value that did not pass validation.
MISSING
                                        The request was missing a mandatory field.
UNSUPPORTED
                                        The request contained a field that is unsupported.
Enumeration
                        
                A system-generated high level overall result of the operation.
Value must be a member of the following list. The values are case sensitive.
ERROR
                                        The operation resulted in an error and hence cannot be processed.