3DS API

Notify 3-D Secure Card Operation

post

This request is used by D1 to notify the issuer backend about all 3-D Secure operations done on a card.

Authorizations

AuthorizationstringRequired

A JWT generated by the Get Authorization Token API.
The server checks the validity of the provided token to control access to this protected resource. Please refer to Get OAuth 2.0 access token for more details on the flow and on how to get this JWT.

Path parameters

issuerIdstring · min: 10 · max: 10Required

The id of the issuer

cardIdstring · min: 1 · max: 48Required

Unique identifier of the card.

Pattern: ^[A-Za-z0-9_-]{1,48}$

Header parameters

x-correlation-idstringOptional

Random identifier which can be used to correlate the different API calls done as part of a single use-case. This identifier will be the one primarily used for troubleshooting.

There is no strong guarantee of the uniqueness of this identifier, so please refrain from using it for other purpose than logging and troubleshooting.

Body

Details about a 3-D Secure operation.

operationIdstring · min: 1 · max: 64Required

Unique identifier of the operation

Pattern: ^[A-Za-z0-9_-]{1,64}$

operationstring · enumRequired

The operation type.

Possible values:

statusstring · enumRequired

Status of the operation

Possible values:

startTimestring · min: 1 · max: 64Required

The time the request has been processed. Format ISO 8601 YYYY-MM-DDThh:mm:ssTZD

Example: 2022-06-16T06:28:02.492Z

consumerIdstring · min: 1 · max: 64Optional

Unique identifier of the consumer.

Pattern: ^[A-Za-z0-9_-]{1,64}$

detailsone ofOptional

errorstringOptional

Human readable string representing the error, only present in case of operation failure

Responses

204

Successful

400

Bad Request, Invalid request URI or header, or unsupported nonstandard parameter

application/json

401

The provided Authorization header is missing or invalid

404

Resource not found. Unknown issuerId or consumerId or accountId or cardId

application/json

500

Internal server error

application/json

post

/notifications/d1/v1/issuers/{issuerId}/cards/{cardId}/3ds/notifications

POST /notifications/d1/v1/issuers/{issuerId}/cards/{cardId}/3ds/notifications HTTP/1.1
Host: YOUR_DOMAIN_NAME
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 492

{
  "operationId": "text",
  "operation": "3DS_FRICTIONLESS",
  "status": "SUCCESSFUL",
  "startTime": "2022-06-16T06:28:02.492Z",
  "consumerId": "text",
  "details": {
    "acsTransactionId": "text",
    "purchase": {
      "merchantName": "text",
      "amount": "text",
      "currencyCode": "text"
    },
    "device": {
      "deviceChannel": "01",
      "appInstanceId": "text",
      "authnType": "BIOMETRIC"
    },
    "eci": "text",
    "authenticationMethod": "02",
    "transStatus": "Y",
    "transStatusReason": "text",
    "rba": {
      "evaluatedRule": [],
      "selectedRule": [],
      "appliedExemption": []
    }
  },
  "error": "text"
}

No content

PreviousConsumer API NextAPI change policy

Last updated 5 months ago

Was this helpful?