カード API

Register Card

put

/v2/issuers/{issuerId}/cards/{cardId}

This request is used to register a card with corresponding cards credentials. This operation is applicable for card product supporting:

No authorisation mode
Light authorisation mode

The cardId used to register the card shall be unique. A cardId can be reused to register another card (having a different PAN) under several conditions:

The cardId to be reused is linked with a DELETED or REPLACED card
The cardId to be reused is not associated to a card issued by D1 (a card created using the CREATE card API).
The cardId to be reused is not associated with a card product used for making transactions
In any case, it is not possible to register a card PAN already deleted or replaced. Even by reusing a cardId. Reusing a cardId for another consumer is not recommanded. Since the cardId will disappear from the previous consumer cards list.

認可

Authorizationstring必須

A JWT generated by the Get Authorization Token API.
The server checks the validity of the provided token to control access to this protected resource. Please refer to Get OAuth 2.0 access token for more details on the flow and on how to get this JWT.

パスパラメータ

issuerIdstring · 最小: 10 · 最大: 10必須

The id of the issuer

cardIdstring · 最小: 1 · 最大: 48必須

Unique identifier of the card.

Pattern: ^[A-Za-z0-9_-]{1,48}$

ヘッダーパラメータ

x-correlation-idstringオプション

Random identifier which can be used to correlate the different API calls done as part of a single use-case. This identifier will be the one primarily used for troubleshooting.

Warning: This identifier should not be derived from sensitive personal data, as its value will be logged in clear.

There is no strong guarantee of the uniqueness of this identifier, so please refrain from using it for other purpose than logging and troubleshooting.

Pattern: ^[A-Za-z0-9_-]{1,64}$

x-user-idstringオプション

Identifier of the user that requests the operation on D1 API. This value is provided for information purpose, D1 doesn't do any verification based on this identifier.
D1 manages to propagate the information to a subsequent internal system for tracking purpose.
This identifier is not mandatory.

Pattern: ^[A-Za-z0-9_-]{1,15}$

本文

consumerIdstring · 最小: 1 · 最大: 64必須

Unique identifier of the consumer.

Pattern: ^[A-Za-z0-9_-]{1,64}$

cardProductIdstring · 最小: 1 · 最大: 48必須

Unique identifier of the type of card ( defined during the onboarding of D1)

Pattern: ^[A-Za-z0-9_-]{1,48}$

statestring · enumオプション

The state of the card
If not provided, the card is considered ACTIVE

可能な値:

namestring · 最大: 26必須

Name of the card holder as it will be printed/embossed on the card.
For virtual card this value will be used exclusively for card display.
Empty string supported.

Pattern: ^[a-zA-Z. -]{0,26}$

secondNamestring · 最大: 26オプション

Optional second card holder name as it will be printed/embossed on the card under the first card holder name.
Not used in case of virtual card.

Pattern: ^[a-zA-Z. -]{0,26}$

encryptedDatastring · 最大: 8192必須

The encryptedData is the encrypted json (cf http://www.json.org/) representation of the Card information. This value is encrypted using the JWE encryption (please refer to the Encrypt sensitive data for more details)

Once deciphered, the plaintext contains a json structure with:

JSON field parameter name	description	MOC	Format
pan	The funding pan value.	M	string - up to 19 digits
exp	The expiry date of the card.	M	string - 4 digits, following the format MMYY
auxiliaryPan	The auxiliary funding pan value. It shall be provided when cobadge is supported and if the card has an auxiliary pan.	C	string - up to 19 digits
auxiliaryExp	The auxiliary expiry date of the card. It shall be provided when cobadge is supported and if the card has an auxiliary pan.	C	string - 4 digits, following the format MMYY

As D1 is able to compute the CVV2, the cvv parameter is not expected.

Pattern: ^(?:[\x20-\x2D\x2F-\x7F]*\.){4}(?:[\x20-\x2D\x2F-\x7F]*)$

レスポンス

204

Successful card registration

400

Bad Request, Invalid request URI, header, paramters. The below table defines the possible 'Bad request' error:

errorCode	error	Retryable	Comments
-	-	no	No error details available
FIELD_INVALID_FORMAT	Contains the field in error (first found)	no	One field is not expected format as defined in this documentation
CRYPTO_ERROR	-	no	Not possible to decrypt the provided encrypted data
FIELD_INVALID_VALUE	-	no	One field value is not allowed for the given field
INVALID_PAN	-	no	PAN is invalid
INVALID_EXPIRY_DATE	Expiry date is invalid

application/json

401

Unauthorized request, the provided Authorization header is missing or invalid. In the table below only the field "error" is provided.

errorCode	error	Retryable	Comments
AUTHORIZER_UNAUTHORIZED	Unauthorized message	no	Access token not valid

application/json

403

Forbidden action detected by WAF or the application. The below table defines the possible error:

errorCode	error	Retryable	Comments
-	-	no	No error details available
AUTHORIZER_FORBIDDEN	not_authorized error message	no	User_is_not_authorized_to_access_this_resource
CARD_ALREADY_EXISTS	-	no	CardId already registered in the solution
CARD_INVALID_STATE	-	no	CardId already registered in the solution and has an invalid card state (REPLACED or DELETED)
CONSUMER_INVALID_STATE	-	no	Consumer exists with an invalid consumer state (DELETED)
OPERATION_NOT_ALLOWED	Name of the operation/field that is not allowed in this operation	no	Register is not allowed for this card product

application/json

404

Ressource not found, Unknown issuerId

application/json

500

Internal Server Error. The below table defines the possible error:

errorCode	error	Retryable	Comments
-	-	yes	No error details available
INTERNAL_ERROR	error details if any	no	The server has encountered an error when executing the request.

application/json

503

The service is temporarily unavailable. You may retry your request later.

put

/v2/issuers/{issuerId}/cards/{cardId}

PUT /banking/v2/issuers/{issuerId}/cards/{cardId} HTTP/1.1
Host: api.d1.thalescloud.io
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 118

{
  "consumerId": "text",
  "cardProductId": "text",
  "state": "ACTIVE",
  "name": "text",
  "secondName": "text",
  "encryptedData": "text"
}

コンテンツなし

前へOAuth2 API 次へカード注文 API

最終更新 2 日前

役に立ちましたか？