Card API
A JWT generated by the Get Authorization Token API.
The server checks the validity of the provided token to control access to this protected resource. Please refer to Get OAuth 2.0 access token for more details on the flow and on how to get this JWT.
The id of the issuer
Unique identifier of the card.
^[A-Za-z0-9_-]{1,48}$Random identifier which can be used to correlate the different API calls done as part of a single use-case. This identifier will be the one primarily used for troubleshooting.
There is no strong guarantee of the uniqueness of this identifier, so please refrain from using it for other purpose than logging and troubleshooting.
Oauth Access Token (optional)
'Bearer: 2zzLJmBAtTNIU8nF8e8XbmDvaNGs'OK
The encryptedData is the encrypted json (cf http://www.json.org/ ) representation of the card credentials.
This value is encrypted using the JWE encryption (please refer to the Encrypt sensitive data for more details)
Content
Once deciphered, the plaintext contains:
| JSON field parameter name | description | MOC | Format |
|---|---|---|---|
| pan | The funding pan value. | M | string - from 10 to 19 digits |
| exp | The expiry date of the card. | M | string - 4 digits, following the format MMYY |
| name | The card holder name. | O | string - up to 128 characters |
| cvv | The CVV2 value of the funding card | M | string - 3 or 4 digits |
Bad Request
Authorization missing or invalid
Action forbidden (if card is not active, for example)
Resource not found (issuerId, cardId)
Internal Server Error
Last updated
Was this helpful?