AceHub Payments

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

200 Pending 3DS

200 Pending QR

{
  "result" : 0,
  "description" : "Ok",
  "header" : {
    "requestTimestamp" : "2017-06-19T10:20:51Z",
    "requestCode" : "2764688E-0EBC-4768-9A04-919FC74DA757"
  },
  "body" : {
    "card" : {
      "approvalCode" : "844875",
      "expiryMonth" : "05",
      "expiryYear" : "2020",
      "firstSixDigits" : "411111",
      "holderName" : "John Doe",
      "lastFourDigits" : "1111"
    },
    "transaction" : {
      "amount" : 1,
      "brandId" : 1010,
      "currencyCode" : "EUR",
      "action" : "authorize",
      "id" : "50F4A9D9-FB2A-4308-A085-9E22C344DD12",
      "trackingCode" : "7F4BFD5D-55E4-4775-81F7-0784188876C7"
    }
  }
}

{
   "result" : 2,
   "description" : "Pending",
   "header" : {
      "requestTimestamp" : "2017-05-08T10:09:23Z",
      "requestCode" : "3A57CEBA-3001-46A4-A044-5769D4B5319F"
   },
   "body" : {
      "redirect" : {
         "method" : "POST",
         "url" : "https://0eafstag.cardinalcommerce.com/EAFService/jsp/v1/redirect",
         "fields" : {
            "MD" : "7F4BFD5D-55E4-4775-81F7-0784188876C7",
            "PaReq" : "P.d304729f6767a5dced71a2b18644daeb093b23d9a6465121d5186de2dcd1ebd1194156582bed6e9dc3b25bdbcf80e7283efb503917349dce107c83ddabc42e20",
            "TermUrl" : "https://stagconnect.acehubpaymentservices.com/gateway/v3/threedsecure/d2828090-7917-4ff9-b1cb-0a1737bca364?action=payment"
         }
      },
      "threeDSecure" : {
         "enrollmentResult" : "Y"
      },
      "transaction" : {
         "amount" : 1,
         "brandId" : 1010,
         "currencyCode" : "USD",
         "id" : "1C737F60-6E58-4C05-987B-E5683087D82C",
         "trackingCode" : "7F4BFD5D-55E4-4775-81F7-0784188876C7"
      }
   }
}

{
  "result" : 3,
  "description" : "Pending merchant",
  "header" : {
    "requestTimestamp": "2018-09-26T14:35:40Z"
  },
  "body" : {
    "qr": {
      "resource": "https://qr3.ideal.nl/qrcode/404e4228-0e42-44ac-952f-de377a5daafc.png"
    },
    "transaction" : {         
      "descriptor": "Demo Descriptor",
      "amount": 25.45,
      "brandId": 3010,
      "currencyCode": "EUR",
      "action": "payment",
      "id": "193a7611-ea8b-46bc-a13d-2b90c3abfc99",
      "trackingCode": "6E37EC4C-44D3-3664-70E6-F673077765B6"
    }
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/payments/:id/capture

post/payments/id/capture

Path Params

id

string

required

Unique transaction ID of the initial authorize transaction.

Use this call to capture a successful authorize transaction so that the charge is placed and funding occurs. The transaction id returned in the response of the authorize transaction should be used as the path parameter. The amount to be captured must be included. Partial captures, in which only a part of the authorized amount is captured, are possible for most brands. Capturing an amount larger than the authorized amount is possible for some brands. Also, multiple captures are possible for some brands.

Request Body Params

header

Object

required

Header block.

businessId

String(50)

required

The ID provided to identify your company.

body

Object

required

Body block.

transaction

Object

required

Transaction-block.

trackingCode

String(100)

required

Your unique transaction reference. Minimal length: 8 characters.

amount

Amount

required

Amount to be captured.

currencyCode

String(3)

required

Currency code of the amount to be captured (ISO 4217 – Alpha 3). Must be the same as the currency code of the original transaction.

invoiceId

String(255)

Additional info, e.g. Invoice Id given by merchant.

Response Body Params

result

Number

required

The result of the payment. See result codes.

description

String(150)

required

A short description of the result.

header

Object

required

Header block.

requestTimestamp

Date-time

required

The combined date and time in UTC (ISO8601).

requestCode

String(64)

An internally-generated tracking code.

body

Object

required

Body block.

transaction

Object

conditional

Transaction data.

action

String(50)

required

Actual action performed.

id

String(100)

required

Unique transaction ID given to each transaction.

trackingCode

String(100)

required

Your unique transaction reference.

parentId

String(100)

required

Parent transaction identifier.

amount

Amount

required

Amount of the transaction.

currencyCode

String(3)

required

Currency code of the amount of the transaction.

brandId

Number

Identified brand of the payment.

descriptor

String(127)

Descriptor determined by Gateway.

card

Object

conditional

Card data.

firstSixDigits

String(6)

The bin of the used credit or debit card.

lastFourDigits

String(4)

Last four digits of the used credit or debit card number.

expiryMonth

String(2)

Month of the expiry date of the card used.

expiryYear

String(4)

Year of the expiry date of the card used.

holderName

String(255)

Name on the card used.

approvalCode

String(10)

Approval code of issuer / supplier.

avsResult

String(1)

Result of the AVS check. See AVS Result.

cvvResult

String(1)

Result of the CVV check. See CVV Result.

avsAuthorizationEntity

String(1)

The code for the entity checking the AVS.

recurringAdvice

String(2)

conditional

For recurring transactions a recurring advice code may be returned by card schemes. See recurring advice code.

threeDResult

String(1)

conditional

Result of the AVV (CAVV or UCAF) check. See 3D Secure Result.

bank

Object

conditional

Block containing bank information.

name

String(255)

Name of the bank.

countryCode

String(2)

Country code of the bank (ISO 3166-1 Alpha 2).

accountNumber

String(255)

Bank account number.

accountHolderName

String(255)

Bank account holder name.

iban

String(255)

conditional

International Bank Account Number.

bic

String(11)

Bank Identifier Code (ISO 9362).

mandateId

String(35)

conditional

The Unique Mandate Reference (UMR).

dateMandateSigned

Date

conditional

Date the mandate was signed. Format: YYYY-MM-DD.

dateCollection

Date

Date the payment should be collected. Format YYYY-MM-DD.

error

Object

Contains the error(s) when the transaction resulted in an error.

code

Number

required

Multiple errors are possible. Not mandatory for a number of results.

message

String

required

Error code (internally raised EVENT/ERROR CODE) on detailed level.

detailedMessage

String

required

A more detailed error message when available. If not available, contains the same as error.message.

https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/capture

{
  "header" : {
    "businessId" : "{businessId}"
  },
  "body" : {
    "transaction" : {
      "amount" : "1.00",
      "currencyCode" : "EUR",
      "trackingCode" : "1C6B38AC-64B6-4BB8-8356-B438D46004FE"
    }
  }
}

var http = require('https')

var options = {
  'method': 'POST',
  'hostname': 'stagconnect.acehubpaymentservices.com',
  'port': null,
  'path': 'gateway/v3/payments/{id}/capture',
  'headers': {
    'accept': 'application/json',
    'content-type': 'application/json',
    'authorization': 'Basic ******'
  }
}

var req = http.request(options, function (res) {
  var chunks = []

  res.on('data', function (chunk) {
    chunks.push(chunk)
  })

  res.on('end', function () {
    var body = Buffer.concat(chunks)
    console.log(body.toString())
  })
})

req.end()

package main

import (
  "fmt"
  "net/http"
  "io/ioutil"
)

func main() {
  url := "https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/capture"

  req, _ := http.NewRequest("POST", url, nil)

  req.Header.Add("accept", "application/json")
  req.Header.Add("content-type", "application/json")
  req.Header.Add("authorization", "Basic ******")

  res, _ := http.DefaultClient.Do(req)

  defer res.Body.Close()
  body, _ := ioutil.ReadAll(res.Body)

  fmt.Println(res)
  fmt.Println(string(body))
}

require 'uri'
require 'net/http'

url = URI("https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/capture")

http = Net::HTTP.new(url.host, url.port)

request = Net::HTTP::Post.new(url)
request["accept"] = 'application/json'
request["content-type"] = 'application/json'
request["authorization"] = 'Basic ******'

response = http.request(request)
puts response.read_body

import http.client

conn = http.client.HTTPSConnection("stagconnect.acehubpaymentservices.com")

payload = "" # Fill with request body

headers = {
  'accept': "application/json",
  'content-type': "application/json",
  'authorization': "Basic ******"
}

conn.request("POST", "/gateway/v3/payments/{id}/capture", payload, headers)

res = conn.getresponse()
data = res.read()

print(data.decode("utf-8"))

<?php

$curl = curl_init();

curl_setopt_array($curl, array(
  CURLOPT_URL => "https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/capture",
  CURLOPT_RETURNTRANSFER => true,
  CURLOPT_ENCODING => "",
  CURLOPT_MAXREDIRS => 10,
  CURLOPT_TIMEOUT => 30,
  CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
  CURLOPT_CUSTOMREQUEST => "POST",
  CURLOPT_POSTFIELDS => "",
  CURLOPT_HTTPHEADER => array(
    "accept: application/json",
    "authorization: Basic ******",
    "content-type: application/json"
  ),
));

$response = curl_exec($curl);
$err = curl_error($curl);

curl_close($curl);

if ($err) {
  echo "cURL Error #:" . $err;
} else {
  echo $response;
}

public static String excutePost(String targetURL, String urlParameters) 
{
  try (CloseableHttpClient client = HttpClients.createDefault()) {
    int contentLength = urlParameters.getBytes().length;

    HttpPost post = new HttpPost(targetURL);
    post.setHeader(new BasicHeader("Content-Type", "application/json"));

    post.setEntity(new StringEntity(urlParameters));

    HttpResponse response = client.execute(post);

    if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
      return EntityUtils.toString(response.getEntity());
    }

    // Or whatever clever strategy to handle the error.
    throw new RuntimeException(response.getStatusLine().getReasonPhrase());
  } catch (Exception ex) {
    Logger.getLogger(Main.class.getName()).log(Level.SEVERE, null, ex);
    throw new RuntimeException(ex.getMessage(), ex);
  }
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

{
  "result" : 0,
  "description" : "Ok",
  "header" : {
    "requestTimestamp" : "2017-06-19T10:25:32Z",
    "requestCode" : "96CE520E-878B-49E9-BBEE-549455992B04"
  },
  "body" : {
    "card" : {
      "expiryMonth" : "05",
      "expiryYear" : "2020",
      "firstSixDigits" : "411111",
      "holderName" : "John Doe",
      "lastFourDigits" : "1111"
    },
    "transaction" : {
      "amount" : 1,
      "currencyCode" : "EUR",
      "action" : "capture",
      "id" : "D0A3AFB0-4570-4268-A04A-8D665AA7C484",
      "trackingCode" : "1C6B38AC-64B6-4BB8-8356-B438D46004FE",
      "parentId": "8D1E10A1-9E9C-495B-8AF7-184259CE25DD"
    }
  }
}

{
  "result" : -1,
  "description" : "Input error",
  "header" : {
    "requestTimestamp" : "2017-06-19T10:25:32Z",
    "requestCode" : "3900972B-EA59-4D69-AE69-9240F165CC2E"
  },
  "body" : {
    "error": {
      "code" : 201000021,
      "message" : "Transaction operation not allowed"
    },
    "transaction" : {
      "amount" : 1,
      "currencyCode" : "EUR",
      "action" : "capture",
      "id" : "3900972B-EA59-4D69-AE69-9240F165CC2E",
      "trackingCode" : "1C6B38AC-64B6-4BB8-8356-B438D46004FE",
      "parentId": "8D1E10A1-9E9C-495B-8AF7-184259CE25DD"
    }
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/payments/:id/cancel

post/payments/id/cancel

Path Params

id

string

required

Unique transaction ID of the initial authorize transaction.

Use this call to cancel a successful authorize transaction. The transaction id returned in the response of the authorize transaction should be used as the path parameter. A cancel applies to the total amount of the authorize transaction and is not possible for all brands.

Request Body Params

header

Object

required

Header block.

businessId

String(50)

required

The ID provided to identify your company.

body

Object

required

Body block.

transaction

Object

required

Transaction-block.

trackingCode

String(100)

required

Your unique transaction reference for the cancellation. The minimal length is 8 characters.

Response Body Params

result

Number

required

The result of the payment. See result codes.

description

String(150)

required

A short description of the result.

header

Object

required

Header block.

requestTimestamp

Date-time

required

The combined date and time in UTC (ISO8601).

requestCode

String(64)

An internally-generated tracking code.

body

Object

required

Body block.

transaction

Object

conditional

Transaction data.

action

String(50)

required

Actual action performed.

id

String(100)

required

Unique transaction ID given to each transaction.

trackingCode

String(100)

required

Your unique transaction reference.

parentId

String(100)

required

Parent transaction identifier.

brandId

Number

Identified brand of the payment.

descriptor

String(127)

Descriptor used where possible on statement of customer.

error

Object

Contains the error(s) when the transaction resulted in an error.

code

Number

required

Multiple errors are possible. Not mandatory for a number of results.

message

String

required

Error code (internally raised EVENT/ERROR CODE) on detailed level.

detailedMessage

String

required

A more detailed error message when available. If not available, contains the same as error.message.

https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/cancel

{
  "header" : {
    "businessId" : "{businessId}"
  },
  "body" : {
    "transaction" : {
      "trackingCode" : "DFD8CBB9-5833-48AC-8703-55725393401A"
    }
  }
}

var http = require('https')

var options = {
  'method': 'POST',
  'hostname': 'stagconnect.acehubpaymentservices.com',
  'port': null,
  'path': 'gateway/v3/payments/{id}/cancel',
  'headers': {
    'accept': 'application/json',
    'content-type': 'application/json',
    'authorization': 'Basic ******'
  }
}

var req = http.request(options, function (res) {
  var chunks = []

  res.on('data', function (chunk) {
    chunks.push(chunk)
  })

  res.on('end', function () {
    var body = Buffer.concat(chunks)
    console.log(body.toString())
  })
})

req.end()

package main

import (
  "fmt"
  "net/http"
  "io/ioutil"
)

func main() {
  url := "https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/cancel"

  req, _ := http.NewRequest("POST", url, nil)

  req.Header.Add("accept", "application/json")
  req.Header.Add("content-type", "application/json")
  req.Header.Add("authorization", "Basic ******")

  res, _ := http.DefaultClient.Do(req)

  defer res.Body.Close()
  body, _ := ioutil.ReadAll(res.Body)

  fmt.Println(res)
  fmt.Println(string(body))
}

require 'uri'
require 'net/http'

url = URI("https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/cancel")

http = Net::HTTP.new(url.host, url.port)

request = Net::HTTP::Post.new(url)
request["accept"] = 'application/json'
request["content-type"] = 'application/json'
request["authorization"] = 'Basic ******'

response = http.request(request)
puts response.read_body

import http.client

conn = http.client.HTTPSConnection("stagconnect.acehubpaymentservices.com")

payload = "" # Fill with request body

headers = {
  'accept': "application/json",
  'content-type': "application/json",
  'authorization': "Basic ******"
}

conn.request("POST", "/gateway/v3/payments/{id}/cancel", payload, headers)

res = conn.getresponse()
data = res.read()

print(data.decode("utf-8"))

<?php

$curl = curl_init();

curl_setopt_array($curl, array(
  CURLOPT_URL => "https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/cancel",
  CURLOPT_RETURNTRANSFER => true,
  CURLOPT_ENCODING => "",
  CURLOPT_MAXREDIRS => 10,
  CURLOPT_TIMEOUT => 30,
  CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
  CURLOPT_CUSTOMREQUEST => "POST",
  CURLOPT_POSTFIELDS => "",
  CURLOPT_HTTPHEADER => array(
    "accept: application/json",
    "authorization: Basic ******",
    "content-type: application/json"
  ),
));

$response = curl_exec($curl);
$err = curl_error($curl);

curl_close($curl);

if ($err) {
  echo "cURL Error #:" . $err;
} else {
  echo $response;
}

public static String excutePost(String targetURL, String urlParameters) 
{
  try (CloseableHttpClient client = HttpClients.createDefault()) {
    int contentLength = urlParameters.getBytes().length;

    HttpPost post = new HttpPost(targetURL);
    post.setHeader(new BasicHeader("Content-Type", "application/json"));

    post.setEntity(new StringEntity(urlParameters));

    HttpResponse response = client.execute(post);

    if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
      return EntityUtils.toString(response.getEntity());
    }

    // Or whatever clever strategy to handle the error.
    throw new RuntimeException(response.getStatusLine().getReasonPhrase());
  } catch (Exception ex) {
    Logger.getLogger(Main.class.getName()).log(Level.SEVERE, null, ex);
    throw new RuntimeException(ex.getMessage(), ex);
  }
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

{
  "result" : "0",
  "description" : "Ok",
  "header" : {
    "requestTimestamp" : "2017-06-20T12:30:24Z",
    "requestCode" : "85218C2E-D235-47E8-B6F0-9040753F01BF"
  },
  "body" : {
    "transaction" : {
      "id" : "5D5F27BE-6997-448F-9E9D-77CAA8907D53",
      "trackingCode" : "DFD8CBB9-5833-48AC-8703-55725393401A",
      "parentId": "8D1E10A1-9E9C-495B-8AF7-184259CE25DD",
      "action" : "cancel"
    }
  }
}

{
  "result" : -1,
  "description" : "Input error",
  "header" : {
    "requestTimestamp" : "2017-06-20T12:30:24Z",
    "requestCode" : "FF1D6D6D-B026-4DCF-BB0D-E73E0D4E4F71"
  },
  "body" : {
    "error" : {
      "code" : 100004020,
      "message" : "Not found"
    }
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/payments/:id/refund

post/payments/id/refund

Path Params

id

string

required

Unique transaction ID of the initial transaction.

Use this call to refund a successfully captured transaction (i.e. a payment transaction or an authorize transaction with a subsequent capture). The transaction id returned in the initial transaction should be used as the path parameter. The amount to be refunded must be included. Partial refunds, in which only a part of the captured amount is refunded, are possible for most brands. Also, refunding an amount larger than the captured amount is possible for some brands.

*Note: The use of the last capture transaction id as the path parameter is also allowed for backward compatibility.

Request Body Params

header

Object

required

Header block.

businessId

String(50)

required

The ID provided to identify your company.

body

Object

required

Body block.

transaction

Object

required

Transaction-block.

trackingCode

String(100)

required

Your unique transaction reference. Minimal length: 8 characters.

amount

Amount

required

Amount to be refunded.

currencyCode

String(3)

required

Currency code of the amount to be refunded (ISO 4217 – Alpha 3). Must be the same as the currency code of the original transaction.

order

Object

conditional

Order information, including the products of the transaction.

orderlines

array[object]

conditional

Zero, one or multiple order lines.

purchaseType

String(255)

conditional

Identifier assigned by the payment acceptor that categorizes the item being purchased.

quantity

Number(5)

conditional

Number of items.

totalAmount

Amount(10,2)

conditional

Total amount of line.

productCode

String(255)

conditional

Code of the product or service.

description

String(2048)

conditional

Line description.

Response Body Params

result

Number

required

The result of the payment. See result codes.

description

String(150)

required

A short description of the result.

header

Object

required

Header block.

requestTimestamp

Date-time

required

The combined date and time in UTC (ISO 8601).

requestCode

String(64)

An internally-generated tracking code.

body

Object

required

Body block.

transaction

Object

conditional

Transaction data.

action

String(50)

required

Actual action performed.

Id

String(100)

required

Unique transaction ID given to each transaction.

trackingCode

String(100)

required

Your unique transaction reference.

parentId

String(100)

required

Parent transaction identifier.

amount

Amount

required

Amount of the transaction.

currencyCode

String(3)

required

Currency code of the amount of the transaction.

brandId

Number

Identified brand of the payment.

descriptor

String(127)

Descriptor determined by Gateway.

card

Object

conditional

Card data.

firstSixDigits

String(6)

First six digits of the used credit or debit card number.

lastFourDigits

String(4)

Last four digits of the used credit or debit card number.

expiryMonth

String(2)

Month of the expiry date of the card used.

expiryYear

String(4)

Year of the expiry date of the card used.

holderName

String(255)

Name on the card used.

approvalCode

String(10)

Approval code of issuer / supplier.

error

Object

Contains the error(s) when the transaction resulted in an error.

code

Number

required

Multiple errors are possible. Not mandatory for a number of results.

message

String

required

Error code (internally raised EVENT/ERROR CODE) on detailed level.

detailedMessage

String

required

A more detailed error message when available. If not available, contains the same as error.message.

https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/refund

{
  "header" : {
    "businessId" : "{businessId}"
  },
  "body" : {
    "transaction" : {
      "amount" : "0.01",
      "currencyCode" : "EUR",
      "trackingCode" : "CA715B6D-00EA-46B9-93D7-979B3959DF5D"
    }
  }
}

var http = require('https')

var options = {
  'method': 'POST',
  'hostname': 'stagconnect.acehubpaymentservices.com',
  'port': null,
  'path': 'gateway/v3/payments/{id}/refund',
  'headers': {
    'accept': 'application/json',
    'content-type': 'application/json',
    'authorization': 'Basic ******'
  }
}

var req = http.request(options, function (res) {
  var chunks = []

  res.on('data', function (chunk) {
    chunks.push(chunk)
  })

  res.on('end', function () {
    var body = Buffer.concat(chunks)
    console.log(body.toString())
  })
})

req.end()

package main

import (
  "fmt"
  "net/http"
  "io/ioutil"
)

func main() {
  url := "https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/refund"

  req, _ := http.NewRequest("POST", url, nil)

  req.Header.Add("accept", "application/json")
  req.Header.Add("content-type", "application/json")
  req.Header.Add("authorization", "Basic ******")

  res, _ := http.DefaultClient.Do(req)

  defer res.Body.Close()
  body, _ := ioutil.ReadAll(res.Body)

  fmt.Println(res)
  fmt.Println(string(body))
}

require 'uri'
require 'net/http'

url = URI("https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/refund")

http = Net::HTTP.new(url.host, url.port)

request = Net::HTTP::Post.new(url)
request["accept"] = 'application/json'
request["content-type"] = 'application/json'
request["authorization"] = 'Basic ******'

response = http.request(request)
puts response.read_body

import http.client

conn = http.client.HTTPSConnection("stagconnect.acehubpaymentservices.com")

payload = "" # Fill with request body

headers = {
  'accept': "application/json",
  'content-type': "application/json",
  'authorization': "Basic ******"
}

conn.request("POST", "/gateway/v3/payments/{id}/refund", payload, headers)

res = conn.getresponse()
data = res.read()

print(data.decode("utf-8"))

<?php

$curl = curl_init();

curl_setopt_array($curl, array(
  CURLOPT_URL => "https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}/refund",
  CURLOPT_RETURNTRANSFER => true,
  CURLOPT_ENCODING => "",
  CURLOPT_MAXREDIRS => 10,
  CURLOPT_TIMEOUT => 30,
  CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
  CURLOPT_CUSTOMREQUEST => "POST",
  CURLOPT_POSTFIELDS => "",
  CURLOPT_HTTPHEADER => array(
    "accept: application/json",
    "authorization: Basic ******",
    "content-type: application/json"
  ),
));

$response = curl_exec($curl);
$err = curl_error($curl);

curl_close($curl);

if ($err) {
  echo "cURL Error #:" . $err;
} else {
  echo $response;
}

public static String excutePost(String targetURL, String urlParameters) 
{
  try (CloseableHttpClient client = HttpClients.createDefault()) {
    int contentLength = urlParameters.getBytes().length;

    HttpPost post = new HttpPost(targetURL);
    post.setHeader(new BasicHeader("Content-Type", "application/json"));

    post.setEntity(new StringEntity(urlParameters));

    HttpResponse response = client.execute(post);

    if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
      return EntityUtils.toString(response.getEntity());
    }

    // Or whatever clever strategy to handle the error.
    throw new RuntimeException(response.getStatusLine().getReasonPhrase());
  } catch (Exception ex) {
    Logger.getLogger(Main.class.getName()).log(Level.SEVERE, null, ex);
    throw new RuntimeException(ex.getMessage(), ex);
  }
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

{
  "result" : "0",
  "description" : "Ok",
  "header" : {
    "requestTimestamp" : "2017-06-19T10:25:32Z",
    "requestCode" : "42F14D67-3F2A-4213-A365-AA8A27BB5A13"
  },
  "body" : {
    "transaction" : {
      "id" : "D224CADD-058A-4FC1-A274-47C139DAD5B2",
      "trackingCode" : "CA715B6D-00EA-46B9-93D7-979B3959DF5D",
      "parentId": "2B5321EE-0E7C-43EF-A289-EAC7F61E2EB4",
      "amount" : "0.01",
      "currencyCode" : "EUR",
      "action" : "refund"
    }
  }
}

{
  "result" : -1,
  "description" : "Input error",
  "header" : {
    "requestTimestamp" : "2017-06-19T10:25:32Z",
    "requestCode" : "42F14D67-3F2A-4213-A365-AA8A27BB5A13"
  },
  "body" : {
    "error" : {
      "code" : 201000021,
      "message" : "Transaction operation not allowed"
    },
    "transaction" : {
      "amount" : 1,
      "currencyCode" : "EUR",
      "action" : "refund",
      "id" : "1F10FD4F-3495-4890-A810-95B6414D8772",
      "trackingCode" : "CA715B6D-00EA-46B9-93D7-979B3959DF5D",
      "parentId": "2B5321EE-0E7C-43EF-A289-EAC7F61E2EB4"
    }
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/payments/:id

get/payments/id?businessId=businessId

Path Params

id

string

required

Unique transaction ID of the transaction.

Query Params

businessId

string

required

The ID provided to identify your company.

Use this call to get the status of a transaction at any time.

Response Body Params

result

Number

required

The result of the payment. See result codes.

description

String(150)

required

A short description of the result.

header

Object

required

Header object.

requestTimestamp

Date-time

required

The combined date and time in UTC (ISO 8601).

requestCode

String(64)

An internally-generated tracking code.

body

Object

required

Body Block.

transaction

Object

required

Transaction-object.

action

String(50)

required

Actual action performed.

id

String(100)

required

Unique transaction ID given to each transaction.

trackingCode

String(100)

required

Your unique transaction reference.

parentId

String(100)

conditional

Parent transaction identifier, mandatory for dependent transactions.

amount

Amount

required

Amount of the transaction.

currencyCode

String(3)

required

Currency code of the amount of the transaction.

brandId

Number(10)

Identified brand of the payment.

descriptor

String(127)

Descriptor determined by Gateway.

schemeTransactionId

String(15)

The Scheme Transaction Id for the transaction. This value is returned by the relevant card scheme for each payment transaction (authorize/payment).

redirect

Object

Returned in case of payments for which the customer needs to be redirected to a bank.

method

String(4)

conditional

POST or GET. (depends on brand used)

url

String

conditional

URL including the query string to which your customer is redirected. (depends on brand used)

fields

Object

conditional

Hidden fields (parameters) to post in the body of the message (can be present for redirect method POST only).

{key}*

String(4000)

conditional

Keys to be POST in hidden parameters when redirecting the customer. All keys need to be posted.

card

Object

conditional

Data referencing the card payment made.

approvalCode

String(10)

Approval code of issuer/supplier.

avsResult

String(1)

Result of the AVS check. See AVS Result.

cvvResult

String(1)

Result of the CVV check. See CVV Result.

firstSixDigits

String(6)

First Six digits of the used credit or debit card.

lastFourDigits

String(4)

Last four digits of the card number used (credit or debit). For digital wallet transactions, this could be the digital PAN (DPAN) rather than the funding PAN (FPAN).

lastFourDigitsSource

String(4)

For digital wallet transactions, the last four digits of the source account used to fund the transaction (e.g. credit card number, debit card number).

expiryMonth

String(2)

Month of the expiry date of the card used.

expiryYear

String(4)

Year of the expiry date of the card used.

holderName

String(255)

Name on the card used.

avsAuthorizationEntity

String(1)

The code for the entity checking the AVS.

recurringAdvice

String(2)

conditional

For recurring transactions a recurring advice code may be returned by card schemes. See recurring advice code.

threeDResult

String(1)

conditional

Result of the AVV (CAVV or UCAF) check. See 3D Secure Result.

threeDSecure

Object

3D Secure results. For more information see 3D Secure.

enrollmentResult

String(1)

Enrollment result:

Y - Yes, consumer enrolled in 3D Secure program and eligible for authentication.
N - No, consumer not enrolled in 3D Secure program.
U - Unavailable, Directory Server (DS) or Access Control Server (ACS) not available at the time of the request.
B - Bypass, 3D Secure program not applied.

authenticationResult

String(1)

Authentication result:

Y - Authenticated (Issuer liability).
A - Attempted.
N - Failed (Merchant liability).
U - Unavailable (Merchant liability).
R - Rejected (Merchant liability).

flow

String

In case of 3DS 2.0, indicates the flow used:

FRICTIONLESS.
CHALLENGE.

version

String

In case of 3DS 2.0, indicates the version of the protocol used.

bank

Object

conditional

Block containing bank information.

name

String(255)

Name of the bank.

countryCode

String(2)

Country code of the bank (ISO 3166-1 Alpha 2).

accountNumber

String(255)

Bank account number.

accountHolderName

String(255)

Bank account holder name.

iban

String(255)

conditional

International Bank Account Number.

bic

String(11)

Bank Identifier Code (ISO 9362).

mandateId

String(35)

conditional

The Unique Mandate Reference (UMR).

dateMandateSigned

Date

conditional

Date the mandate was signed. Format: YYYY-MM-DD.

dateCollection

Date

Date the payment should be collected. Format YYYY-MM-DD.

token

Object

conditional

Block containing token information. It will be returned when in the transaction request the tokenize field is set to true or when a token has been used. See the tokenization section for further information.

token

String(50)

required

Token identifier.

displayHint

String(19)

required

Shows the card number information masked with the following format: ************1234 (i.e. with only the last four digits visible).

error

Object

Contains the error(s) when the transaction resulted in an error.

code

Number

required

Multiple errors are possible. Not mandatory for a number of results.

message

String

required

Error code (internally raised EVENT/ERROR CODE) on detailed level.

detailedMessage

String

required

A more detailed error message when available. If not available, contains the same as error.message.

https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}?businessId={businessId}

var http = require('https')

var options = {
  'method': 'GET',
  'hostname': 'stagconnect.acehubpaymentservices.com',
  'port': null,
  'path': 'gateway/v3/payments/{id}?businessId={businessId}',
  'headers': {
    'accept': 'application/json',
    'authorization': 'Basic ******'
  }
}

var req = http.request(options, function (res) {
  var chunks = []

  res.on('data', function (chunk) {
    chunks.push(chunk)
  })

  res.on('end', function () {
    var body = Buffer.concat(chunks)
    console.log(body.toString())
  })
})

req.end()

package main

import (
  "fmt"
  "net/http"
  "io/ioutil"
)

func main() {
  url := "https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}?businessId={businessId}"

  req, _ := http.NewRequest("GET", url, nil)

  req.Header.Add("accept", "application/json")
  req.Header.Add("authorization", "Basic ******")

  res, _ := http.DefaultClient.Do(req)

  defer res.Body.Close()
  body, _ := ioutil.ReadAll(res.Body)

  fmt.Println(res)
  fmt.Println(string(body))
}

require 'uri'
require 'net/http'

url = URI("https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}?businessId={businessId}")

http = Net::HTTP.new(url.host, url.port)

request = Net::HTTP::Get.new(url)
request["accept"] = 'application/json'
request["authorization"] = 'Basic ******'

response = http.request(request)
puts response.read_body

import http.client

conn = http.client.HTTPConnection("stagconnect.acehubpaymentservices.com")

headers = {
  'accept': "application/json",
  'authorization': "Basic ******"
}

conn.request("GET", "/gateway/v3/payments/{id}?businessId={businessId}", headers=headers)

res = conn.getresponse()
data = res.read()

print(data.decode("utf-8"))

<?php

$curl = curl_init();

curl_setopt_array($curl, array(
  CURLOPT_URL => "https://stagconnect.acehubpaymentservices.com/gateway/v3/payments/{id}?businessId={businessId}",
  CURLOPT_RETURNTRANSFER => true,
  CURLOPT_ENCODING => "",
  CURLOPT_MAXREDIRS => 10,
  CURLOPT_TIMEOUT => 30,
  CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
  CURLOPT_CUSTOMREQUEST => "GET",
  CURLOPT_HTTPHEADER => array(
    "accept: application/json",
    "authorization: Basic ******"
  ),
));

$response = curl_exec($curl);
$err = curl_error($curl);

curl_close($curl);

if ($err) {
  echo "cURL Error #:" . $err;
} else {
  echo $response;
}

public static String executeGet(String targetURL) {
  try (CloseableHttpClient client = HttpClients.createDefault()) {
    HttpGet get = new HttpGet(targetURL);
    get.setHeader(new BasicHeader("Content-Type", "application/json"));
    
    HttpResponse response = client.execute(get);
    if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
        return EntityUtils.toString(response.getEntity());
    }

    // Or whatever clever strategy to handle the error.
    throw new RuntimeException(response.getStatusLine().getReasonPhrase());
} catch (Exception ex) {
    Logger.getLogger(Main.class.getName()).log(Level.SEVERE, null, ex);
    throw new RuntimeException(ex.getMessage(), ex);
    }       
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

{
  "result" : 0,
  "description" : "Ok",
  "header" : {
    "requestTimestamp" : "2017-06-19T10:25:32Z",
    "requestCode" : "DDD72F99-5BC7-4887-9999-CCC4C68C8B0B"
  },
  "body" : {
    "card" : {
      "approvalCode" : "258753",
      "expiryMonth" : "05",
      "expiryYear" : "2020",
      "firstSixDigits" : "411111",
      "holderName" : "John Doe",
      "lastFourDigits" : "1111"
    },
    "transaction" : {
      "amount" : 1,
      "brandId" : 1010,
      "currencyCode" : "EUR",
      "action" : "payment",
      "id" : "B3D5BA50-6191-4E64-BE9A-9561414CD6B0",
      "trackingCode" : "E5A12ACF-9735-4438-A463-16E574FFFBF6"
    }
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/payments

get/payments?businessId=businessId&trackingCode=trackingCode

Query Params

businessId

string

required

The ID provided to identify your company.

trackingCode

string

required

Tracking code of the original transaction.

Use this call to get the status of the transactions related to a specific tracking code. The response contains an array of payments.

Response Body Params

[]

Array

required

Payments array.

result

Number

required

The result of the authorization. 0 is successfully paid, 2 is pending and a redirect is expected. See results.

description

String(150)

required

A short description of the result.

header

Object

required

Header object.

requestTimestamp

Date-time

required

The combined date and time in UTC (ISO 8601).

requestCode

String(64)

An internally-generated tracking code.

body

Object

required

transaction

Object

required

Transaction-object.

action

String(50)

required

Actual action performed.

id

String(100)

required

Unique transaction ID given to each transaction.

trackingCode

String(100)

required

Your unique transaction reference.

parentId

String(100)

conditional

Parent transaction identifier, mandatory for dependent transactions.

amount

Amount

required

Amount of the transaction.

currencyCode

String(3)

required

Currency code of the amount of the transaction.

brandId

Number(10)

Identified brand of the payment.

descriptor

String(127)

Descriptor determined by Gateway.

schemeTransactionId

String(15)

The Scheme Transaction Id for the transaction. This value is returned by the relevant card scheme for each payment transaction (authorize/payment).

redirect

Object

Returned in case of payments for which the customer needs to be redirected to a bank.

method

String(4)

conditional

POST or GET. (depends on brand used)

url

String

conditional

URL including the query string to which your customer is redirected. (depends on brand used)

fields

Object

conditional

Hidden fields (parameters) to post in the body of the message (can be present for redirect method POST only).

{key}*

String(4000)

conditional

Keys to be POST in hidden parameters when redirecting the customer. All keys need to be posted.

card

Object

conditional

Data referencing the card payment made.

approvalCode

String(10)

Approval code of issuer/supplier.

avsResult

String(1)

Result of the AVS check. See AVS Result.

cvvResult

String(1)

Result of the CVV check. See CVV Result.

firstSixDigits

String(6)

First Six digits of the used credit or debit card.

lastFourDigits

String(4)

Last four digits of the card number used (credit or debit). For digital wallet transactions, this could be the digital PAN (DPAN) rather than the funding PAN (FPAN).

lastFourDigitsSource

String(4)

For digital wallet transactions, the last four digits of the source account used to fund the transaction (e.g. credit card number, debit card number).

expiryMonth

String(2)

Month of the expiry date of the card used.

expiryYear

String(4)

Year of the expiry date of the card used.

holderName

String(255)

Name on the card used.

avsAuthorizationEntity

String(1)

The code for the entity checking the AVS.

recurringAdvice

String(2)

conditional

For recurring transactions a recurring advice code may be returned by card schemes. See recurring advice code.

threeDResult

String(1)

conditional

Result of the AVV (CAVV or UCAF) check. See 3D Secure Result.

threeDSecure

Object

3D Secure results. For more information see 3D Secure.

enrollmentResult

String(1)

Enrollment result:

Y - Yes, consumer enrolled in 3D Secure program and eligible for authentication.
N - No, consumer not enrolled in 3D Secure program.
U - Unavailable, Directory Server (DS) or Access Control Server (ACS) not available at the time of the request.
B - Bypass, 3D Secure program not applied.

authenticationResult

String(1)

Authentication result:

Y - Authenticated (Issuer liability).
A - Attempted.
N - Failed (Merchant liability).
U - Unavailable (Merchant liability).
R - Rejected (Merchant liability).

flow

String

In case of 3DS 2.0, indicates the flow used:

FRICTIONLESS.
CHALLENGE.

version

String

In case of 3DS 2.0, indicates the version of the protocol used.

bank

Object

conditional

Block containing bank information.

name

String(255)

Name of the bank.

countryCode

String(2)

Country code of the bank (ISO 3166-1 Alpha 2).

accountNumber

String(255)

Bank account number.

accountHolderName

String(255)

Bank account holder name.

iban

String(255)

conditional

International Bank Account Number.

bic

String(11)

Bank Identifier Code (ISO 9362).

mandateId

String(35)

conditional

The Unique Mandate Reference (UMR).

dateMandateSigned

Date

conditional

Date the mandate was signed. Format: YYYY-MM-DD.

dateCollection

Date

Date the payment should be collected. Format YYYY-MM-DD.

token

Object

conditional

Block containing token information. It will be returned when in the transaction request the tokenize field is set to true or when a token has been used. See the tokenization section for further information.

token

String(50)

required

Token identifier.

displayHint

String(19)

required

Shows the card number information masked with the following format: ************1234 (i.e. with only the last four digits visible).

error

Object

Contains the error(s) when the transaction resulted in an error.

code

Number

required

Multiple errors are possible. Not mandatory for a number of results.

message

String

required

Error code (internally raised EVENT/ERROR CODE) on detailed level.

detailedMessage

String

required

A more detailed error message when available. If not available, contains the same as error.message.

https://stagconnect.acehubpaymentservices.com/gateway/v3/payments?businessId={businessId}&trackingCode={trackingCode}

var http = require('https')

var options = {
  'method': 'GET',
  'hostname': 'stagconnect.acehubpaymentservices.com',
  'port': null,
  'path': 'gateway/v3/payments?businessId={businessId}&trackingCode={trackingCode}',
  'headers': {
    'accept': 'application/json',
    'authorization': 'Basic ******'
  }
}

var req = http.request(options, function (res) {
  var chunks = []

  res.on('data', function (chunk) {
    chunks.push(chunk)
  })

  res.on('end', function () {
    var body = Buffer.concat(chunks)
    console.log(body.toString())
  })
})

req.end()

package main

import (
  "fmt"
  "net/http"
  "io/ioutil"
)

func main() {
  url := "https://stagconnect.acehubpaymentservices.com/gateway/v3/payments?businessId={businessId}&trackingCode={trackingCode}"

  req, _ := http.NewRequest("GET", url, nil)

  req.Header.Add("accept", "application/json")
  req.Header.Add("authorization", "Basic ******")

  res, _ := http.DefaultClient.Do(req)

  defer res.Body.Close()
  body, _ := ioutil.ReadAll(res.Body)

  fmt.Println(res)
  fmt.Println(string(body))
}

require 'uri'
require 'net/http'

url = URI("https://stagconnect.acehubpaymentservices.com/gateway/v3/payments?businessId={businessId}&trackingCode={trackingCode}")

http = Net::HTTP.new(url.host, url.port)

request = Net::HTTP::Get.new(url)
request["accept"] = 'application/json'
request["authorization"] = 'Basic ******'

response = http.request(request)
puts response.read_body

import http.client

conn = http.client.HTTPConnection("stagconnect.acehubpaymentservices.com")

headers = {
  'accept': "application/json",
  'authorization': "Basic ******"
}

conn.request("GET", "/gateway/v3/payments?businessId={businessId}&trackingCode={trackingCode}", headers=headers)

res = conn.getresponse()
data = res.read()

print(data.decode("utf-8"))

<?php

$curl = curl_init();

curl_setopt_array($curl, array(
  CURLOPT_URL => "https://stagconnect.acehubpaymentservices.com/gateway/v3/payments?businessId={businessId}&trackingCode={trackingCode}",
  CURLOPT_RETURNTRANSFER => true,
  CURLOPT_ENCODING => "",
  CURLOPT_MAXREDIRS => 10,
  CURLOPT_TIMEOUT => 30,
  CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
  CURLOPT_CUSTOMREQUEST => "GET",
  CURLOPT_HTTPHEADER => array(
    "accept: application/json",
    "authorization: Basic ******"
  ),
));

$response = curl_exec($curl);
$err = curl_error($curl);

curl_close($curl);

if ($err) {
  echo "cURL Error #:" . $err;
} else {
  echo $response;
}

public static String executeGet(String targetURL) {
  try (CloseableHttpClient client = HttpClients.createDefault()) {
    HttpGet get = new HttpGet(targetURL);
    get.setHeader(new BasicHeader("Content-Type", "application/json"));
    
    HttpResponse response = client.execute(get);
    if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
        return EntityUtils.toString(response.getEntity());
    }

    // Or whatever clever strategy to handle the error.
    throw new RuntimeException(response.getStatusLine().getReasonPhrase());
} catch (Exception ex) {
    Logger.getLogger(Main.class.getName()).log(Level.SEVERE, null, ex);
    throw new RuntimeException(ex.getMessage(), ex);
    }       
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

[{
  "result" : 0,
  "description" : "Ok",
  "header" : {
    "requestTimestamp" : "2017-06-19T10:25:32Z",
    "requestCode" : "DDD72F99-5BC7-4887-9999-CCC4C68C8B0B"
  },
  "body" : {
    "card" : {
      "approvalCode" : "258753",
      "expiryMonth" : "05",
      "expiryYear" : "2020",
      "firstSixDigits" : "411111",
      "holderName" : "John Doe",
      "lastFourDigits" : "1111"
    },
    "transaction" : {
      "amount" : 1,
      "brandId" : 1010,
      "currencyCode" : "EUR",
      "action" : "payment",
      "id" : "B3D5BA50-6191-4E64-BE9A-9561414CD6B0",
      "trackingCode" : "E5A12ACF-9735-4438-A463-16E574FFFBF6"
    }
  }
}]

AVS Result

AVS stands for Address Verification System.

AVS Result

Description

A

Address matches, ZIP does not.

B

Street addresses match for international transactions; postal code not verified.

C

Street & postal code not verified for international transactions.

D

Street addresses and postal codes match for international transactions.

E

Error: Transaction ineligible for address verification or edit error found in the message that prevents AVS from being performed.

F

Street addresses & postal codes match for international transactions (UK only).

G

Address information not verified for international transactions. Issuer is not an AVS participant, or AVS data was present in the request but issuer did not return an AVS result, or Visa performs AVS on behalf of the issuer and there was no address record on file for this account.

I

Address information not verified for international transactions.

K

Card member name matches.

L

Card member name and billing postal code match.

M

Street addresses and postal codes match for international transactions.

N

Address and ZIP do not match.

O

Card member name and billing address match.

P

Postal codes match for international transactions, street address not verified.

R

Retry, system unable to process.

S

Issuer does not support Address Verification.

U

Address information is unavailable.

W

9-digit Zip matches, address does not.

X

All digits match (9-digit Zip Code).

Y

For U.S. addresses, five-digit postal code and address match.

Z

Postal/ZIP matches; street address does not match or street address not included in the request.

CVV Result

3D Secure Result

Result of the AVV (CAVV or UCAF) check.

3DResult

Description

0

CAVV failed validation – authentication.

1

CAVV failed validation – authentication.

2

CAVV passed validation – authentication.

3

CAVV passed validation – attempt (A 3-D Secure authentication value of 7 from the issuer’s ACS indicates that an authentication was attempted).

4

CAVV failed validation – attempt (A 3-D Secure authentication value of 7 from the issuer’s ACS indicates that an authentication was attempted).

5

Reserved for future use – not used.

6

CAVV not validated, issuer not participating in CAVV Validation.

7

CAVV failed validation - attempt (A 3-D Secure authentication value of 7 from Visa’s ACS indicates that an authentication attempt was performed).

8

CAVV passed validation – attempt (A 3-D Secure authentication value of 7 from Visa’s ACS indicates that an authentication attempt was performed. (Determined that Visa generated this value from the use of Visa CAVV key[s])).

9

CAVV failed validation - attempt (A 3-D Secure authentication value of 8 from Visa ACS indicates that an authentication attempt was performed when the issuer’s ACS was not available. (Determined that Visa generated this value from the use of Visa CAVV key[s])).

A

CAVV passed validation – attempt (A 3-D Secure authentication value of 8 from Visa’s ACS indicates that an authentication attempt was performed when the issuer’s ACS was not available. (Determined that Visa generated this value from the use of Visa’s CAVV key[s])).

B

CAVV passed validation - information only, no liability shift. (When the ECI equals 7 and CAVV is present, the CAVV will be validated but no liability shift will occur. Visa will generate this value for card or transaction types that are not eligible for the 3D Secure service).

C

CAVV was not validated – attempt (Issuer did not return a CAVV result code in the authorization response).

D

CAVV was not validated - authentication (Issuer did not return a CAVV result code in the authorization response).

Recurring Advice Code

Result codes

The Payments API uses the “result” field in the response body as the primary and most important indication of success or failure. The “result” field should be used as the basis for further processing rather than evaluating any other field first.

In addition, as REST defines, conventional HTTP status codes are used. The next table shows the “result”, the relevant HTTP status codes used, and whether or not the failed transaction can be retried.

There are situations when the response doesn't contain a body, as you can see in the tables below:

Payment results:

HTTP Status code

Result

Description

Explanation

200

4

Timeout

The payment timeout expired before the customer completed the payment.

200

3

Pending merchant

The transaction is pending and waiting for an action to be performed by the merchant.

200

2

Pending

Pending transaction, the payment was initiated and waiting for the customer to complete the payment at the bank or payment processor.

200

1

Waiting

The transaction was initiated successfully, but a payment was not yet made by the customer or not yet confirmed by the bank. Occurs for brands for which customers have to make a payment separately (like Boletos) or where the bank does not immediately confirm a payment (like SEPA).

200

0

Ok

The transaction was processed successfully.

400, 404

-1

Input error

Error in the input parameters.

400

-2

Failed

The transaction failed because of a processing error at Payvision.

400

-3

Failed, retry

The transaction failed but can be retried.

400

-4

Declined

Declines, etc. In these cases the processing was performed correctly, but the end-result for the customer is not.

400

-5

Declined, retry

The transaction is declined, but can be retried.

401

-6

Security error

Error in authentication data. Generally, no further details are available for security reasons.

500,501

-7

Internal server error

Unexpected server error.

400

-8

Business rule error

Error due to a business rule or a configuration error.

400

-9

Fraud

Errors that suggest fraudulent behavior.

400

-10

Customer processing error

Error or cancellation of customer at supplier. For example, the customer abandoned their transaction at the supplier.

400

-11

Referrals

Errors due to a referral by the supplier.

400

-12

Status unavailable

The transaction was initiated successfully, but the bank or payment processor could not confirm the result.

3D Secure payment results:

HTTP Status code

Result

Description

Explanation

200

2

Pending

The check enrollment result is ‘Y’, ‘N’ or ‘B’. Pending transaction, the payment was initiated and waiting for the customer to complete the payment at the bank or payment processor.

400

-1

Input error

Error in the input parameters.

400

-2

Failed

The transaction failed.

400

-3

Failed, retry

The transaction failed but can be retried.

400

-4

Cardholder authentication unavailable

The check enrollment result is ‘U’.

400

-5

Declined, retry

The transaction is declined, but can be retried.

401

-6

Security error

Error in authentication data. Generally, no further details are available for security reasons.

500,501

-7

Internal server error

Unexpected server error.

400

-8

Business rule error

Error due to a business rule or a configuration error.

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/credits

post/credits

Use this call to perform a credit.

*Note: This operation is restricted to certain business types and is enabled when the merchant account is configured.

Request Body Params

header

Object

required

Header block.

businessId

String(50)

required

The ID provided to identify your company.

body

Object

required

Body block.

transaction

Object

required

Transaction-block.

storeId

Number(5)

required

An ID provided to the business, which can be used to indicate a specific sub-account, generally to force a specific kind of routing.

amount

Amount

required

The transaction amount.

currencyCode

String(3)

required

Currency code for the transaction amount (ISO 4217-Alpha 3).

trackingCode

String(100)

required

Your Unique Transaction Reference. Minimum length: 8 characters.

brandId

Number

conditional

Identifies the transaction payment brand. Mandatory for all transactions, except for card transactions when your configuration allows the presence of the card block to be enough. See brand list.

countryCode

String(2)

conditional

Country code (ISO 3166-1 Alpha 2). This is a conditional field. It is not needed for card payments but is needed for some alternative payment brands.

source

String(10)

Source of transaction, EC assumed. Possible values:

EC - Ecommerce transaction.

MO - Mail Order transaction.

TO - Telephone Order transaction.

type

String(10)

Type of transaction. Single assumed. Not needed for credit. Possible values:

SINGLE - Default transaction type, single, non-recurring transaction.

FIRST - First transaction of a recurrent sequence of transactions.

RECURRING - Second and subsequent transactions in a recurrent sequence.

LAST - Last transaction of a recurrent sequence. Used optionally for SEPA direct debit.

descriptor

String(127)

Description of the order as it would appear for the customer on for example (if applicable) the customer's bank statement. The maximum length is generally bound to rules depending on the processor and brand.

token

String(50)

Token identifier to replace the card information. For more information check the tokenization guide.

tokenize

Boolean

Indicates if a token should be created based on the following fields: businessId, card.number, card.expiryMonth, card.expiryYear, and customer.customerId (taken into account only if present). For more information check the tokenization guide.

dba

Object

conditional

Block with merchant data.

name

String(255)

'Doing business as' name. For applicable suppliers, a.o. Union Pay, used generally as (first part of the) dynamic descriptor.

street

String(255)

Street address of merchant. Used for applicable suppliers.

shortName

String(255)

Short name for Doing business as. Can be used for Union Pay as part of the dynamic descriptor.

city

String(255)

City of merchant. Used for applicable suppliers as part of dynamic descriptor.

zip

String(20)

Zip code/postal code of merchant. Used for applicable suppliers as part of dynamic descriptor.

stateCode

String(3)

US State code. Used for applicable suppliers as part of dynamic descriptor.

countryCode

String(2)

Country code of merchant. Used for applicable suppliers as part of dynamic descriptor (ISO 3166-1 Alpha 2).

email

String(255)

Email of merchant. Used for applicable suppliers as part of dynamic descriptor.

phoneNumber

String(64)

Phone Number of merchant. Used for applicable suppliers as part of dynamic descriptor. The number can start with '+' prefix, but only numbers, letters, whitespaces and the characters ().#- are allowed.

subMerchantId

String(15)

The ID of the sub-merchant. This value is assigned by the sub-merchant's payment facilitator or acquirer. Cannot be space or zero filled. Used for applicable suppliers.

card

Object

conditional

Block with card data, required for credit card transactions.

holderName

String(255)

conditional

Name of the card holder as printed on the card.

number

Card Number

conditional

Credit card number (PAN). See Data Types.

expiryMonth

String(2)

conditional

Month part of expiry date. Format MM.

expiryYear

String(4)

conditional

Year part of expiry date. Format: YYYY.

bank

Object

conditional

Block needed for bank account transactions.

name

String(255)

Name of the bank.

countryCode

String(2)

conditional

Country code of the bank (ISO 3166-1 Alpha 2).

accountNumber

String(255)

conditional

Bank account number.

accountHolderName

String(255)

conditional

Bank account holder name.

iban

String(255)

conditional

International Bank Account Number.

bic

String(11)

conditional

Bank Identifier Code (ISO 9362). The value must be either 8 or 11 characters long.

bankCode

String(15)

conditional

National bank code assigned to the bank by the central banking authority of the bank's country.

customer

Object

Customer specific data, needed for some alternative payment methods and fraud checks.

customerId

String(255)

The ID you want to use to identify a customer.

givenName

String(255)

Given name of the customer.

familyName

String(255)

Last name of the customer.

sex

String(1)

Gender of customer. M=Male, F=Female.

birthDate

Date

The customer's date of birth. Format: YYYY-MM-DD. Required for some risk checks.

phoneNumber

String(64)

Phone number of the customer. Recommended format E.164. Required for some risk checks.

mobileNumber

String(64)

Mobile number of the customer. Recommended format E.164. Required for some risk checks.

email

String(255)

Email address of the customer.

companyName

String(255)

Company name of the customer.

identificationTypeId

Number(5)

Type of National Identification Number
1 – Passport
2 – Driver’s license
3 – ID card
4 – Tax statement

identificationNumber

String(255)

National Identification Number. The number used on the document identified by the identificationTypeId. This value is mandatory if identificationTypeId is 4.

ipAddress

String(64)

IPV4 or IPV6 address of customer (as registered by merchant).

type

Number(1)

Customer type:
1 - personal
2 - company

taxNumber

String(255)

Tax number.

httpUserAgent

String(255)

HTTP User agent as detected by the business.

deviceType

Number (1)

Device types supported:
1 - Desktop Web
2 - Desktop App
3 - Mobile Web
4 - Mobile App
5 - Tablet Web
6 - Tablet App

Response Body Params

result

Number

required

The result of the credit. See result codes.

description

String(150)

required

A short description of the result.

header

Object

required

Header block.

requestTimestamp

Date-time

required

The combined date and time in UTC (ISO 8601).

requestCode

String(64)

An internally-generated tracking code.

body

Object

required

Body Block.

transaction

Object

conditional

Transaction data.

action

String(50)

required

Actual action performed.

id

String(100)

required

Unique transaction ID given to each transaction.

amount

Amount

required

Amount of the transaction.

currencyCode

String(3)

required

Currency code of the amount of the transaction.

brandId

Number

Identified payment brand.

descriptor

String(127)

Descriptor determined by Gateway.

trackingCode

String(150)

required

Your unique transaction reference.

card

Object

conditional

Card data.

firstSixDigits

String(6)

First six digits of the used credit or debit card.

lastFourDigits

String(4)

Last four digits of the used credit or debit card number.

expiryMonth

String(2)

Month of the expiry date of the card used.

expiryYear

String(4)

Year of the expiry date of the card used.

holderName

String(255)

Name on the card used.

approvalCode

String(10)

Approval code of issuer/supplier.

bank

Object

conditional

Block containing bank information.

name

String(255)

Name of the bank.

countryCode

String(2)

Country code of the bank (ISO 3166-1 Alpha 2).

accountNumber

String(255)

Bank account number.

accountHolderName

String(255)

Bank account holder name.

iban

String(255)

conditional

International Bank Account Number.

bic

String(11)

Bank Identifier Code (ISO 9362).

token

Object

conditional

Block containing token information. It will be returned when in the transaction request the tokenize field is set to true or when a token has been used. See the tokenization section for further information.

token

String(50)

required

Token identifier.

displayHint

String(19)

required

Shows the card number information masked with the following format: ************1234 (i.e. with only the last four digits visible).

error

Object

Contains the error(s) when the transaction resulted in an error.

code

Number

required

Multiple errors are possible. Not mandatory for a number of results.

message

String

required

Error code (internally raised EVENT/ERROR CODE) on detailed level.

detailedMessage

String

required

A more detailed error message when available. If not available, contains the same as error.message.

https://stagconnect.acehubpaymentservices.com/gateway/v3/credits

{
  "header" : {
    "businessId" : "{businessId}"
  },
  "action" : "credit",
  "body" : {
    "card" : {
      "holderName" : "John Doe",
      "number" : "4111111111111111",
      "expiryMonth" : "05",
      "expiryYear" : "2020"
    },
    "transaction" : {
      "amount" : "1.00",
      "brandId" : "1010",
      "trackingCode" : "EECCF082-D350-40B0-A5E3-940C2EBFD0D1",
      "currencyCode" : "EUR"
    }
  }
}

var http = require('https')

var options = {
  'method': 'POST',
  'hostname': 'stagconnect.acehubpaymentservices.com',
  'port': null,
  'path': 'gateway/v3/credits',
  'headers': {
    'accept': 'application/json',
    'content-type': 'application/json',
    'authorization': 'Basic ******'
  }
}

var req = http.request(options, function (res) {
  var chunks = []

  res.on('data', function (chunk) {
    chunks.push(chunk)
  })

  res.on('end', function () {
    var body = Buffer.concat(chunks)
    console.log(body.toString())
  })
})

req.end()

package main

import (
  "fmt"
  "net/http"
  "io/ioutil"
)

func main() {
  url := "https://stagconnect.acehubpaymentservices.com/gateway/v3/credits"

  req, _ := http.NewRequest("POST", url, nil)

  req.Header.Add("accept", "application/json")
  req.Header.Add("content-type", "application/json")
  req.Header.Add("authorization", "Basic ******")

  res, _ := http.DefaultClient.Do(req)

  defer res.Body.Close()
  body, _ := ioutil.ReadAll(res.Body)

  fmt.Println(res)
  fmt.Println(string(body))
}

require 'uri'
require 'net/http'

url = URI("https://stagconnect.acehubpaymentservices.com/gateway/v3/credits")

http = Net::HTTP.new(url.host, url.port)

request = Net::HTTP::Post.new(url)
request["accept"] = 'application/json'
request["content-type"] = 'application/json'
request["authorization"] = 'Basic ******'

response = http.request(request)
puts response.read_body

import http.client

conn = http.client.HTTPSConnection("stagconnect.acehubpaymentservices.com")

payload = "" # Fill with request body

headers = {
  'accept': "application/json",
  'content-type': "application/json",
  'authorization': "Basic ******"
}

conn.request("POST", "/gateway/v3/credits", payload, headers)

res = conn.getresponse()
data = res.read()

print(data.decode("utf-8"))

<?php

$curl = curl_init();

curl_setopt_array($curl, array(
  CURLOPT_URL => "https://stagconnect.acehubpaymentservices.com/gateway/v3/credits",
  CURLOPT_RETURNTRANSFER => true,
  CURLOPT_ENCODING => "",
  CURLOPT_MAXREDIRS => 10,
  CURLOPT_TIMEOUT => 30,
  CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
  CURLOPT_CUSTOMREQUEST => "POST",
  CURLOPT_POSTFIELDS => "",
  CURLOPT_HTTPHEADER => array(
    "accept: application/json",
    "authorization: Basic ******",
    "content-type: application/json"
  ),
));

$response = curl_exec($curl);
$err = curl_error($curl);

curl_close($curl);

if ($err) {
  echo "cURL Error #:" . $err;
} else {
  echo $response;
}

public static String excutePost(String targetURL, String urlParameters) 
{
  try (CloseableHttpClient client = HttpClients.createDefault()) {
    int contentLength = urlParameters.getBytes().length;

    HttpPost post = new HttpPost(targetURL);
    post.setHeader(new BasicHeader("Content-Type", "application/json"));

    post.setEntity(new StringEntity(urlParameters));

    HttpResponse response = client.execute(post);

    if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
      return EntityUtils.toString(response.getEntity());
    }

    // Or whatever clever strategy to handle the error.
    throw new RuntimeException(response.getStatusLine().getReasonPhrase());
  } catch (Exception ex) {
    Logger.getLogger(Main.class.getName()).log(Level.SEVERE, null, ex);
    throw new RuntimeException(ex.getMessage(), ex);
  }
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

{
  "result" : 0,
  "description" : "Ok",
  "header" : {
    "requestTimestamp" : "2017-05-19T11:21:31Z",
    "requestCode" : "B29500D3-5F7E-45E4-9034-B45940E9AA76"
  },
  "body" : {
    "card" : {
      "expiryMonth" : "05",
      "expiryYear" : "2020",
      "firstSixDigits" : "411111",
      "holderName" : "John Doe",
      "lastFourDigits" : "1111"
    },
    "transaction" : {
      "amount" : 1,
      "brandId" : 1010,
      "currencyCode" : "EUR",
      "action" : "credit",
      "id" : "91EBAA7F-2435-4EB1-AECA-AE9FD0C1D8C9",
      "trackingCode" : "EECCF082-D350-40B0-A5E3-940C2EBFD0D1"
    }
  }
}

{
  "result" : -1,
  "description" : "Input error",
  "header" : {
    "requestTimestamp" : "2017-05-19T11:21:31Z",
    "requestCode" : "B29500D3-5F7E-45E4-9034-B45940E9AA76"
  },
  "body" : {
    "error" : {
      "code" : 21000220,
      "message" : "Invalid field length for body.transaction.currencyCode, value:'EURO'  (length should be 3)"
    }
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/credits/:id

get/credits/id?businessId=businessId

Path Params

id

string

required

Unique transaction ID of the credit.

Query Params

businessId

string

required

The ID provided to identify your company.

Use this call to get the status of a credit at any time.

Response Body Params

result

Number

required

The result of the credit. See result codes.

description

String(150)

required

A short description of the result.

header

Object

required

Header block.

requestTimestamp

Date-time

required

The combined date and time in UTC (ISO 8601).

requestCode

String(64)

An internally-generated tracking code.

body

Object

required

Body Block.

transaction

Object

required

Transaction data.

action

String(50)

required

Actual action performed.

id

String(100)

required

Unique transaction ID given to each transaction.

amount

Amount

required

Amount of the transaction.

currencyCode

String(3)

required

Currency code of the amount of the transaction.

brandId

Number

Identified brand of the payment.

descriptor

String(127)

Descriptor determined by Gateway. The actual length of the descriptor maximally being used, is depending on the method and brand. For cards generally 38 characters can be used. Processor specific formats may apply in this case.

trackingCode

String(100)

required

Your unique transaction reference.

card

Object

conditional

Card data.

firstSixDigits

string(6)

First six digits of the used credit or debit card.

lastFourDigits

String(4)

Last four digits of the used credit or debit card number.

expiryMonth

String(2)

Month of the expiry date of the card used.

expiryYear

String(4)

Year of the expiry date of the card used.

holderName

String(255)

Name on the card used.

approvalCode

String(10)

Approval code of issuer/supplier.

bank

Object

conditional

Block containing bank information.

name

String(255)

Name of the bank.

countryCode

String(2)

Country code of the bank (ISO 3166-1 Alpha 2).

accountNumber

String(255)

Bank account number.

accountHolderName

String(255)

Bank account holder name.

iban

String(255)

conditional

International Bank Account Number.

bic

String(11)

Bank Identifier Code (ISO 9362).

token

Object

conditional

Block containing token information. It will be returned when in the transaction request the tokenize field is set to true or when a token has been used. See the tokenization section for further information.

token

String(50)

required

Token identifier.

displayHint

String(19)

required

Shows the card number information masked with the following format: ************1234 (i.e. with only the last four digits visible).

error

Object

Contains the error(s) when the transaction resulted in an error.

code

Number

required

Multiple errors are possible. Not mandatory for a number of results.

message

String

required

Error code (internally raised EVENT/ERROR CODE) on detailed level.

detailedMessage

String

required

A more detailed error message when available. If not available, contains the same as error.message.

The get credit action can be used to retrieve the status of the credit transaction. The trackingCode used in the credit action or the ID returned in the credit action should be used to identify the credit.

https://stagconnect.acehubpaymentservices.com/gateway/v3/credits/{id}?businessid={businessid}

var http = require('https')

var options = {
  'method': 'GET',
  'hostname': 'stagconnect.acehubpaymentservices.com',
  'port': null,
  'path': 'gateway/v3/credits/{id}',
  'headers': {
    'accept': 'application/json',
    'authorization': 'Basic ******'
  }
}

var req = http.request(options, function (res) {
  var chunks = []

  res.on('data', function (chunk) {
    chunks.push(chunk)
  })

  res.on('end', function () {
    var body = Buffer.concat(chunks)
    console.log(body.toString())
  })
})

req.end()

package main

import (
  "fmt"
  "net/http"
  "io/ioutil"
)

func main() {
  url := "https://stagconnect.acehubpaymentservices.com/gateway/v3/credits/{id}"

  req, _ := http.NewRequest("GET", url, nil)

  req.Header.Add("accept", "application/json")
  req.Header.Add("authorization", "Basic ******")

  res, _ := http.DefaultClient.Do(req)

  defer res.Body.Close()
  body, _ := ioutil.ReadAll(res.Body)

  fmt.Println(res)
  fmt.Println(string(body))
}

require 'uri'
require 'net/http'

url = URI("https://stagconnect.acehubpaymentservices.com/gateway/v3/credits/{id}")

http = Net::HTTP.new(url.host, url.port)

request = Net::HTTP::Get.new(url)
request["accept"] = 'application/json'
request["authorization"] = 'Basic ******'

response = http.request(request)
puts response.read_body

import http.client

conn = http.client.HTTPConnection("stagconnect.acehubpaymentservices.com")

headers = {
  'accept': "application/json",
  'authorization': "Basic ******"
}

conn.request("GET", "/gateway/v3/credits/{id}", headers=headers)

res = conn.getresponse()
data = res.read()

print(data.decode("utf-8"))

<?php

$curl = curl_init();

curl_setopt_array($curl, array(
  CURLOPT_URL => "https://stagconnect.acehubpaymentservices.com/gateway/v3/credits/{id}",
  CURLOPT_RETURNTRANSFER => true,
  CURLOPT_ENCODING => "",
  CURLOPT_MAXREDIRS => 10,
  CURLOPT_TIMEOUT => 30,
  CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
  CURLOPT_CUSTOMREQUEST => "GET",
  CURLOPT_HTTPHEADER => array(
    "accept: application/json",
    "authorization: Basic ******"
  ),
));

$response = curl_exec($curl);
$err = curl_error($curl);

curl_close($curl);

if ($err) {
  echo "cURL Error #:" . $err;
} else {
  echo $response;
}

public static String executeGet(String targetURL) {
  try (CloseableHttpClient client = HttpClients.createDefault()) {
    HttpGet get = new HttpGet(targetURL);
    get.setHeader(new BasicHeader("Content-Type", "application/json"));
    
    HttpResponse response = client.execute(get);
    if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
        return EntityUtils.toString(response.getEntity());
    }

    // Or whatever clever strategy to handle the error.
    throw new RuntimeException(response.getStatusLine().getReasonPhrase());
} catch (Exception ex) {
    Logger.getLogger(Main.class.getName()).log(Level.SEVERE, null, ex);
    throw new RuntimeException(ex.getMessage(), ex);
    }       
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

{
  "result" : 0,
  "description" : "Ok",
  "header" : {
    "requestTimestamp" : "2017-05-19T11:21:31Z",
    "requestCode" : "D17F233B-EB18-443F-B6FF-708772CDD1C8"
  },
  "body" : {
    "card" : {
      "expiryMonth" : "05",
      "expiryYear" : "2020",
      "firstSixDigits" : "411111",
      "holderName" : "John Doe",
      "lastFourDigits" : "1111"
    },
    "transaction" : {
      "amount" : 1,
      "brandId" : 1010,
      "currencyCode" : "EUR",
      "action" : "credit",
      "id" : "41F7ED3D-7B1C-4EBA-8C06-F6B7A4C59A02",
      "trackingCode" : "B3954D09-F8C4-4684-9646-82A96B807A21"
    }
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/credits

get/credits?businessId=businessId&trackingCode=trackingCode

Query Params

businessId

string

required

The ID provided to identify your company.

trackingCode

string

required

Tracking code of the credit.

Use this call to get the status of the credit related to a specific tracking code.

Response Body Params

result

Number

required

The result of the credit. See result codes.

description

String(150)

required

A short description of the result.

header

Object

required

Header block.

requestTimestamp

Date-time

required

The combined date and time in UTC (ISO 8601).

requestCode

String(64)

An internally-generated tracking code.

body

Object

required

Body block.

transaction

Object

conditional

Transaction data.

action

String(50)

required

Actual action performed.

id

String(100)

required

Unique transaction ID given to each transaction.

amount

Amount

required

Amount of the transaction.

currencyCode

String(3)

required

Currency code of the amount of the transaction.

brandId

Number

Identified brand of the payment.

descriptor

String(127)

Descriptor determined by Gateway. The actual length of the descriptor maximally being used, is depending on the method and brand. For cards generally 38 characters can be used. Processor specific formats may apply in this case.

trackingCode

String(100)

required

Your unique transaction reference.

card

Object

conditional

Card data.

firstSixDigits

String(6)

First six digits of the used credit or debit card.

lastFourDigits

String(4)

Last four digits of the used credit or debit card number.

expiryMonth

String(2)

Month of the expiry date of the card used.

expiryYear

String(4)

Year of the expiry date of the card used.

holderName

String(255)

Name on the card used.

approvalCode

String(10)

Approval code of issuer/supplier.

bank

Object

conditional

Block containing bank information.

name

String(255)

Name of the bank.

countryCode

String(2)

Country code of the bank (ISO 3166-1 Alpha 2).

accountNumber

String(255)

Bank account number.

accountHolderName

String(255)

Bank account holder name.

iban

String(255)

conditional

International Bank Account Number.

bic

String(11)

Bank Identifier Code (ISO 9362).

token

Object

conditional

Block containing token information. It will be returned when in the transaction request the tokenize field is set to true or when a token has been used. See the tokenization section for further information.

token

String(50)

required

Token identifier.

displayHint

String(19)

required

Shows the card number information masked with the following format: ************1234 (i.e. with only the last four digits visible).

error

Object

Contains the error(s) when the transaction resulted in an error.

code

Number

required

Multiple errors are possible. Not mandatory for a number of results.

message

String

required

Error code (internally raised EVENT/ERROR CODE) on detailed level.

detailedMessage

String

required

A more detailed error message when available. If not available, contains the same as error.message.

The get credit action can be used to retrieve the status of the credit transaction. The trackingCode used in the credit action or the ID returned in the credit action should be used to identify the credit.

https://stagconnect.acehubpaymentservices.com/gateway/v3/credits?businessid={businessid}&trackingcode={trackingcode}

var http = require('https')

var options = {
  'method': 'GET',
  'hostname': 'stagconnect.acehubpaymentservices.com',
  'port': null,
  'path': 'gateway/v3/credits?businessid={businessid}&trackingcode={trackingcode}',
  'headers': {
    'accept': 'application/json',
    'authorization': 'Basic ******'
  }
}

var req = http.request(options, function (res) {
  var chunks = []

  res.on('data', function (chunk) {
    chunks.push(chunk)
  })

  res.on('end', function () {
    var body = Buffer.concat(chunks)
    console.log(body.toString())
  })
})

req.end()

package main

import (
  "fmt"
  "net/http"
  "io/ioutil"
)

func main() {
  url := "https://stagconnect.acehubpaymentservices.com/gateway/v3/credits?businessid={businessid}&trackingcode={trackingcode}"

  req, _ := http.NewRequest("GET", url, nil)

  req.Header.Add("accept", "application/json")
  req.Header.Add("authorization", "Basic ******")

  res, _ := http.DefaultClient.Do(req)

  defer res.Body.Close()
  body, _ := ioutil.ReadAll(res.Body)

  fmt.Println(res)
  fmt.Println(string(body))
}

require 'uri'
require 'net/http'

url = URI("https://stagconnect.acehubpaymentservices.com/gateway/v3/credits?businessid={businessid}&trackingcode={trackingcode}")

http = Net::HTTP.new(url.host, url.port)

request = Net::HTTP::Get.new(url)
request["accept"] = 'application/json'
request["authorization"] = 'Basic ******'

response = http.request(request)
puts response.read_body

import http.client

conn = http.client.HTTPConnection("stagconnect.acehubpaymentservices.com")

headers = {
  'accept': "application/json",
  'authorization': "Basic ******"
}

conn.request("GET", "/gateway/v3/credits?businessid={businessid}&trackingcode={trackingcode}", headers=headers)

res = conn.getresponse()
data = res.read()

print(data.decode("utf-8"))

<?php

$curl = curl_init();

curl_setopt_array($curl, array(
  CURLOPT_URL => "https://stagconnect.acehubpaymentservices.com/gateway/v3/credits?businessid={businessid}&trackingcode={trackingcode}",
  CURLOPT_RETURNTRANSFER => true,
  CURLOPT_ENCODING => "",
  CURLOPT_MAXREDIRS => 10,
  CURLOPT_TIMEOUT => 30,
  CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
  CURLOPT_CUSTOMREQUEST => "GET",
  CURLOPT_HTTPHEADER => array(
    "accept: application/json",
    "authorization: Basic ******"
  ),
));

$response = curl_exec($curl);
$err = curl_error($curl);

curl_close($curl);

if ($err) {
  echo "cURL Error #:" . $err;
} else {
  echo $response;
}

public static String executeGet(String targetURL) {
  try (CloseableHttpClient client = HttpClients.createDefault()) {
    HttpGet get = new HttpGet(targetURL);
    get.setHeader(new BasicHeader("Content-Type", "application/json"));
    
    HttpResponse response = client.execute(get);
    if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
        return EntityUtils.toString(response.getEntity());
    }

    // Or whatever clever strategy to handle the error.
    throw new RuntimeException(response.getStatusLine().getReasonPhrase());
} catch (Exception ex) {
    Logger.getLogger(Main.class.getName()).log(Level.SEVERE, null, ex);
    throw new RuntimeException(ex.getMessage(), ex);
    }       
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

{
  "result" : 0,
  "description" : "Ok",
  "header" : {
    "requestTimestamp" : "2017-05-19T11:21:31Z",
    "requestCode" : "D17F233B-EB18-443F-B6FF-708772CDD1C8"
  },
  "body" : {
    "card" : {
      "expiryMonth" : "05",
      "expiryYear" : "2020",
      "firstSixDigits" : "411111",
      "holderName" : "John Doe",
      "lastFourDigits" : "1111"
    },
    "transaction" : {
      "amount" : 1,
      "brandId" : 1010,
      "currencyCode" : "EUR",
      "action" : "credit",
      "id" : "41F7ED3D-7B1C-4EBA-8C06-F6B7A4C59A02",
      "trackingCode" : "B3954D09-F8C4-4684-9646-82A96B807A21"
    }
  }
}

Result codes

The Credits API uses the “result” field in the response body as the primary and most important indication of success or failure. The “result” field should be used as the basis for further processing rather than evaluating any other field first.

In addition, as REST defines, conventional HTTP status codes are used. The next table shows the “result”, the relevant HTTP status codes used and whether or not the failed transaction can be retried.

There are situations when the response doesn't contain a body, as you can see in the table below:

HTTP Status code

Result

Description

Explanation

200

4

Timeout

The payment timeout expired before the customer completed the payment.

200

3

Pending merchant

The transaction is pending and waiting for an action to be performed by the merchant.

200

2

Pending

Pending transaction, the payment was initiated and waiting for the customer to complete the payment at the bank or payment processor.

200

1

Waiting

The transaction was initiated successfully, but a payment was not yet made by the customer or not yet confirmed by the bank. Occurs for brands for which customers have to make a payment separately (like Boletos) or where the bank does not immediately confirm a payment (like SEPA).

200

0

Ok

The transaction was processed successfully.

400, 404

-1

Input error

Error in the input parameters.

400

-2

Failed

The transaction failed because of a processing error at Payvision.

400

-3

Failed, retry

The transaction failed but can be retried.

400

-4

Declined

Declines, etc. In these cases the processing was performed correctly but the end-result for the customer is not.

400

-5

Declined, retry

The transaction is declined, but can be retried.

401

-6

Security error

Error in authentication data. Generally, no further details are available for security reasons.

500,501

-7

Internal server error

Unexpected server error.

400

-8

Business rule error

Error due to a business rule or a configuration error.

400

-9

Fraud

Errors that suggest fraudulent behavior.

400

-10

Customer processing error

Error or cancellation of customer at supplier. For example, the customer abandoned their transaction at the supplier.

400

-11

Referrals

Errors due to a referral by the supplier.

400

-12

Status unavailable

The transaction was initiated successfully, but the bank or payment processor could not confirm the result.

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/tokens

post/tokens

Create token action can also be used as a standalone action (not through a payment) to store the card information in the system and return the token identifier representing it.

Request Body Params

header

object

required

Header block.

businessId

string(50)

required

The ID provided to identify your company.

body

object

required

Body block.

brandId

number

Brand the token is created for. See brand list.

tokenType

String

The type of token to create. If no value is specified, PAYVISION is assumed. See token type.

card

object

required

Card block.

holderName

string(255)

Name of the card holder as printed on the card.

number

card number

required

Credit card number (PAN). See Data Types.

expiryMonth

number(2)

required

Month part of expiry date. Format: MM.

expiryYear

number(4)

required

Year part of expiry date. Format: YYYY.

customer

object

Customer block.

customerId

String(255)

ID used to identify the customer.

email

String(255)

Email address of the customer.

Response Body Params

result

number

required

The result of the operation. See result codes.

description

String(150)

A short description of the result.

header

object

required

Header block.

requestTimestamp

date-time

required

The combined date and time in UTC (ISO8601).

body

object

required

Body block.

brandId

number

Brand the token is created for. See brand list.

token

string(50)

required

Token identifier inside the system associated with the card information.

tokenStatus

String

required

The status of the token. See token status.

tokenType

String

required

The type of the token. See token type.

displayHint

string(19)

required

Shows the card number information masked with the following format: ************1234 (i.e. with only the last four digits visible).

card

Object

required

Card block.

holderName

String(255)

Name of the card holder as printed on the card.

number

String(19)

required

The card number masked.

expiryMonth

Number(2)

required

Month part of expiry date. Format: MM.

expiryYear

Number(4)

required

Year part of expiry date. Format: YYYY.

customer

object

Customer block.

customerId

String(255)

ID used to identify the customer.

email

String(255)

Email address of the customer.

error

Object

Contains the error(s) when the tokenization resulted in an error.

code

Number

required

Multiple errors are possible. Not mandatory for a number of results.

message

String

required

Description of the error.

detailedMessage

String

required

A more detailed error message when available. If not available, contains the same as error.message

https://stagconnect.acehubpaymentservices.com/gateway/v3/tokens

{
  "header" : {
    "businessId" : "{businessId}"
  },
  "body" : {
    "brandId" : 1010,
    "card" : {
      "holderName" : "John Doe",
      "number" : "4111111111111111",
      "expiryMonth" : 5,
      "expiryYear" : 2030
    },
    "customer" : {  
      "customerId" : "123",
      "email" : "[email protected]"
    }
  }
}

https://stagconnect.acehubpaymentservices.com/gateway/v3/tokens

{
  "header" : {
    "businessId" : "{businessId}"
  },
  "body" : {
    "brandId" : 1020,
    "tokenType" : "SCHEME",
    "card" : {
      "holderName" : "John Doe",
      "number" : "5186151710007002",
      "expiryMonth" : 12,
      "expiryYear" : 2025
    },
    "customer" : {  
      "customerId" : "123",
      "email" : "[email protected]"
    }
  }
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

200 OK SCHEME

{
  "result" : 0,
  "description" : "Ok",
  "header" : {
    "requestTimestamp" : "2017-06-19T10:25:23Z"
  },
  "body" : {
    "brandId" : 1010,
    "token" : "d92af0a1-397f-412d-8f0f-592efc06d1b5",
    "tokenStatus" : "ACTIVE",
    "tokenType" : "PAYVISION",
    "displayHint" : "************1111",
    "card" : {
      "holderName" : "John Doe",
      "number" : "411111******1111",
      "expiryMonth" : 5,
      "expiryYear" : 2030
    },
    "customer" : {
      "customerId" : "123",
      "email" : "[email protected]"
    }
  }
}

{
  "result" : 0,
  "description" : "Ok",
  "header" : {
    "requestTimestamp" : "2020-06-19T10:25:23Z"
  },
  "body" : {
    "brandId" : 1020,
    "token" : "bef11160-f754-4021-9cd0-b84d17a1621b",
    "tokenStatus" : "INACTIVE",
    "tokenType" : "SCHEME",
    "displayHint" : "************7002",
    "card" : {
      "holderName" : "John Doe",
      "number" : "518615******7002",
      "expiryMonth" : 12,
      "expiryYear" : 2025
    },
    "customer" : {
      "customerId" : "123",
      "email" : "[email protected]"
    }
  }
}

{
  "result" : -1,
  "description" : "Input error.",
  "header" : {
    "requestTimestamp": "2017-06-19T10:25:23Z"
  },
  "body" : {
    "error" : {
      "code" : 1002,
      "message" : "Invalid property value: body.card.expiryMonth."
    }
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/tokens/suspend

post/tokens/suspend

A batch operation that allows to suspend a collection of tokens simultaneously. A suspended token cannot be used for processing.

Request Body Params

header

object

required

Header block.

businessId

string(50)

required

The ID provided to identify your company.

body

object

required

Body block.

tokens

array[string]

required

An array containing all the token identifiers to be suspended. The maximum number of tokens allowed is 10.

token

string(100)

required

The token identifier.

Response Body Params

result

number

required

The result of the batch operation. See result codes.

header

object

required

Header block.

requestTimestamp

date-time

required

The combined date and time in UTC (ISO8601).

body

object

required

Body block.

tokens

array[object]

Tokens the suspend operation has been successful for.

token

string(100)

required

The token identifier.

tokenStatus

String

required

Status of the token after the operation:
SUSPENDED - the token has been suspended.

errors

array[object]

Tokens the suspend operation has failed for. For each token, the actual status of the token and the related operation error are returned when available.

token

string(100)

required

The token identifier.

tokenStatus

String

Actual status of the token. See token status.

code

int

The error code identifier.

message

string

The error message of the operation.

Request

https://stagconnect.acehubpaymentservices.com/gateway/v3/tokens/suspend

{
  "header": {
    "businessId": "{businessId}"
  },
  "body": {
    "tokens": [ "D7E991FA-8D23-4BAB-BB8F-24D2A1F4A6B8" ]
  }
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

200 OK - Suspend token failure

{
  "result": 0,
  "header": {
    "requestTimestamp": "2019-10-08T12:03:07Z"
  },
  "body": {
    "tokens": [
      {
        "token": "D7E991FA-8D23-4BAB-BB8F-24D2A1F4A6B8",
        "tokenStatus": "SUSPENDED"
      }
    ]
  }
}

{
  "result": 0,
  "header": {
    "requestTimestamp": "2019-10-24T07:13:44Z"
  },
  "body": {
    "tokens": [],
    "errors": [
      {
        "token": "D7E991FA-8D23-4BAB-BB8F-24D2A1F4A6B8",
        "tokenStatus": "DELETED",
        "code": 3,
        "message": "Invalid Token status"
      }
    ]
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/tokens/unsuspend

post/tokens/unsuspend

A batch operation that allows to activate a collection of suspended tokens simultaneously. Only active tokens can be used for processing.

Request Body Params

header

object

required

Header block.

businessId

string(50)

required

The ID provided to identify your company.

body

object

required

Body block.

tokens

array[string]

required

An array containing all the token identifiers to be activated. The maximum number of tokens allowed is 10.

token

string(100)

required

The token identifier.

Response Body Params

result

number

required

The result of the batch operation. See result codes.

header

object

required

Header block.

requestTimestamp

date-time

required

The combined date and time in UTC (ISO8601).

body

object

required

Body block.

tokens

array[object]

Tokens the unsuspend operation has been successful for.

token

string(100)

required

The token identifier.

tokenStatus

String

required

Status of the token after the operation:
ACTIVE - the token has been activated.

errors

array[object]

Tokens the unsuspend operation has failed for. For each token, the actual status of the token and the related operation error are returned when available.

token

string(100)

required

The token identifier.

tokenStatus

String

Actual status of the token. See token status.

code

int

The error code identifier.

message

string

The error message of the operation.

Request

https://stagconnect.acehubpaymentservices.com/gateway/v3/tokens/unsuspend

{
  "header": {
    "businessId": "{businessId}"
  },
  "body": {
    "tokens": [ "D7E991FA-8D23-4BAB-BB8F-24D2A1F4A6B8" ]
  }
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

200 OK - Unsuspend token failure

{
  "result": 0,
  "header": {
    "requestTimestamp": "2019-10-08T12:03:07Z"
  },
  "body": {
    "tokens": [
      {
        "token": "D7E991FA-8D23-4BAB-BB8F-24D2A1F4A6B8",
        "tokenStatus": "ACTIVE"
      }
    ]
  }
}

{
  "result": 0,
  "header": {
    "requestTimestamp": "2019-10-24T07:13:44Z"
  },
  "body": {
    "tokens": [],
    "errors": [
      {
        "token": "D7E991FA-8D23-4BAB-BB8F-24D2A1F4A6B8",
        "tokenStatus": "DELETED",
        "code": 3,
        "message": "Invalid Token status"
      }
    ]
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/tokens/delete

post/tokens/delete

A batch operation that allows to delete a collection of tokens simultaneously. Once a token is deleted, it cannot be used for processing anymore.

Request Body Params

header

object

required

Header block.

businessId

string(50)

required

The ID provided to identify your company.

body

object

required

Body block.

tokens

array[string]

required

An array containing all the token identifiers to be deleted. The maximum number of tokens allowed is 10.

token

string(100)

required

The token identifier.

Response Body Params

result

number

required

The result of the batch operation. See result codes.

header

object

required

Header block.

requestTimestamp

date-time

required

The combined date and time in UTC (ISO8601).

body

object

required

Body block.

tokens

array[object]

Tokens the delete operation has been successful for.

token

string(100)

required

The token identifier.

tokenStatus

String

required

Status of the token after the operation:
DELETED - the token has been deleted.

errors

array[object]

Tokens the delete operation has failed for. For each token, the actual status of the token and the related operation error are returned when available.

token

string(100)

required

The token identifier.

tokenStatus

String

Actual status of the token. See token status.

code

int

The error code identifier.

message

string

The error message of the operation.

Request

https://stagconnect.acehubpaymentservices.com/gateway/v3/tokens/delete

{
  "header": {
    "businessId": "{businessId}"
  },
  "body": {
    "tokens": [ "D7E991FA-8D23-4BAB-BB8F-24D2A1F4A6B8" ]
  }
}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

200 OK - Delete token failure

{
  "result": 0,
  "header": {
    "requestTimestamp": "2019-10-08T12:03:07Z"
  },
  "body": {
    "tokens": [
      {
        "token": "D7E991FA-8D23-4BAB-BB8F-24D2A1F4A6B8",
        "tokenStatus": "DELETED"
      }
    ]
  }
}

{
  "result": 0,
  "header": {
    "requestTimestamp": "2019-10-24T07:09:52Z"
  },
  "body": {
    "tokens": [],
    "errors": [
      {
        "token": "D7E991FA-8D23-4BAB-BB8F-24D2A1F4A6B8",
        "code": 2,
        "message": "Not Found"
      }
    ]
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/tokens/:id

get/tokens/id?businessId=businessId

Path Params

id

string

required

Unique token ID.

Query Params

businessId

string

required

The ID provided to identify your company.

Retrieves the related information associated to the specified token and the specified businessId.

Response Body Params

header

object

required

Header block.

businessId

string(50)

required

The ID provided to identify your company.

body

object

required

Body block.

brandId

number

Brand the token is created for. See brand list.

token

string(50)

required

Token identifier inside the system associated with the card information.

tokenStatus

String

required

The status of the token. See token status.

tokenType

String

required

The type of the token. See token type.

displayHint

string(19)

required

Shows the card number information masked with the following format: ************1234 (i.e. with only the last four digits visible).

card

object

required

Card block.

holderName

string(255)

Name of the card holder as printed on the card.

number

string(19)

required

The card number masked.

expiryMonth

number(2)

required

Month part of expiry date. Format: MM.

expiryYear

number(4)

required

Year part of expiry date. Format: YYYY.

customer

object

Customer block.

customerId

string(255)

ID used to identify the customer.

email

string(255)

Email address of the customer.

Request

https://stagconnect.acehubpaymentservices.com/gateway/v3/tokens/{id}?businessId={businessId}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

{
  "header" : {
    "businessId" : "{businessId}"
  },
  "body" : {
    "brandId" : 1010,
    "token" : "d92af0a1-397f-412d-8f0f-592efc06d1b5",
    "tokenStatus": "ACTIVE",
    "tokenType": "PAYVISION",
    "displayHint" : "************1111",
    "card" : {
      "holderName" : "John Doe",
      "number" : "411111******1111",
      "expiryMonth" : 5,
      "expiryYear" : 2030
    },
    "customer" : {
      "customerId" : "123",
      "email" : "[email protected]"
    }
  }
}

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

/tokens

get/tokens?businessId=businessId&customerId=customerId

Query Params

businessId

string

required

The ID provided to identify your company.

customerId

string

required

The customer id which we want the tokens from.

Retrieves the related tokens’ information associated to the specified customerId and the specified businessId.
This method returns an array of body blocks, one for each token associated to the customerId.

Response Body Params

header

object

required

Header block.

businessId

string(50)

required

The ID provided to identify your company.

body

array

required

Body block.

brandId

number

Brand the token is created for. See brand list.

token

string(50)

required

Token identifier inside the system associated with the card information.

tokenStatus

String

required

The status of the token. See token status.

tokenType

String

required

The type of the token. See token type.

displayHint

string(19)

required

Shows the card number information masked with the following format: ************1234 (i.e. with only the last four digits visible).

card

object

required

Card block.

holderName

string(255)

Name of the card holder as printed on the card.

number

string(19)

required

The card number masked.

expiryMonth

number(2)

required

Month part of expiry date. Format: MM.

expiryYear

number(4)

required

Year part of expiry date. Format: YYYY.

customer

object

required

Customer block.

customerId

string(255)

required

ID used to identify the customer.

email

string(255)

Email address of the customer.

Request

https://stagconnect.acehubpaymentservices.com/gateway/v3/tokens?businessId={businessId}&customerId={customerId}

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

{
  "header" : {
    "businessId" : "{businessId}"
  },
  "body": [
    {
      "brandId" : 1010,
      "token" : "d92af0a1-397f-412d-8f0f-592efc06d1b5",
      "tokenStatus": "ACTIVE",
      "tokenType": "PAYVISION",
      "displayHint" : "************1111",
      "card" : {
        "holderName" : "John Doe",
        "number" : "411111******1111",
        "expiryMonth" : 5,
        "expiryYear" : 2030
      },
      "customer" : {
        "customerId" : "123",
        "email" : "[email protected]"
      }
    },
    {
      "brandId" : 1020,
      "token" : "bffddb0f-c75e-478d-b65d-aff8532299f7",
      "tokenStatus": "ACTIVE",
      "tokenType": "PAYVISION",
      "displayHint" : "************4444",
      "card" : {
        "holderName" : "John Doe",
        "number" : "555555******4444",
        "expiryMonth" : 11,
        "expiryYear" : 2030
      },
      "customer" : {
        "customerId" : "123",
        "email" : "[email protected]"
      }
    }
  ]
}

Token Status

Token Type

Result codes

{{ results.statusCode[0] }} {{ results.statusCode[1] }}

Events

post

Webhook events

Message structure

When a transaction or token status changes, the related information will be notified to the merchant using an HTTP POST request with the following structure:

Webhook event params

Id

GUID

required

Event unique ID.

Type

string(201)

required

Type of the event in the format: [EventType].[EventSubType]. Possible values:

Transaction.Create

Transaction.Update

Tokenization.Create

Tokenization.Update

CreateTime

DateTime

required

UTC date time (ISO-8601) when the event was registered on the webhooks system.

Message

string(100)

Summary message with a description of the event.

EventTime

DateTime

required

UTC date time (ISO-8601) when the event was generated.

Payload

Object

required

Event content sent to the merchant. This value is the same as that returned by the following APIs:

Payment/Authorize response

Capture response

Refund response

Cancel response

Credit response

Token create/update response

Message signature

A signature will be present as an HTTP header called Event-Signature in a JWS-like format. It will contain the transmission ID, a transmission timestamp, the webhook emitter ID and a checksum of the HTTP content (the full event as described above):

JWS

header

Object

Header block.

Alg

string

Signing algorithm, possible values:

HS256

RS256

At the moment, only HS256 will be used with the symmetric key generated when a webhook is created.

Payload

Object

JWS Payload.

transmissionId

Guid

The transmission identifier generated on every transmission attempt.

timestamp

UTC

UTC date time generated on every transmission attempt (ISO-8601).

hookId

Guid

The identifier of the webhook the message is sent to.

crc32

string

Checksum of the HTTP message content.

The value of the crc32 field can be used by merchants to verify the integrity of the message received as described below.

Steps to calculate CRC32

Convert the JSON message string into a byte array with UTF8 encoding.
Compute CRC32 over the byte array. The result is an unsigned integer.
Convert the resulting unsigned int to a byte array.
Encode the byte array to a Base64 string.
Replace the characters ‘+’, ‘/’ and ’=’ in the Base64 string with ‘-‘,’_’ and empty respectively. The resulting string is the crc32.

This should match with the value of the crc32 field in the Event-Signature header.

Example

Input JSON data message (UTF8)
{"Id":"3de19f0c-a3e9-4e72-b822-3371a847c04e","Type":"Health","CreateTime":"2019-07-24T13:55:10.188347Z","Message":"Test message","Payload":null}

Step 1 result
Byte array with 144 bytes (hexadecimal view)

7b 22 49 64 22 3a 22 33 64 65 31 39 66 30 63 2d 61 33 65 39 2d 34 65 37 32 2d 62 38 32 32 2d 33 33 37 31 61 38 34 37 63 30 34 65 22 2c 22 54 79 70 65 22 3a 22 48 65 61 6c 74 68 22 2c 22 43 72 65 61 74 65 54 69 6d 65 22 3a 22 32 30 31 39 2d 30 37 2d 32 34 54 31 33 3a 35 35 3a 31 30 2e 31 38 38 33 34 37 5a 22 2c 22 4d 65 73 73 61 67 65 22 3a 22 54 65 73 74 20 6d 65 73 73 61 67 65 22 2c 22 50 61 79 6c 6f 61 64 22 3a 6e 75 6c 6c 7d

Step 2 result
CRC32 value (hex): 0x4661c67d

Step 3 result
[7d, c6, 61, 46]

Step 4 result

fcZhRg==

Step 5 result
fcZhRg

This is the crc32 value.

200 Tokenization create

A binary file was returned

You couldn't be authenticated

Method

URL

Request Headers

{{ results.requestHeaders }}

Request Data

{{ results.data }}

Status

Response Headers

{{ results.responseHeaders }}

200 Transaction create

200 Transaction update

200 Tokenization update

{
 "Id": "7aabaa70-...-553b27a6c578",
 "Type": "Transaction.Create",
 "CreateTime": "2017-11-03T16:18:05Z",
 "Message": "An authorization was created.",
 "ReceiverId": "**********0006",
 "EventTime": "2017-11-03T16:17:59Z",
 "Payload": {
  "result": 2,
  "description": "Pending",
  "header": {
   "requestTimestamp": "2018-03-14T15:39:47Z",
   "requestCode": "10...ac"
  },
  "body": {
   "redirect": {
    "url": "https://test...",
    "fields": {
     "MD": "8a829449620...52adeb66a39",
     "TermUrl": "https://test.....net",
     "connector": "THREEDSECURE",
     "PaReq": "IT8ubu+5z4YupUCOEH...VIj"
    }
   },
   "card": {
    "expiryMonth": "1",
    "expiryYear": "2033",
    "firstSixDigits": "670399",
    "holderName": "John Smith",
    "lastFourDigits": "0011"
   },
   "transaction": {
    "amount": 1,
    "brandId": 3200,
    "currencyCode": "EUR",
    "action": "authorize",
    "id": "7d799...57",
    "trackingCode": "19...4",
    "orderId": "6be26....09d3"
   }
  }
 }
}

{
    "Id": "89bbfa70-...-43227a62d",
    "Type": "Transaction.Update",
    "CreateTime": "2017-11-03T16:19:05Z",
    "message": "An authorization was updated.",
    "ReceiverId": "**********0006",
    "eventTime": "2017-11-03T16:18:59Z",
    "payload": {
        "result": 0,
        "description": "Ok",
        "header": {
           "requestTimestamp": "2018-03-14T15:39:47Z"
        },
        "body": {
            "threeDSecure": {
                "enrollmentResult": "Y",
                "authenticationResult": "Y"
            },
            "card": {
                "approvalCode": "941496",
                "expiryMonth": "1",
                "expiryYear": "2033",
                "firstSixDigits": "670399",
                "holderName": "N/A",
                "lastFourDigits": "0011"
            },
            "transaction": {
                "amount": 1,
                "brandId": 3200
                "currencyCode": "EUR",
                "action": "authorize",
                "id": "7d799...57",
                "trackingCode": "0e7db......7658",
                "orderId": "6be26....09d3"
            }
        }
    }
}

{
    "Id": "7aabaa70-...-553b27a6c579",
    "Type": "Tokenization.Create",
    "CreateTime": "2017-11-03T16:18:05Z",
    "Message": "A new token has been created.",
    "ReceiverId": "501210006",  
    "EventTime": "2017-11-03T16:17:59Z",
    "Payload": {
        "Token": "7e8e4059......e1cb62d",
        "TokenStatus": "ACTIVE",
        "TokenType": "PAYVISION",
        "DisplayHint": "**********3056",
        "Card": {
            "HolderName": "John Diners",
            "Number": "360001****3056",
            "ExpiryMonth": 12,
            "ExpiryYear": 2030
        }
    }
}

{
    "Id": "9afaa6750-...-3233b27a6c579",
    "Type": "Tokenization.Update",
    "CreateTime": "2017-11-03T16:19:59Z",
    "Message": "A token has been updated.",
    "ReceiverId": "501210006",
    "EventTime": "2017-11-03T16:18:59Z",
    "ReceiverId": "*****0006",
    "Payload": {
        "Token": "7e8e4059......e1cb62d",
        "TokenStatus": "SUSPENDED"
    },
}

Result codes

The webhooks API will only send information about transactions with the following result codes:

Result

Description

Explanation

4

Timeout

The payment timeout expired before the customer completed the payment.

3

Pending merchant

The transaction is pending and waiting for an action to be performed by the merchant.

2

Pending

Pending transaction, the payment was initiated and waiting for the customer to complete the payment at the bank or payment processor.

1

Waiting

The transaction was initiated successfully, but a payment was not yet made by the customer or not yet confirmed by the bank. Occurs for brands for which customers have to make a payment separately (like Boletos) or where the bank does not immediately confirm a payment (like SEPA).

0

Ok

The transaction was processed successfully.

-2

Failed

The transaction failed because of a processing error at Payvision.

-3

Failed, retry

The transaction failed but can be retried.

-4

Declined

Declines, etc. In these cases the processing was performed correctly, but the end-result for the customer is not.

-5

Declined, retry

The transaction is declined, but can be retried.

-6

Security error

Error in authentication data. Generally, no further details are available for security reasons.

-7

Internal server error

Unexpected server error.

-8

Business rule error

Error due to a business rule or a configuration error.

-9

Fraud

Errors that suggest fraudulent behavior.

-10

Customer processing error

Error or cancellation of customer at supplier. For example, the customer abandoned their transaction at the supplier.

-11

Referrals

Errors due to a referral by the supplier.

-12

Status unavailable

The transaction was initiated successfully, but the bank or payment processor could not confirm the result.