Login

Authorization without 3DS (2D secure)

This option allows charging a card without subjecting the card to 3DS authorization.

🚧

Before you continue

HTTP accept header sent from the cardholder's browser non- 3DS cards allow for non-payment authentication that allows the protocol to be used in more than just traditional browser-based payments.

This API will be available by approval only on production

Steps for charge card acceptance:

  1. Initiate a Checkout Request
  2. Encrypt the payment card details.
  3. Formulate card charge request payload - 3DS parameter set to false.

Header Parameters

HeaderValueRequired
AuthorizationBearer <Bearer_Token> generated during authenticate request in step 1.YES
Content-Typeapplication/jsonYES

Request Parameters

The card details will need to be encrypted and the encrypted string passed under the sourceOfFunds parameter in the final payload.
See Authorization with 3D Secure on how to encrypt the card details.

Parameter NameTypeDescription
serviceCodestringUnique code identifier for the merchant's service in use as provided on the checkout platform.
merchantTransactionIDstringUnique transaction ID identifying the transaction as given by the merchant.
payerModeIDintegerThis is a number representing the payment option client and the mode in use e.g. using a mobile money client paying via STK push. This will be provided as part of the payment options
languageCodestring2 letter code for the language used for the transaction.
countryCodestringThe ISO 3166-1 alpha-2 code of the country you wish to collect payment for.
3dsstring"true"/"false"
False to charge the card without 3DS
isCvvLessstring[OPTIONAL] parameter to be included if you would like to specify whether or not you would like to charge with cvv.
Default value is "false"
Set value to "true" to charge without CVV (CVV-less)
checkoutRequestIDintegerA unique transaction ID identifying the transaction logged in the checkout platform.
sourceOfFundsstringEncrypted card details
orderJSON arrayOrder details as described in the Authorization with 3D Secure section.
billingDetailsJSON arrayBilling details as described in the Authorization with 3D Secure section
threeDSecureJSON array[OPTIONAL] External 3DS parameters passed by merchant. If passed, we assume 3D checks have been done on merchant side so we proceed to charge via 2D. 3ds parameter value above is ignored.
agreementIDStringThis is the enrolment ID generated by Mastercard confirming the customer has agreed to be charged for recurring payments.

The threeDSecure array consists of the following parameters

Parameter NameTypeDescription
ecistringElectronic Commerce Indicator.
cavvstringCardholder Authentication Verification Value.
cavvAlgorithmstringIndicates the algorithm used to generate the CAVV value
xidstringTransaction identifier resulting from authentication processing.
paresStatusbooleanTransaction status result identifier.
enrollmentResponsestringCheck whether the card is 3ds enballed from the acquirer.
authenticationResponsestringConfirm whether the 3DS check was successful.

Example

{
    "merchantTransactionID": "{{merchantTransactionID}}",
    "checkoutRequestID": "{{checkoutRequestID}}",
    "PayerModeID": "{{PayerModeID}}",
    "languageCode": "en",
  	"isCvvLess": "true", //OPTIONAL - Default false
    "countryCode": "NG",
    "3ds": "false",
    "serviceCode": "{{service_code}}",
    "order": {
        "accountNumber": "ASDF7E",
        "chargeAmount": "1000.00",
        "currencyCode": "KES",
        "requestDescription": "Order XX Purchase"
    },
    "sourceOfFunds": "eUxtRVNSYmpDbG8wMWZBYXhLU3dWdk9MZ0hnUm9WaGtXTGdMenFDMnBFYU1BR08yTE5hUkdUY0J1MCtRMjZ1Y1NpaDN2ZmthYThvaHR5NElKUEtHbytPdEZjcC9jcjJqSGl2cGd0Tm5MaVVGcjFmeFpoVHdNdWxSc2dHczRYWTdUM2w1Mzhvd2cyWXM4ekZzbnlrOVV3PT0==",
    "billingDetails": {
        "address": {
            "city": "Nairobi",
            "countryCode": "NG"
        },
        "customer": {
            "firstName": "Gunnar",
            "emailAddress": "[email protected]",
            "surname": "Stewart",
            "mobileNumber": "254765121298"
        },
     //OPTIONAL
    "threeDsecure":{
        "eci":"05",
        "cavv":"563",
        "cavvAlgorithm":"gshbhbdjnjdnjbd/m",
        "xid":"3566hebhe",
        "paresStatus":true,
        "enrollmentResponse":"N",
        "authenticationResponse":"N"
    }
}  

Response Parameters

Parameter NameTypeDescriptionMandatory
statusCodeintegerRequest status code. See full status codes details below.TRUE
statusDescriptionstringA description of the status provided above.TRUE
accountNumberstringPayment reference code.TRUE
currencyCodestringISO Code currency for the transactionTRUE
checkoutRequestIDintegerUnique request ID identifying the transaction provided by the checkout platform.TRUE
amountPaiddoubleAmount authorized on the card.TRUE
MSISDNstringCustomer Mobile number.TRUE
cpgTransactionIDintegerUnique transactionID on the Cellulant Payment Gateway.FALSE
datePaymentReceivedstringDate the payment was authorized.FALSE
payerTransactionIDstringUnique transaction reference/id from the acquirerFALSE
RRNostringUnique code from the acquirer confirming transfer of funds.FALSE
authorizationCodestringAuthorization code provided by the issuing bank.FALSE
cardPrefixintegerThe last four digits of the card number.FALSE

Example

Successful Response

{
    "statusCode": 200,
    "statusDescription": "Operation done successfully",
    "accountNumber": "ACC12345",
    "currencyCode": "KES",
    "checkoutRequestID": 576982307,
    "amountPaid": 20.00,
    "MSISDN": "254722100200",
    "cpgTransactionID": 12345678,
    "datePaymentReceived": "2022-05-01 10:20:10",
    "payerTransactionID": "unique12390",
    "RRNo": "098765421",
    "authorizationCode": "2022",
    "cardPrefix": "4040",
}

Failure Response

{
    "statusCode": 216,
    "statusDescription": "Insufficient funds or withdrawal limit exceeded. Fund account or retry with a different card",
    "accountNumber": "ACC12345",
    "currencyCode": "KES",
    "checkoutRequestID": 576982307,
    "amountPaid": 0.00,
    "MSISDN": "254722100200",
    "cpgTransactionID": 12345679,
    "datePaymentReceived": "2022-05-01 10:23:10",
    "payerTransactionID": "unique12391",
}

Card Status Codes

Status CodeStatus Description
200Transaction was successful
203Rejected due to Address Verification System data mismatch (name, address, etc.). Retry with a different card or contact your bank to update address details
204Transaction may or may not have been successful, but MUST be canceled to comply with sanctions and law enforcement. Retry with a different card
205Transaction rejected due to CVV mismatch. Retry transaction with correct CVV
209The card is expired. Retry with a different card
210Transaction has been blocked due to fraud. Retry with a different card
211Amount is too high, too low, does not match a previous authorisation or is otherwise invalid. Retry with a different amount
212Card data (PAN, expiry date or CVV) are invalid. Retry with correct card details
213PAN is invalid. Retry with correct card PAN
214Transaction declined by acquirer. Retry with a different card
215Rejected due to problems on the issuer side. Retry with a different card
216Insufficient funds or withdrawal limit exceeded. Fund account or retry with a different card
217Card reported as lost. Contact issuing bank or retry with a different card
219Transaction not permitted to either issuer, cardholder, acquirer or merchant. Retry with a different card
220Transaction was successful for only a partial amount, void transaction and try again
222Rejected due to issues with cardholder PIN. Retry with correct card PIN or a different card
223Transaction has been rejected, please contact your card issuer or retry with a different card
224Transaction was processed, but has been flagged for manual review due to suspicion of fraud
225Card has been reported as stolen. Contact issuing bank
226Transaction timed out with unclear status; recommend to cancel and retry with a different card
616Token not found. Retry with a valid token
617Duplicate reference number. Reinitiate transaction with a unique Merchant transaction ID
629Transaction blocked due to suspected fraud. Contact card issuer for support
631Missing card number. Please provide the card number
632Missing card expiry field. Please provide the card expiry field
633Missing card expiry month field. Please provide the card expiry month field
634Missing card expiry year field. Please provide the card expiry year field
637Invalid Country Code passed. Please provide the correct country code
642Customer email is required
644Invalid card BIN format. Value should be numeric
647Card BIN is required
648Invalid card BIN length passed
651Missing card number. Please provide card number for card tokenization requests
655Incorrect card pin length. Card PIN must be four (4) digit(s)
656Unsupported request type. Set isCvvLess flag to True
660Invalid card length %s scheme. % card length should be %
661Invalid card PAN. Retry with correct card PAN
662Incorrect Expiry year length. Expiry year must be 2 digits
663Incorrect Expiry month length. Expiry month must be 2 digits
664Incorrect Expiry month. Expiry month must be value must be between 1 and 12
665Incorrect Expiry year. Expiry month must be value must be between 0 and 99
667Invalid CVV format. Card Verification Value must be a numeric value between 3 and 4 digits
668BIN passed in card issuer information does not match card BIN
671Card details is not required for delete token requests. Send only token
672Missing token. Token is required delete token requests
673Missing card pin. cardPin is required for VERVE Cards
675Unsupported request type. Set tokenizeCard flag to false
1067We are unable to process your request at the moment. Please contact support via [email protected]