课程内容

UPOP SecurePlus Authentication

OVERVIEW

This card authentication services deter unauthorized card use and enable you you to accept authenticated UnionPay debit and credit card payments. Payer Authentication through has been made available by iVeri with the addition of the following Enquiry commands:

  • UPOPAuthenticationRequestCreation

  • UPOPAuthenticationResponseValidation

Note: 

  • The Merchant must be enabled for 3DSecure Checking on the iVeri Gateway.

  • This functionality is not available by default, it is specific to an acquirer.

  • Depending on the implementation of 3Dsecure it could either be used on your existing 3Dsecure implementation especially if it is via the iVeri Gateway or potentially have to do a completely new integration if you directly with the 3DS vendor.

    Request Creation

    The goal is to create the Authentication Request message to be posted to the UPOP authentication server. To do so, you would build up a Enquiry request with the command set as UPOPAuthenticationRequestCreation. The following required parameters needs to be sent:

    • ApplicationID
    • CertificateID
    • Mode
    • MerchantReference
    • Amount
    • Currency
    • PAN
    • UPOP_TransactionTime
    • UPOP_FrontUrl
    • UPOP_BackUrl
    • UPOP_RelatedTransactionType
    If the Request Creation was unsuccessful the merchant is not permitted to continue with the transaction. Instead, ask the customer for another form of payment.

    If the Request Creation was successful, the following parameters will be returned:

    • UPOP_RequestID - Links the Creation process with the Validation process.
    • UPOP_TransactionTime - Must always be present
    • UPOP_Endpoint- Only Present if Creation process successful.
    • UPOP_ACPReq- Only Present if Creation process successful.

    The merchant’s website will have to be redirected to the Authentication Server UPOP Endpoint and the ACPReq must be posted to it. An example of the redirect page is available here.


    Request Validate
    The Authentication Response message received from the UPOP authentication server must now be validated. To do so, you would build up a Enquiry request with the command set as UPOPAuthenticationResponseValidation. The following required parameters need to be sent:

    • ApplicationID
    • CertificateID
    • Mode
    • UPOP_RequestID - Links the Creation process with the Validation process.
    • UPOP_TransactionTime - Must always be present
    • UPOP_ACPRes- ACPRes message extracted from the form - example here
    If the Request Validation was unsuccessful the merchant is not permitted to submit the transaction for authorisation. Instead ask the customer for another form of payment.

    If the Request Validation was successful, the following parameters will be returned and is required to be sent through to the gateway:

    • UPOP_RequestID - Must be send to gateway with transaction.
    • UPOP_TransactionTime - Must be send to gateway with transaction.
    • CardHolderAuthenticationData -Must be send to gateway with transaction.
    • ElectronicCommerceIndicator- Must be send to gateway with transaction.


    TRANSACTION V_XML SAMPLES 


    The examples provided in this apply when using the web service interface to perform various transactions.
    Because of the large number of elements present in the schema definition, these examples highlight the elements that are most used to perform various transactions. It is important to note that the elements must appear in the same order they appear in the schema definition.
    For a further explanation of each individual elements, see Section 7.

    The examples cover the following messages:

    Comprehensive Request and Response

    The Request message shows all of the elements that are most commonly used. The examples that follow will use the Mandatory elements from this message necessary to perform the respective transaction covered in the example.
    The response message is a typical response received from the web service to the various request messages.
    Credit Card Authorisation
    Credit Card Sale
    Credit Card Follow-up Sale (converting a previous authorisation into a sale)
    Debit Card Sale
    Void by Merchant Reference
    Void by Trace
    Void by Follow-up
    Sale with 3D Secure Elements
    Request for Debit

    Comprehensive Request and Response
    Request Message

    <V_XML Version="2.0" CertificateID="A8CBF8DA-92C8-4DF0-93C4-BFA285D66346" Direction="Request">
        <Transaction ApplicationID="8B2101C2-88A2-11D4-BCCF-0000E884F861" Command="Debit" Mode="Test">
            <CardHolderAuthenticationID />
            <CardHolderAuthenticationData />
            <CashAmount />
            <OriginalMerchantTrace />
            <AccountType />
            <KeySerialNumber />
            <DeviceSerialNumber />
            <DeviceMake />
            <DeviceCycle />
            <MerchantTrace>b5181eb0-b3b6-4811-a960-0000c4a0ae63</MerchantTrace>
            <PurchaseDate />
            <PurchaseTime />
            <PurchaseIdentifier />
            <Amount>123</Amount>
            <AuthorisationCode />
            <BudgetPeriod />
            <Currency />
            <ElectronicCommerceIndicator />
            <ExpiryDate>122012</ExpiryDate>
            <MerchantReference>2010-08-18 16:43:40.275</MerchantReference>
            <Terminal />
            <TransactionIndex />
            <OriginalRequestID />
            <CardSecurityCode>...</CardSecurityCode>
            <PINBlock />
            <Track2 />
            <PAN>4242........4242</PAN>
        </Transaction>
    </V_XML>


    Response Message

    <V_XML Version="2.0" Direction="Response">
        <Transaction ApplicationID="{8B2101C2-88A2-11D4-BCCF-0000E884F861}" Command="Debit" Mode="Test" RequestID="{59B08CCE-ACF8-48C4-9E4C-E3134640DC2D}">
            <Result Status="0" AppServer="BOROMIR" DBServer="ARWEN" Gateway="iVeri Client "gateway"" />
            <MerchantTrace>b5181eb0-b3b6-4811-a960-0000c4a0ae63</MerchantTrace>
            <Amount>123</Amount>
            <AuthorisationCode>615232</AuthorisationCode>
            <Currency>ZAR</Currency>
            <ExpiryDate>122012</ExpiryDate>
            <MerchantReference>2010-08-18 16:43:40.275</MerchantReference>
            <Terminal>11111111</Terminal>
            <TransactionIndex>{0505EC40-65CA-4F81-A806-FA1F2C45BA37} </TransactionIndex>
            <MerchantName>iVeri Payment Technology</MerchantName>
            <MerchantAddress>Wierda Valley</MerchantAddress>
            <MerchantCity>Sandton</MerchantCity>
            <MerchantCountryCode>ZA</MerchantCountryCode>
            <MerchantCountry>South Africa</MerchantCountry>
            <MerchantUSN>0000000000</MerchantUSN>
            <Acquirer>Nedcor</Acquirer>
            <AcquirerReference>10081:16406407</AcquirerReference>
            <AcquirerDate>20100818</AcquirerDate>
            <AcquirerTime>164033</AcquirerTime>
            <DisplayAmount>R 1.23</DisplayAmount>
            <BIN>4</BIN>
            <Association>VISA</Association>
            <CardType>Unknown CardType</CardType>
            <Issuer>Citibank</Issuer>
            <Jurisdiction>International</Jurisdiction>
            <PANMode>Keyed</PANMode>
            <ReconReference>00323841</ReconReference>
            <CCNumber>4242........4242</CCNumber>
            <PAN>4242........4242</PAN>
        </Transaction>
    </V_XML>


    Credit Card Authorisation

    Request Message

    <V_XML Version="2.0" CertificateID="{issued certificate id}" Direction="Request">
        <Transaction ApplicationID="{associated application id}" Command="Debit" Mode="Test">
            <Amount>1000</Amount>
            <BudgetPeriod>0</BudgetPeriod>
            <ExpiryDate>072019</ExpiryDate>
            <MerchantReference>348004809</MerchantReference>
            <PAN>4242424242424242</PAN>
        </Transaction>
    </V_XML>

    Credit Card Follow-up Sale (converting a previous authorisation into a sale)
    Request Message

    <V_XML Version="2.0" CertificateID="{issued certificate id}" Direction="Request">
        <Transaction ApplicationID="{associated application id}" Command="Debit" Mode="Test">
            <Amount></Amount>
            <AuthorisationCode></AuthorisationCode>
            <MerchantReference></MerchantReference>
            <Track2></Track2>
        </Transaction>
    </V_XML>

    Debit Card Sale
    Request Message

    <V_XML Version="2.0" CertificateID="{issued certificate id}" Direction="Request">
        <Transaction ApplicationID="{associated application id}" Command="Debit" Mode="Test">
            <AccountType>Cheque</AccountType>
            <KeySerialNumber></KeySerialNumber>
            <DeviceSerialNumber></DeviceSerialNumber>
            <DeviceMake></DeviceMake>
            <DeviceCycle></DeviceCycle>
            <Amount>1000</Amount>
            <MerchantReference></MerchantReference>
            <PINBlock></PINBlock>
            <Track2></Track2>
        </Transaction>
    </V_XML>

    Void by Merchant Reference
    Request Message

    <V_XML Version="2.0" CertificateID="{1DE2555B-5958-487C-A882-A3A10AE7C22A}" ProductType="Enterprise" ProductVersion="iVeriWebservice" Direction="Request">

        <Transaction ApplicationID="{AF8E6E69-ADC5-4D4F-B446-43D2E1E598D3}" Command="Void" Mode="Live">

            <MerchantReference>merchRef</MerchantReference>

        </Transaction>

    </V_XML>

    Response Message

    <V_XML Version="2.0" Direction="Response">

        <Transaction ApplicationID="{AF8E6E69-ADC5-4D4F-B446-43D2E1E598D3}" Command="Void" Mode="Live" RequestID="{03AACDCD-5EA1-4961-B7C3-14CFC26D2B6F}">

            <Result Status="0" AppServer="BOROMIR" DBServer="ARWEN" Gateway="iVeri Client "gateway"" />

            <MerchantReference>merchRef</MerchantReference>

        </Transaction>

    </V_XML>

    Void by Trace
    Request Message

    <V_XML Version="2.0" CertificateID="{1DE2555B-5958-487C-A882-A3A10AE7C22A}" ProductType="Enterprise" ProductVersion="iVeriWebservice" Direction="Request">
        <Transaction ApplicationID="{AF8E6E69-ADC5-4D4F-B446-43D2E1E598D3}" Command="Void" Mode="Live">
            <OriginalMerchantTrace>b5181eb0-b3b6-4811-a960-0000c4a0ae63</OriginalMerchantTrace>
        </Transaction>
    </V_XML>

    Response Message

    <V_XML Version="2.0" Direction="Response">
        <Transaction ApplicationID="{AF8E6E69-ADC5-4D4F-B446-43D2E1E598D3}" Command="Void" Mode="Live" RequestID="{03AACDCD-5EA1-4961-B7C3-14CFC26D2B6F}">
            <Result Status="0" AppServer="BOROMIR" DBServer="ARWEN" Gateway="iVeri Client "gateway"" />
            <OriginalMerchantTrace>b5181eb0-b3b6-4811-a960-0000c4a0ae63</OriginalMerchantTrace>
        </Transaction>
    </V_XML>


    Void by Follow-up
    Request Message

    <V_XML Version="2.0" CertificateID="{1DE2555B-5958-487C-A882-A3A10AE7C22A}" ProductType="Enterprise" ProductVersion="iVeriWebservice" Direction="Request">
        <Transaction ApplicationID="{AF8E6E69-ADC5-4D4F-B446-43D2E1E598D3}" Command="Void" Mode="Live">
            <OriginalRequestID>{BDB162C6-D1CE-494E-BD66-ED40DF2B2B70} </OriginalRequestID>
        </Transaction>
    </V_XML>

    Response Message

    <V_XML Version="2.0" Direction="Response">
        <Transaction ApplicationID="{AF8E6E69-ADC5-4D4F-B446-43D2E1E598D3}" Command="Void" Mode="Live" RequestID="{03AACDCD-5EA1-4961-B7C3-14CFC26D2B6F}">
            <Result Status="0" AppServer="BOROMIR" DBServer="ARWEN" Gateway="iVeri Client "gateway"" />
            <OriginalRequestID>{BDB162C6-D1CE-494E-BD66-ED40DF2B2B70} </OriginalRequestID>
       </Transaction>
    </V_XML>

    Sale with 3D Secure Elements
    Request Message

    <V_XML Version="2.0" CertificateID="{}" Direction="Request">
        <Transaction ApplicationID="" Command="Void" Mode="Test">
            <CardHolderAuthenitcationID></CardHolderAuthenitcationID>
            <CardHolderAuthenticationData></CardHolderAuthenticationData>
            <Amount></Amount>
            <ElectroniceCommerceIndicator></ElectroniceCommerceIndicator>
            <MerchantReference></MerchantReference>
            <PAN></PAN>
        </Transaction>
    </V_XML>

    Request for Debit
    Request Message

    <V_XML CertificateID="172bc42c-7ffb-44d0-a1e4-441444e1274c" Direction="Request" ProductType="Enterprise" ProductVersion="iVeriClient.JAVA v4.0.2" Version="2.0">
          <Enquiry ApplicationID="1e983347-de24-406f-9a63-db63bc922f54" Command="RequestForDebit" Mode="Test">
                <CardHolderName>John</CardHolderName>
                <CardholderEmail>john@somewhere.com</CardholderEmail>
                <Amount>2000</Amount>
                <Currency>ZAR</Currency>
                <MerchantReference>1477917063526</MerchantReference>
                <OrderDescription/>
                <RequestExpiryDate>20161209</RequestExpiryDate>
                <CreateTransactionUrl>False</CreateTransactionUrl>
        </Enquiry>
    </V_XML>

    Response Message

    <V_XML Direction="Response" Version="2.0">
       <Enquiry ApplicationID="{1E983347-DE24-406F-9A63-DB63BC922F54}" Command="RequestForDebit" Mode="Test" RequestID="{1D0AA3F7-F355-486C-B11B-367A6D070E8E}">
             <Result Status="0" AppServer="BOROMIR" DBServer="ARWEN" Gateway="iVeri Client "gateway"" />
             <MerchantReference>1477917063526</MerchantReference>
         </Enquiry>
    </V_XML>





    额定值
    0 0

    目前没有任何评论。

    成为第一个发表评论的人。