Step 3: 3DS Auth API
- Yogesh Dahe
- Joan Smit
- Kyle Robinson
The Authentication API must be called after a successful 3D Secure v2 initialization flow.
API Details
Mode:- Stateless REST API
API URL: - {{paymentApiUrl}}/3ds/authentication
HTTP Method:- POST
Request Body in Json
{
"netvalveMidId":{{netvalveMidId}},
"amount":43.10,
"currency": "USD",
"cardExpireMonth": "08",
"cardExpireYear": "2025",
"cardHolderName": "Test",
"cardNumber": "4100000000000100",
"customerEmail": "test@test.com",
"customerIp": "123.123.123.123",
"customerName": "Test",
"customerLastName": "Test",
"customerAddress": "Test Address",
"customerCity": "Dubai",
"customerCountryCode": "VA",
"customerPhone": "+919900000000,
"customerState": "VA",
"customerZipCode": "85284",
"transID":"732b4368-d69a-4d74-885e-35b5d402824e"
}Note :- As a new 3DS Visa mandate, the customer needs to send an email and phone in the below format to avoid 3DS compliance issues.
"customerEmail": "yogesh@dahe.com",
"customerPhone": "+919900000000", (Customer Phone in the format of coutrycode-phone . e.g +919900000000)Request table
Parameter | Type | Required | Description |
|---|---|---|---|
|
| Yes | Netvalve Mid Id configured with merchant profile. e.g. aa09538b-2148-4e0b-8418-28391caa6af2 |
|
| Yes | Transaction Amount e.g. 100.50 |
|
| Yes |
|
|
| Yes |
e.g. |
|
| Yes |
e.g. |
|
| Yes |
|
|
| Yes | Valid card number |
|
| Conditional. Required for Visa 3DS. | Customer email |
|
| Optional | Customer IP Address |
|
| Yes | Customer First Name |
|
| Yes | Customer Last Name |
|
| Optional | Customer Address |
|
| Optional | Customer City |
|
| Yes | Customer Country Code Format:- US , 2 digits code |
|
| Conditional. Required for Visa 3DS. | Customer Phone in the formate of coutrycode-phone . e.g |
|
| Optional | Customer State |
|
| Optional | Customer Zip/Postal Code |
|
| Yes |
|
HTTP Response Codes
200 Sucess
401 Unauthorised
404 Bad request
500 Service Unavailable
API Response in JSON
Friction Less Flow (Challenge Not Required)
200
{
"traceID": "eb603c99-cdd3-4cb4-801e-94e8c46e2059",
"responseTimestamp": "2023-09-26T16:02:25.587+00:00",
"responseCode": "3DS_1000",
"responseMessage": "Three DS Transaction Successful.",
"threeDSProviderResponse": {
"transID": "e0cc7f76-2d85-4f2d-a284-96df7f59d5bb",
"threeDs2TransactionId": "nDgrHKNMWMJbj3pSn710",
"eci": "05",
"cavv": "Y2FyZGluYWxjb21tZXJjZWF1dGg=",
"challengeRequired": false,
"threeDsVersion": "2.1.0"
},
"midId": 2,
"netvalveMidId": "289e253d-f955-4e29-a2c7-bb1805883ee0"
}
Error
{
"traceID": "8f2348b0-12f2-44c5-91f9-989124c74220",
"responseTimestamp": "2023-11-01T11:43:50.647+00:00",
"responseCode": "3DS_2003",
"responseMessage": "Invalid Merchant ID. Kindly contact Netvalve support."
}
{
"traceID": "d14726d6-8a00-4555-b2e0-f6fea3b944c5",
"responseTimestamp": "2023-11-01T14:19:54.461+00:00",
"responseCode": "3DS_2000",
"responseMessage": "Three DS Transaction Processing Error. ",
"threeDSProviderResponse": {
"referenceId": "0fb6d85d-0a4e-4e1f-b6d8-5d0a4ece1fe7",
"errorCode": "9400",
"errorMessage": "Field 'mid_q' validation error: 'must not be empty' rejected value ''; Field 'mid_q' validation error: 'must not be blank' rejected value ''; Field 'mid_q' validation error: 'size must be between 1 and 8' rejected value ''; ",
"challengeRequired": false,
"status": "AUTHENTICATED_FAILED"
}
}
ACS/Challenge Flow (Challenge Required)
200 { "traceID": "a6fbf18f-c7e4-4fa6-8392-3e95948bca39", "responseTimestamp": "2023-10-12T15:56:16.116+00:00", "responseCode": "3DS_1000", "responseMessage": "Three DS Transaction Successful.", "threeDSProviderResponse": { "transID": "9f202d2e-6a0e-4f70-b478-f8b0203b9e54", "threeDs2TransactionId": "19sOi7k4JQTjnBLcQRb1", "challengeRequired": true, "redirectUrl": "https://gateway.sandbox-netvalve.com/callback?transId=9f202d2e-6a0e-4f70-b478-f8b0203b9e54&t=eyJhbGciOiJIUzI1NiJ9.eyJqdGkiOiJmOTdhM2FlYi03M2IyLTRiM2YtODJkNi1iZTcxMGNjZjI4MDMiLCJpYXQiOjE2OTcxMjYxNzcsImV4cCI6MTY5NzEyNjc3NywiaXNzIjoiTkVUVkFMVkUifQ.qPi3Ss_n1YtZCfxvNY2gsliMEKoZ_tZjqjl5dO9ewyY", "status": "ACS_REQUIRED" }, "midId": 2, "netvalveMidId": "289e253d-f955-4e29-a2c7-bb1805883ee0" } Error { "traceID": "8f2348b0-12f2-44c5-91f9-989124c74220", "responseTimestamp": "2023-11-01T11:43:50.647+00:00", "responseCode": "3DS_2003", "responseMessage": "Invalid Merchant ID. Kindly contact Netvalve support." } { "traceID": "d14726d6-8a00-4555-b2e0-f6fea3b944c5", "responseTimestamp": "2023-11-01T14:19:54.461+00:00", "responseCode": "3DS_2000", "responseMessage": "Three DS Transaction Processing Error. ", "threeDSProviderResponse": { "referenceId": "0fb6d85d-0a4e-4e1f-b6d8-5d0a4ece1fe7", "errorCode": "9400", "errorMessage": "Field 'mid_q' validation error: 'must not be empty' rejected value ''; Field 'mid_q' validation error: 'must not be blank' rejected value ''; Field 'mid_q' validation error: 'size must be between 1 and 8' rejected value ''; ", "challengeRequired": false, "status": "AUTHENTICATED_FAILED" } }Frictionless Success Criteria:- {{paymentApiUrl}}/3ds/authentication response must have the below data and the client should add those checks
"responseCode" = "3DS_1000""transID" = (Non Null value)threeDs2TransactionId = (Non Null value)"eci" = (Non Null value)"cavv" = (Non Null value)threeDsVersion = (Non Null value)
ACS Success Criteria:- {{paymentApiUrl}}/3ds/authentication response must have the below data and the client should add those checks
"responseCode" = "3DS_1000""transID" = (Non Null value)challengeRequired = true"redirectUrl" = (Non Null value)"status" =ACS_REQUIRED
Response table
Parameter | Type | Required | Description |
|---|---|---|---|
|
| Yes | Trace Id / Corellation ID :- Unique id for 3DS Transaction to trace back / enquiry. e.g. |
|
| Yes | Date time of response. e.g. |
|
| Yes |
e.g. More Error Codes |
|
| Yes |
|
|
| Optional (present in case of valid request) |
|
midId | Long | Yes | MID ID |
| String | Yes |
|
ThreeDSProviderResponse table
Parameter | Type | Required | Description |
|---|---|---|---|
|
| Yes |
e.g. |
|
| Yes |
e.g. |
|
| Yes |
e.g. |
|
| Yes |
e.g.
More details ECI Codes |
|
| Yes | CAVV e.g. |
| boolen | Optional | true/false |
|
| Optional |
|
|
| Yes |
|
|
| Optional | e.g. |
|
| Optional | e.g. “ |
Error Codes
// 1000 series for Approval,
THREE_DS_SUCCESS("3DS_1000", "Three DS Transaction Successful."),
THREE_DS_REQUEST_SUCCESS("3DS_1001", "Request Successful."),
// 2000 series for error
THREE_DS_ERROR("3DS_2000", "Three DS Transaction Processing Error. "),
THREE_DS_REQUIRED_CALL_BACK_URL("3DS_2001", "Event Callback Url Is Missing. This Value Must Be Provided."),
THREE_DS_NOT_CONFIGURED("3DS_2002", "Mid Not configured for 3DS. Kindly contact Netvalve support."),
THREE_DS_INVALID_MERCHANT("3DS_2003", "Invalid Merchant ID. Kindly contact Netvalve support."),
THREE_DS_TRANSACTION_ID_REQUIRED("3DS_2004", "Three DS Transaction Id Is Missing. This Value Must Be Provided."),
THREE_DS_CHALLENGE_INDICATOR_REQUIRED("3DS_2005", "Challenge Indicator Is Missing. This Value Must Be Provided."),
THREE_DS_BROWSER_INFO_REQUIRED("3DS_2006", "Browser Info token Is Missing. This Value Must Be Provided."),
THREE_DS_DF_REF_ID_REQUIRED("3DS_2007", "DF Reference Id Is Missing. This Value Must Be Provided."),
THREE_DS_GATEWAY_ERROR("3DS_2008", "Three DS Transaction Processing Error from Gateway. Kindly contact Netvalve support."),
THREE_DS_IMPL_TYPE_REQUIRED("3DS_2009", "3DS implementation type Is Missing. This Value Must Be Provided.");