Step 3: 3DS Auth API
- Yogesh Dahe
- Joan Smit
- Kyle Robinson
The Authentication API must be called after a successful 3D Secure v2 initialization flow.
API Details
Mode:- Stateless REST API
API URL: - {{paymentApiUrl}}/3ds/authentication
HTTP Method:- POST
Request Body in Json
{
"netvalveMidId":{{netvalveMidId}},
"amount":43.10,
"currency": "USD",
"cardExpireMonth": "08",
"cardExpireYear": "2025",
"cardHolderName": "Test",
"cardNumber": "4100000000000100",
"customerEmail": "test@test.com",
"customerIp": "123.123.123.123",
"customerName": "Test",
"customerLastName": "Test",
"customerAddress": "Test Address",
"customerCity": "Dubai",
"customerCountryCode": "VA",
"customerPhone": "+919900000000,
"customerState": "VA",
"customerZipCode": "85284",
"transID":"732b4368-d69a-4d74-885e-35b5d402824e"
}Note :- As a new 3DS Visa mandate, the customer needs to send an email and phone in the below format to avoid 3DS compliance issues.
"customerEmail": "yogesh@dahe.com",
"customerPhone": "+919900000000", (Customer Phone in the format of coutrycode-phone . e.g +919900000000)Request table
Parameter | Type | Required | Description |
|---|---|---|---|
|
| Yes | Netvalve Mid Id configured with merchant profile. e.g. aa09538b-2148-4e0b-8418-28391caa6af2 |
|
| Yes | Transaction Amount e.g. 100.50 |
|
| Yes |
|
|
| Yes |
e.g. |
|
| Yes |
e.g. |
|
| Yes |
|
|
| Yes | Valid card number |
|
| Conditional. Required for Visa 3DS. | Customer email |
|
| Optional | Customer IP Address |
|
| Yes | Customer First Name |
|
| Yes | Customer Last Name |
|
| Optional | Customer Address |
|
| Optional | Customer City |
|
| Yes | Customer Country Code Format:- US , 2 digits code |
|
| Conditional. Required for Visa 3DS. | Customer Phone in the formate of coutrycode-phone . e.g |
|
| Optional | Customer State |
|
| Optional | Customer Zip/Postal Code |
|
| Yes |
|
HTTP Response Codes
200 Sucess
401 Unauthorised
404 Bad request
500 Service Unavailable
API Response in JSON
Friction Less Flow (Challenge Not Required)
200
{
"traceID": "eb603c99-cdd3-4cb4-801e-94e8c46e2059",
"responseTimestamp": "2023-09-26T16:02:25.587+00:00",
"responseCode": "3DS_1000",
"responseMessage": "Three DS Transaction Successful.",
"threeDSProviderResponse": {
"transID": "e0cc7f76-2d85-4f2d-a284-96df7f59d5bb",
"threeDs2TransactionId": "nDgrHKNMWMJbj3pSn710",
"eci": "05",
"cavv": "Y2FyZGluYWxjb21tZXJjZWF1dGg=",
"challengeRequired": false,
"threeDsVersion": "2.1.0"
},
"midId": 2,
"netvalveMidId": "289e253d-f955-4e29-a2c7-bb1805883ee0"
}
Error
{
"traceID": "8f2348b0-12f2-44c5-91f9-989124c74220",
"responseTimestamp": "2023-11-01T11:43:50.647+00:00",
"responseCode": "3DS_2003",
"responseMessage": "Invalid Merchant ID. Kindly contact Netvalve support."
}
{
"traceID": "d14726d6-8a00-4555-b2e0-f6fea3b944c5",
"responseTimestamp": "2023-11-01T14:19:54.461+00:00",
"responseCode": "3DS_2000",
"responseMessage": "Three DS Transaction Processing Error. ",
"threeDSProviderResponse": {
"referenceId": "0fb6d85d-0a4e-4e1f-b6d8-5d0a4ece1fe7",
"errorCode": "9400",
"errorMessage": "Field 'mid_q' validation error: 'must not be empty' rejected value ''; Field 'mid_q' validation error: 'must not be blank' rejected value ''; Field 'mid_q' validation error: 'size must be between 1 and 8' rejected value ''; ",
"challengeRequired": false,
"status": "AUTHENTICATED_FAILED"
}
}
ACS/Challenge Flow (Challenge Required)
Frictionless Success Criteria:- {{paymentApiUrl}}/3ds/authentication response must have the below data and the client should add those checks
"responseCode" = "3DS_1000""transID" = (Non Null value)threeDs2TransactionId = (Non Null value)"eci" = (Non Null value)"cavv" = (Non Null value)threeDsVersion = (Non Null value)
ACS Success Criteria:- {{paymentApiUrl}}/3ds/authentication response must have the below data and the client should add those checks
"responseCode" = "3DS_1000""transID" = (Non Null value)challengeRequired = true"redirectUrl" = (Non Null value)"status" =ACS_REQUIRED
Response table
Parameter | Type | Required | Description |
|---|---|---|---|
|
| Yes | Trace Id / Corellation ID :- Unique id for 3DS Transaction to trace back / enquiry. e.g. |
|
| Yes | Date time of response. e.g. |
|
| Yes |
e.g. More Error Codes |
|
| Yes |
|
|
| Optional (present in case of valid request) |
|
midId | Long | Yes | MID ID |
| String | Yes |
|
ThreeDSProviderResponse table
Parameter | Type | Required | Description |
|---|---|---|---|
|
| Yes |
e.g. |
|
| Yes |
e.g. |
|
| Yes |
e.g. |
|
| Yes |
e.g.
More details ECI Codes |
|
| Yes | CAVV e.g. |
| boolen | Optional | true/false |
|
| Optional |
|
|
| Yes |
|
|
| Optional | e.g. |
|
| Optional | e.g. “ |