3DS2 - Challenge authentication, without the 3DS Method
To test this scenario, use one of the card numbers below:
| CARD | Expiry date | Label |
|---|---|---|
| 4970110000000021 | To be chosen | VISA |
| 5100010000000049 | To be chosen | MASTERCARD |
| 375900000000016 | To be chosen | AMEX |
Exchange flow
1. Call to Web Service PCI/Authentication/CreateSession with an enrolled 3DS2 card.
{
"amount":"9990",
"currency":"EUR",
"transactionCategory":"PAYMENT",
"productType":"GOODS_OR_SERVICE_PURCHASE",
"merchant": {
"mid":""
},
"paymentForm": {
"expiryMonth":"09",
"expiryYear":"22",
"networkPreference":"VISA",
"pan":"4970110000000021"
},
"protocolRequest": {
"name":"THREEDS",
"version":"2",
"challengePreference":"NO_PREFERENCE"
},
"ianTargetUrl": "<https://merchant.ian.com>"
}Response
{
"webService":"PCI/Authentication/CreateSession",
"version":"V4",
(...)
"answer":{
"operationSessionId":"30641640cba14eab8e6766094fd201da",
"operationUrl":"https://api.scelliuspaiement.labanquepostale.fr/api-payment/V4/Charge/Public/Authenticate/Session/30641640cba14eab8e6766094fd201da;JSESSIONID=7A4beEA2d5fdbFeA7389F3B91a7bDBaBc8DA9df5.default-hostname",
"_type":"V4/PCI/Authentication/AuthenticationSessionResponse"
}
}In the example :
answer.operationUrl: "https://api.scelliuspaiement.labanquepostale.fr/api-payment/V4/Charge/Public/Authenticate/Session/30641640cba14eab8e6766094fd201da;JSESSIONID=7A4beEA2d5fdbFeA7389F3B91a7bDBaBc8DA9df5.default-hostname"Transmettez le champ
operationUrlà la méthode d'authentificationkr-authenticate.jsde la librairie JS (plus d'infos : Guide d'intégration (mode simple)).
2. Redirection to the cardholder's bank's ACS.
- The JS library performs automatically all the necessary actions, without any specific development for the merchant.
3. Answer of the payment gateway server with the final authentication result.
{
"webService":"PCI/Authentication/CreateSession",
"version":"V4",
"applicationVersion":"5.23.0",
"serverDate":"2023-05-05T09:33:32+00:00",
"ticket":"3b68064f80f346919828dee761bd22b5",
"applicationProvider":"",
"metadata":null,
"status":"SUCCESS",
"mode":"TEST",
"serverUrl":"https://api.scelliuspaiement.labanquepostale.fr",
"_type":"V4/WebService/Response",
"answer":{
"id":"292f62af-253b-40c7-aef0-7ec808d29b8d",
"operationSessionId":null,
"protocol":{
"name":"THREEDS",
"version":"2.2.0",
"network":"VISA",
"challengePreference":"NO_PREFERENCE",
"simulation":true,
"_type":"V4/Charge/Authenticate/Protocol"
},
"value":{
"authenticationType":"CHALLENGE",
"authenticationId":{
"authenticationIdType":"dsTransId",
"value":"a477cfe2-0bb7-4ab1-9b9d-8ce3ca93e3e2",
"_type":"V4/Charge/Authenticate/AuthenticationId"
},
"authenticationValue":{
"authenticationValueType":"CAVV",
"value":"E+sA5+ffDssl7xW2tPgZhyoF3No=",
"_type":"V4/Charge/Authenticate/AuthenticationValue"
},
"status":"SUCCESS",
"commerceIndicator":"05",
"extension":{
"authenticationType":"THREEDS_V2",
"challengeCancelationIndicator":null,
"cbScore":null,
"cbAvalgo":null,
"cbExemption":null,
"paymentUseCase":null,
"threeDSServerTransID":"292f62af-253b-40c7-aef0-7ec808d29b8d",
"dsTransID":"a477cfe2-0bb7-4ab1-9b9d-8ce3ca93e3e2",
"acsTransID":"1abace8e-4bac-449b-bdb3-985b8ebfc286",
"sdkTransID":null,
"transStatusReason":null,
"requestedExemption":null,
"requestorName":"Lyra SMS",
"cardHolderInfo":null,
"dataOnlyStatus":null,
"dataOnlyDecision":null,
"dataOnlyScore":null,
"_type":"V4/Charge/Authenticate/AuthenticationResultExtensionThreedsV2"
},
"reason":{
"code":null,
"message":null,
"_type":"V4/Charge/Authenticate/AuthenticationResultReason"
},
"_type":"V4/Charge/Authenticate/AuthenticationResult"
},
"_type":"V4/AuthenticationResponseData"
}
}