3DS2 - Challenge authentication, without the 3DS Method
To test this scenario, use one of the card numbers below:
CARD | Expiry date | Label |
---|---|---|
4970110000000021 | To be chosen | VISA |
5100010000000049 | To be chosen | MASTERCARD |
375900000000016 | To be chosen | AMEX |
Exchange flow
1. Call to Web Service PCI/Authentication/CreateSession with an enrolled 3DS2 card.
{ "amount":"9990", "currency":"EUR", "transactionCategory":"PAYMENT", "productType":"GOODS_OR_SERVICE_PURCHASE", "merchant": { "mid":"" }, "paymentForm": { "expiryMonth":"09", "expiryYear":"22", "networkPreference":"VISA", "pan":"4970110000000021" }, "protocolRequest": { "name":"THREEDS", "version":"2", "challengePreference":"NO_PREFERENCE" }, "ianTargetUrl": "<https://merchant.ian.com>" }
Response
{
"webService":"PCI/Authentication/CreateSession",
"version":"V4",
(...)
"answer":{
"operationSessionId":"30641640cba14eab8e6766094fd201da",
"operationUrl":"https://api.scelliuspaiement.labanquepostale.fr/api-payment/V4/Charge/Public/Authenticate/Session/30641640cba14eab8e6766094fd201da;JSESSIONID=7A4beEA2d5fdbFeA7389F3B91a7bDBaBc8DA9df5.default-hostname",
"_type":"V4/PCI/Authentication/AuthenticationSessionResponse"
}
}
In the example :
answer.operationUrl
: "https://api.scelliuspaiement.labanquepostale.fr/api-payment/V4/Charge/Public/Authenticate/Session/30641640cba14eab8e6766094fd201da;JSESSIONID=7A4beEA2d5fdbFeA7389F3B91a7bDBaBc8DA9df5.default-hostname"Transmettez le champ
operationUrl
à la méthode d'authentificationkr-authenticate.js
de la librairie JS (plus d'infos : Guide d'intégration (mode simple)).
2. Redirection to the cardholder's bank's ACS.
- The JS library performs automatically all the necessary actions, without any specific development for the merchant.
3. Answer of the payment gateway server with the final authentication result.
{ "webService":"PCI/Authentication/CreateSession", "version":"V4", "applicationVersion":"5.23.0", "serverDate":"2023-05-05T09:33:32+00:00", "ticket":"3b68064f80f346919828dee761bd22b5", "applicationProvider":"", "metadata":null, "status":"SUCCESS", "mode":"TEST", "serverUrl":"https://static.scelliuspaiement.labanquepostale.fr", "_type":"V4/WebService/Response", "answer":{ "id":"292f62af-253b-40c7-aef0-7ec808d29b8d", "operationSessionId":null, "protocol":{ "name":"THREEDS", "version":"2.2.0", "network":"VISA", "challengePreference":"NO_PREFERENCE", "simulation":true, "_type":"V4/Charge/Authenticate/Protocol" }, "value":{ "authenticationType":"CHALLENGE", "authenticationId":{ "authenticationIdType":"dsTransId", "value":"a477cfe2-0bb7-4ab1-9b9d-8ce3ca93e3e2", "_type":"V4/Charge/Authenticate/AuthenticationId" }, "authenticationValue":{ "authenticationValueType":"CAVV", "value":"E+sA5+ffDssl7xW2tPgZhyoF3No=", "_type":"V4/Charge/Authenticate/AuthenticationValue" }, "status":"SUCCESS", "commerceIndicator":"05", "extension":{ "authenticationType":"THREEDS_V2", "challengeCancelationIndicator":null, "cbScore":null, "cbAvalgo":null, "cbExemption":null, "paymentUseCase":null, "threeDSServerTransID":"292f62af-253b-40c7-aef0-7ec808d29b8d", "dsTransID":"a477cfe2-0bb7-4ab1-9b9d-8ce3ca93e3e2", "acsTransID":"1abace8e-4bac-449b-bdb3-985b8ebfc286", "sdkTransID":null, "transStatusReason":null, "requestedExemption":null, "requestorName":"Lyra SMS", "cardHolderInfo":null, "dataOnlyStatus":null, "dataOnlyDecision":null, "dataOnlyScore":null, "_type":"V4/Charge/Authenticate/AuthenticationResultExtensionThreedsV2" }, "reason":{ "code":null, "message":null, "_type":"V4/Charge/Authenticate/AuthenticationResultReason" }, "_type":"V4/Charge/Authenticate/AuthenticationResult" }, "_type":"V4/AuthenticationResponseData" } }