• No results found

Credit Card Retrieval API Implementation Guide This guide illustrates how to implement the Credit Card Retrieval API.

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Credit Card Retrieval API Implementation Guide This guide illustrates how to implement the Credit Card Retrieval API."

Copied!
7
0
0

Loading.... (view fulltext now)

Download now ( 7 Page )

Full text

(1)

Credit Card Retrieval API

Implementation Guide

This guide illustrates how to implement the Credit Card Retrieval

API.

Copyright:

(2)

Contents

Credit Card Retrieval API Implementation Guide ... 1

Contents ... 2

Release notes ... 3

Contact ... 3

Retrieving credit card image ... 4

Retrieving credit card details ... 5

(3)

Release notes

Version Date Description

1.0.4 2014-10-07 Added unmasked retrieval of cardAccountNumber 1.0.3 2014-06-10 Updated supported cipher suites during SSL handshake 1.0.2 2014-04-23 Added supported cipher suites during SSL handshake (TLS

required)

1.0.1 2014-01-14 Changed location of API credentials due to redesigned merchant backend

1.0.0 2013-12-17 Initial release

Contact

If you have any questions regarding our implementation guide please contact Jumio Customer Service at support@jumio.com or https://support.jumio.com. The Jumio online helpdesk contains a wealth of information regarding our service including demo videos, product descriptions, FAQs and other things that may help to get you started with Jumio. Check it out at: https://support.jumio.com.

(4)

Retrieving credit card image

By calling the RESTful HTTP GET API below you receive the masked credit card image of a successful scan by specifying the Jumio scan reference as a path parameter.

To receive the unmasked image, append the query parameter maskhint=unmasked. By default, retrieval of unmasked images is disabled (HTTP status code 403 Forbidden). If you want to enable it please contact support@jumio.com. Retrieving unmasked images might impose additional security requirements on your systems depending if you already

store/transmit/process credit card data on your systems1.

REST URL:https://netswipe.com/api/netswipe/v1/scans/<scanReference>/images/front

Authentication: The API call is protected. To access it, use HTTP Basic Authentication with your merchant API token as the "userid" and your API secret as the "password". Log into

https://netswipe.com, and you can find your merchant API token and API secret on the "Settings" page under "API credentials".

Header: The following parameter is mandatory in the "header" section of your request.

User-Agent: YOURCOMPANYNAME YOURAPPLICATIONNAME/VERSION(e.g. MyCompany MyApp/1.0.0) SSL handshake: The TLS protocol is required (see Supported cipher suites chapter) and we strongly recommend using the latest version.

Note: Calls with missing or suspicious headers, suspicious parameter values, or without HTTP Basic Authentication will result in HTTP status code 403 Forbidden.

Request parameters

Note: Mandatory parameters are highlighted.

Parameter Type Max. length Description

scanReference (path parameter)

String 36 Jumio’s reference number of an existing scan from your account

maskhint

(query parameter)

String Possible values:

 masked (default)  unmasked

Response

You receive a JPEG image in case of success, or HTTP status code 404Not Found if the scan or the image is not available, which may take up to 5 minutes.

1 In case you are unsure about the ramifications of retrieving unmasked images regarding PCI DSS please refer to "Information Supplement: PCI DSS E-commerce Guidelines, version 2.0, January 2013" and/or contact your acquirer and/or contact a PCI DSS QSA (Qualified Security Assessor).

(5)

Sample request

GET https://netswipe.com/api/netswipe/v1/scans/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/images/front HTTP/1.1

User-Agent: YOURCOMPANYNAME YOURAPPLICATIONNAME/x.x.x Authorization: Basic

Retrieving credit card details

By calling the RESTful HTTP GET API below you receive the credit card data of successful scans by specifying the Jumio scan reference as a path parameter.

To receive unmasked card details, append the query parameter maskhint=unmasked. By

default, retrieval of unmasked credit card details is disabled (HTTP status code 403 Forbidden). If you want to enable it please contact support@jumio.com. Retrieving

unmasked credit card details might impose additional security requirements on your systems depending if you already store/transmit/process credit card data on your systems2.

REST URL:https://netswipe.com/api/netswipe/v1/scans/<scanReference>/creditCard

Authentication: The API call is protected. To access it, use HTTP Basic Authentication with your merchant API token as the "userid" and your API secret as the "password". Log into

https://netswipe.com, and you can find your merchant API token and API secret on the "Settings" page under "API credentials".

Header: The following parameters are mandatory in the "header" section of your request.

 Accept: application/json

 User-Agent: YOURCOMPANYNAME YOURAPPLICATIONNAME/VERSION

(e.g. MyCompany MyApp/1.0.0)

SSL handshake: The TLS protocol is required (see Supported cipher suites chapter) and we strongly recommend using the latest version.

Note: Calls with missing or suspicious headers, suspicious parameter values, or without HTTP Basic Authentication result in HTTP status code 403 Forbidden.

Request parameter

Note: Mandatory parameters are highlighted.

Parameter Type Max. length Description

scanReference (path parameter)

String 36 Jumio’s reference number of an existing scan from your account

maskhint String Possible values:

2 In case you are unsure about the ramifications of retrieving unmasked images regarding PCI DSS please refer to "Information Supplement: PCI DSS E-commerce Guidelines, version 2.0, January 2013" and/or contact your acquirer and/or contact a PCI DSS QSA (Qualified Security Assessor).

(6)

(query parameter)  masked (default)  unmasked

Response parameters

You receive a JSON response in case of success, or HTTP status code 404 Not Found if the scan or the credit card data is not available, which may take up to 5 minutes.

Note: Mandatory JSON parameters are highlighted.

Parameter Type Max. length Description

jumioRequestReference String 36 Jumio’s reference number for each scan

cardNumber String 19 If maskhint = masked (default):

 First 6 and last 4 digits of the credit card number, other digits are masked with "x" If maskhint = unmasked:

 Full credit card number cardExpiryMonth Number Min. value: 1

Max. value: 12

Month card expires

cardExpiryYear Number 4 Year card expires in the format "YY"

cardHolderName String 100 Name of the credit card holder in capital letters cardSortCode String 8 Sort code in the format "xx-xx-xx"

cardAccountNumber String 8 If maskhint = masked (default):

 Last two digits of the account number, other digits masked with "x"

If maskhint = unmasked:  Full account number

Sample request

GET https://netswipe.com/api/netswipe/v1/scans/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/creditCard HTTP/1.1

Accept: application/json

User-Agent: YOURCOMPANYNAME YOURAPPLICATIONNAME/x.x.x Authorization: Basic Sample response { "cardExpiryMonth":"1", "cardExpiryYear":"2022", "cardNumber":"123456xxxxxx1234", "jumioRequestReference":"xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx" }

(7)

Supported cipher suites

The following cipher suites (listed in server-preferred order) are supported by Jumio during the SSL handshake:

 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256

 TLS_DHE_RSA_WITH_AES_128_CBC_SHA256

 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384

 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256

 TLS_RSA_WITH_AES_256_GCM_SHA384

 TLS_RSA_WITH_AES_256_CBC_SHA256

 TLS_RSA_WITH_AES_128_GCM_SHA256

 TLS_RSA_WITH_AES_128_CBC_SHA256

 TLS_DHE_RSA_WITH_AES_128_CBC_SHA

 TLS_DHE_RSA_WITH_AES_256_CBC_SHA

 TLS_RSA_WITH_AES_128_CBC_SHA

 TLS_RSA_WITH_RC4_128_SHA

References

Download now ( PDF - 7 Page - 283.04 KB )

Related documents

Continental weathering and redox conditions during the early Toarcian Oceanic Anoxic Event in the northwestern Tethys: Insight from the Posidonia Shale section in the Swiss Jura Mountains

elegans falciferum commune A-subzone falciferum A-Zone Unterer Stein Homogene Kalkbänke Oberer Stein Monotisbank Spinatumbank bifrons ten Rietheim Early T oarcian Stage Pliens.

Dynamic Business Process Management based on Process Change Patterns

We have reviewed several issues on managing process versions and proposed a new version management method for managing process changes more flexibly based on the business

Guide to Credit Card Processing

In the Select Payments for Customer Refund dialog, mark the checkbox for the payments to include in the transaction, select the applicable credit card from the Refund Type column,

Review on Climate Change Adaptation and Mitigation Mechanisms in Ethiopia

Three levels of the spatial scales for climate change adaptation, identified by Smit and Pilifosova (2001), are:- Global level (cooperation between industrialized

How to Write a Script Outline _ the 8 Essential Plot Points

Reply   Link

How To Use The Concur Credit Card On A Credit Card With A Creditcard On A Balance Card On An Account Card On The Credit Card (For A Credit Union)

If you require the account to be changed, firstly, click on ‘Allocate’ within the expense screen as shown below2. The ‘Allocations for Report’ screen will then

Server-to-Server Credit Card Implementation Guide

If the 3D Secure program is not enabled on the merchant account (for example MOTO merchants) or the buyer is not enrolled in the 3D Secure program (for example Diners and

Credit Card Services REST API HSBC. Developer Guide

Relaxed Requirements for Address Data and Expiration Date Required Features for Credit Card Processing (on page