Purpose
To complete step-up authentication customer must be redirected to the issuing bank. This process is encapsulated within the redirect to stepUpUrl returned in the PA enrollment response.
Implementation
To initiate the redirect merchant must post step-up JWT to the stepUpUrl displayed in an iframe:
id="step_up_iframe" style="border: none; margin-left: auto; margin-right: auto; display: block" height="800px" width
="400px" name="stepUpIframe"
id="step_up_form" name="stepup" method="POST" target="stepUpIframe" action="https://centinelapistag.cardinalcommerce
.com/V2/Cruise/StepUp"
id="step_up_form_jwt_input" type="hidden" name="JWT" value="eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9
.eyJqdGkiOiJqdGlfNWYwODY4MDA1ZWM3NjUuMTYyNjQwMzUiLCJpYXQiOjE1OTQzODY0MzIsImlzcyI6IjViMjNmOGMwYmY5ZTJmMGQzNDdkZDViYSIsIk
9yZ1VuaXRJZCI6IjU1ZWYzZjBjZjcyM2FhNDMxYzk5YjQzOCIsIlJldHVyblVybCI6Imh0dHA6XC9cL2xvY2FsaG9zdDo4MDgyXC9tZlwvcmVkaXJlY3Quc
GhwIiwiUmVmZXJlbmNlSWQiOiI3OGVlYTM3Zi01OTE0LTRiZmUtYTNiMy1lMzMzNGRiYmU3NDciLCJQYXlsb2FkIjp7IkFDU1VybCI6Imh0dHBzOlwvXC8w
bWVyY2hhbnRhY3NzdGFnLmNhcmRpbmFsY29tbWVyY2UuY29tXC9NZXJjaGFudEFDU1dlYlwvY3JlcS5qc3AiLCJQYXlsb2FkIjoiZXlKdFpYTnpZV2RsVkh
sd1pTSTZJa05TWlhFaUxDSnRaWE56WVdkbFZtVnljMmx2YmlJNklqSXVNUzR3SWl3aWRHaHlaV1ZFVTFObGNuWmxjbFJ5WVc1elNVUWlPaUpoWVdWbU16Y3
lZaTAyWXpZd0xUUXdOVFV0WVdRNE55MDBPVEUyTmpNM1pEVTNZemNpTENKaFkzTlVjbUZ1YzBsRUlqb2lZV1UyT0RsaFl6RXROVEprWkMwMFpqRmlMVGs1T
W1RdFpHTmpNRGxsWVdZMFpXUmxJaXdpWTJoaGJHeGxibWRsVjJsdVpHOTNVMmw2WlNJNklqQXlJbjAiLCJUcmFuc2FjdGlvbklkIjoiWlFpZUFFMzBsWFhs
SDdBTmhzRTAifSwiT2JqZWN0aWZ5UGF5bG9hZCI6dHJ1ZX0.dAjB55PT-boUc0reG19HhNYO6r8u39DzT0FZ6dDHZEk"
Once customer completes the authentication Cardinal will redirect customer to ReturnUrl set in the step-up JWT, this is similar to redirect to Term URL in 3DS1. When this redirect message is received merchant can close the iframe and proceed to PA Validation.
Sequence Diagram
