Configuring Apple Pay Processing

A successful Apple Pay response to a payment request returns an encrypted payload that contains sensitive payment information. The payment information is extracted and decrypted using Cybersource decryption or merchant decryption.

Before you can process Apple Pay transactions, you must complete these configuration tasks:

Generating and Loading a New Certificate Signing Request: For processing Apple Pay transactions using Cybersource decryption, you must first generate an Apple Pay encryption key on the business portal and load it into the Apple development portal.; For merchant decryption, this configuration task is not needed.
Configuring Apple Pay Response Handling: After the payment token is received, the transaction is finalized when you extract and decrypt the payment data. Cybersource decryption and merchant decryption methods consist of different configuration steps.

Generating and Loading a New Certificate Signing Request

This task is required in order to process Apple Pay transactions using Cybersource decryption. It does not apply to merchant decryption.

Follow these steps in order to configure Apple Pay in the Cybersource Business Center:

Test:

businesscentertest.cybersource.com

Production:

businesscenter.cybersource.com

On the left navigation panel, click the

Payment Configuration

icon.

Click

Digital Payment Solution

. The Digital Payments page appears. If you do not have the correct permissions enabled on your account, the Digital Payment Solution option does not appear on the left navigation panel.

Click

Configure

. The Apple Pay Registration panel opens.

Enter your Apple Merchant ID.

Click

Generate New CSR

To download your CSR, click the

Download

icon next to the key.

Follow your browser's instructions to save and open the file.

Complete the enrollment process by submitting your CSR to Apple.

For information about adding certificates to your Apple Merchant ID, refer to the Apple Pay PassKit:

ADDITIONAL INFORMATION

In-App: Setting Up Apple Pay

Website: Configuring Your Environment

Test your software by following the steps in Authorization Service.

ADDITIONAL INFORMATION

If you are using a Cybersource test account, you must connect to the Apple sandbox tester account and not to the Apple production system.

After you complete your testing, you must create a new CSR for the Cybersource production system, and you must use that CSR for the Apple production system. Until you perform these steps, you cannot enable payments in your iOS application or website.

Repeat Steps 1 through 11 with your Cybersource production account and the Apple production account.

Configuring Apple Pay Processing

Configuring Apple Pay Response Handling

Configure one of the following decryption methods that will handle the response payload of a successful Apple Pay transaction.

After the payment token is received, the transaction is finalized when you extract and decrypt the payment data.

Cybersource Decryption
:

This method forwards the encrypted payment data to your order management system. Use the Cybersource API to submit the authorization request, and include the Base64-encoded value obtained from the

paymentData

object in the

encryptedPayment_data

field.

Example of Cybersourcedecryption:

session.onpaymentauthorized = function (event) {
    var paymentDataString = JSON.stringify(event.payment.token.paymentData);
    var paymentDataBase64 = btoa(paymentDataString);
}

Merchant Decryption
:

This method forwards the encrypted payment data to your order management system to decrypt. Use the Cybersource API to submit the authorization request and include the decrypted payment data.

For detailed information about decryption, see Payment Token Format Reference in the Apple Developer Center.

Configuring Apple Pay Processing