Authentication with Flex Microform Tokens
A Flex Microform token is valid for 15 minutes. After 15 minutes, a new Flex Microform
token is needed.
Setting Up Device Data Collection When Using a Flex
Microform Token
Running the Setup service identifies the customer's bank and prepares for collecting data
about the device that the customer is using to place the order. In this use case, a Flex
Microform token is used instead of the payment card data. Flex Microform tokens are only
valid for 15 minutes.
Card-Specific Requirements
Some payment cards require specific information to be collected during a
transaction.
- This field is required when the card type is Cartes Bancaires, JCB, UnionPay International, or Meeza.
Country-Specific Requirements
These fields are required for transactions in specific countries.
- For Meeza transactions, this value must be set toEGif Egypt was not set as the country in merchant configuration during merchant onboarding.
- This field is required for transactions in the US and Canada.
- This field is required when theorderInformation.billTo.countryfield value isUSorCA.
- For Meeza transactions, this value must be set toEGif Egypt was not set as the country in merchant configuration during merchant onboarding.
Endpoint
Production:
POST
https://api.cybersource.com
/risk/v1/authentication-setupsTest:
POST
https://apitest.cybersource.com
/risk/v1/authentication-setupsChecking Enrollment When Using a Flex Microform Token
Running the Check Enrollment service identifies the customer's bank and prepares for
collecting data about the device that the customer is using to place the order. In this
use case, a Flex Microform token is used instead of the payment card data. Flex
Microform tokens are only valid for 15 minutes.
Card-Specific Requirements
Some payment cards require specific information to be collected during a
transaction.
- This field is required when the card type is Cartes Bancaires, JCB, UnionPay International, or Meeza.
Country-Specific Requirements
These fields are required for transactions in specific countries.
- For Meeza transactions, this value must be set toEGif Egypt was not set as the country in merchant configuration during merchant onboarding.
- This field is required for transactions in the US and Canada.
- This field is required when theorderInformation.billTo.countryfield value isUSorCA.
- For Meeza transactions, this value must be set toEGif Egypt was not set as the country in merchant configuration during merchant onboarding.
Endpoint
Production:
POST
https://api.cybersource.com
/risk/v1/authentication-setupsTest:
POST
https://apitest.cybersource.com
/risk/v1/authentication-setupsValidating a Challenge When Using a Flex Microform Token
Running the Validation service identifies the customer's bank and prepares for collecting
data about the device that the customer is using to place the order. In this use case, a
Flex Microform token is used instead of the payment card data. Flex Microform tokens are
only valid for 15 minutes.
Card-Specific Requirements
Some payment cards require specific information to be collected during a
transaction.
- This field is required when the card type is Cartes Bancaires, JCB, UnionPay International, or Meeza.
Country-Specific Requirements
These fields are required for transactions in specific countries.
- For Meeza transactions, this value must be set toEGif Egypt was not set as the country in merchant configuration during merchant onboarding.
- This field is required for transactions in the US and Canada.
- This field is required when theorderInformation.billTo.countryfield value isUSorCA.
- For Meeza transactions, this value must be set toEGif Egypt was not set as the country in merchant configuration during merchant onboarding.
Endpoint
Production:
POST
https://api.cybersource.com
/risk/v1/authentication-setupsTest:
POST
https://apitest.cybersource.com
/risk/v1/authentication-setups