On This Page
REST API

Requesting the Validation Service

For enrolled cards, the next step is to make a back-end, server-to-server call to request the validation service.
When you make the validation request, you must:
  • Send the
    consumerAuthenticationInformation.authenticationTransactionId
     request field
  • Send the credit card information including the PAN, currency, and expiration date (month and year).
The response that you receive contains the validation result.
It is recommended that you request both payer authentication and card authorization services at the same time. When you do this, the correct information is automatically sent to your payment processor and the values of these fields are converted to the proper format required by your payment processor:
  • E-commerce indicator:
    consumerAuthenticationInformation.ecommerceIndicator
  • CAVV:
    consumerAuthenticationInformation.cavv
  • AAV:
    consumerAuthenticationInformation.ucafAuthenticationData
  • XID:
    consumerAuthenticationInformation.xid
     and
    consumerAuthenticationInformation.xid
If you request the services separately, you must manually include the validation result values (Validation Check response fields) in the authorization service request (Card Authorization request fields). To receive liability shift protection, you must ensure that you pass all pertinent data for the card type and processor in your request. Failure to do so may invalidate your liability shift for that transaction. Include the electronic commerce indicator (ECI), the transaction ID (XID), the 3-D Secure version, the directory server transaction ID, and the following card-specific information in your authorization request:
  • For Visa, American Express, JCB, Diners Club, Discover, China UnionPay, and Elo include the CAVV (cardholder authentication verification value).
  • For Mastercard, include the UCAF (universal cardholder authentication field) and the collection indicator.
Validation Check and Response Fields
Identifier
Validation Check Response Field
Card Authorization Request Field
consumerAuthenticationInformation.ecommerceIndicator
ccAuthService_commerceIndicator
Collection indicator (Mastercard only)
consumerAuthenticationInformation.ucafCollectionIndicator
consumerAuthenticationInformation.ucafCollectionIndicator
CAVV (Visa and American Express only)
consumerAuthenticationInformation.cavv
v
consumerAuthenticationInformation.cavv
AAV (Mastercard only. Known as UCAF)
consumerAuthenticationInformation.ucafAuthenticationData
consumerAuthenticationInformation.ucafAuthenticationData
consumerAuthenticationInformation.xid
consumerAuthenticationInformation.xid
3-D Secure version
consumerAuthenticationStformation.specificationVersion
consumerAuthenticationInformation.paSpecificationVersion
Directory server transaction ID
(Not required for 3-D Secure 1.0.)
consumerAuthenticationInformation.directoryServerTransactionId
consumerAuthenticationInformation.directoryServerTransactionId