On This Page
REST API
Requesting the Validation Service
For enrolled cards, the next step is to make a back-end, server-to-server call to request
the validation service.
When you make the validation request, you must:
- Send theconsumerAuthenticationInformation.authenticationTransactionIdrequest field
- Send the credit card information including the PAN, currency, and expiration date (month and year).
The response that you receive contains the validation result.
It is recommended that you request both payer authentication and card authorization
services at the same time. When you do this, the correct information is automatically
sent to your payment processor and the values of these fields are converted to the
proper format required by your payment processor:
- E-commerce indicator:consumerAuthenticationInformation.ecommerceIndicator
- CAVV:consumerAuthenticationInformation.cavv
- AAV:consumerAuthenticationInformation.ucafAuthenticationData
If you request the services separately, you must manually include the validation result
values (Validation Check response fields) in the authorization service request (Card
Authorization request fields). To receive liability shift protection, you must ensure
that you pass all pertinent data for the card type and processor in your request.
Failure to do so may invalidate your liability shift for that transaction. Include the
electronic commerce indicator (ECI), the transaction ID (XID), the 3-D Secure version,
the directory server transaction ID, and the following card-specific information in your
authorization request:
- For Visa, American Express, JCB, Diners Club, Discover, China UnionPay, and Elo include the CAVV (cardholder authentication verification value).
- For Mastercard, include the UCAF (universal cardholder authentication field) and the collection indicator.
Identifier | Validation Check Response Field | Card Authorization Request Field |
---|---|---|
consumerAuthenticationInformation.ecommerceIndicator | ccAuthService_commerceIndicator | |
Collection indicator (Mastercard only) | consumerAuthenticationInformation.ucafCollectionIndicator | consumerAuthenticationInformation.ucafCollectionIndicator |
CAVV (Visa and
American Express only) | consumerAuthenticationInformation.cavv v | consumerAuthenticationInformation.cavv |
consumerAuthenticationInformation.ucafAuthenticationData | consumerAuthenticationInformation.ucafAuthenticationData | |
consumerAuthenticationInformation.xid | consumerAuthenticationInformation.xid | |
3-D Secure version | consumerAuthenticationStformation.specificationVersion | consumerAuthenticationInformation.paSpecificationVersion |
Directory server transaction ID (Not required for 3-D Secure 1.0.) | consumerAuthenticationInformation.directoryServerTransactionId | consumerAuthenticationInformation.directoryServerTransactionId |