Below is a description of the variables that comprise the input API of the 3D Secure Authentication portion of the payment form. This request will be sent after the cardholder has authenticated themselves directly with their bank, and will yield a “Payment Complete” output response.
|
Variable Name |
Data Type |
Max Length |
Comments |
|
HashDigest |
A |
– |
A hashed string that contains all the variables passed and also data that is not passed but is known to both sides – namely the PreSharedKey and the gateway account password. (see section below) |
|
MerchantID |
A |
15 |
The merchant ID that was used to process the transaction |
|
CrossReference |
A |
25 |
This is the unique cross reference for this transaction. If the transaction was determined to be a duplicate transaction, this value will hold the cross reference of the previous transaction, which this transaction was deemed a duplicate of |
|
TransactionDateTime |
DT |
– |
The date & time (as seen by the merchant’s server) of the transaction. Needs to be in the form “YYYY-MM-DD HH:MM:SS +OO:OO”, with the time in 24 hour format, where OO:OO is the offset from UTC – e.g. “2008-12-01 14:12:00 +01:00” |
|
CallbackURL |
A |
– |
The URL of the page on the merchant’s site that the results of the transaction will be posted back to (see section below) |
|
PaRES |
A |
– |
The base64 encoded payment response (PaRES) string returned by the interaction with the ACS server |