|
When generating the security signature, create a comma-separated name=value string of the POST fields that are included in the signed_field_names field. The ordering of the fields in the string is critical to the signature generation process. For example:
|
|
Table 6
|
|
■
|
true: Customer can update details.
|
|
■
|
false: Customer cannot update details.
|
|
■
|
0: Preauthorization
|
|
■
|
1: Final authorization
|
|
■
|
AUTOCAPTURE: Automatic capture.
|
|
■
|
STANDARDCAPTURE: Standard capture.
|
|
■
|
verbal: Forced capture.
|
Set this field to AUTOCAPTURE and include it in a bundled request to indicate that you are requesting an automatic capture. If your account is configured to enable automatic captures, set this field to STANDARDCAPTURE and include it in a standard authorization or bundled request to indicate that you are overriding an automatic capture.
|
■
|
true: Bill payment or loan payment.
|
|
■
|
false (default): Not a bill payment or loan payment.
|
Example 12345-6789
Example A1B 2C3
|
■
|
CR: Credit card
|
|
■
|
DB: Debit card
|
|
■
|
CH: Checking account
|
|
■
|
CR: Credit card account
|
|
■
|
SA: Savings account
|
001: Visa
002: Mastercard
003: American Express
004: Discover
006: Carte Blanche
007: JCB
014: EnRoute
021: JAL
024: Maestro UK Domestic
031: Delta
033: Visa Electron
034: Dankort
036: Cartes Bancaires
037: Carta Si
042: Maestro International
043: GE Money UK card
050: Hipercard (sale only)
054: Elo
055: Private Label
|
■
|
0: Card type selected by default acquirer settings.
|
|
■
|
1: Card type selected by cardholder.
|
In your request, send either the complete route or the individual legs (journey_leg#_orig and journey_leg#_dest). If you send all the fields, the value of complete_route takes precedence over that of the journey_leg# fields.
|
■
|
false: The customer did not accept.
|
|
■
|
true: The customer did accept.
|
|
■
|
true: Customer browser accepts cookies.
|
|
■
|
false: Customer browser does not accept cookies.
|
|
■
|
true: Customer requested gift wrapping.
|
|
■
|
false: Customer did not request gift wrapping.
|
|
■
|
false (default): Not a loan payment.
|
|
■
|
true: Loan payment.
|
If you include this field in your request then you must also include the driver_license_state field.
Value: install
|
■
|
|
■
|
C: Checking
|
|
■
|
S: Savings (USD only)
|
|
■
|
X: Corporate checking (USD only)
|
|
■
|
G: General Ledger
|
|
■
|
|
■
|
If the currency being used is CAD, the maximum length of the routing number is 8 digits.
If the currency being used is USD, the maximum length of the routing number is 9 digits.
|
■
|
|
■
|
CCD: Corporate cash disbursement—charge or credit against a business checking account. You can use one-time or recurring CCD transactions to transfer funds to or from a corporate entity. A standing authorization is required for recurring transactions.
|
|
■
|
PPD: Prearranged payment and deposit entry—charge or credit against a personal checking or savings account. You can originate a PPD entry only when the payment and deposit terms between you and the customer are prearranged. A written authorization from the customer is required for one-time transactions and a written standing authorization is required for recurring transactions.
|
|
■
|
TEL: Telephone-initiated entry—one-time charge against a personal checking or savings account. You can originate a TEL entry only when there is a business relationship between you and the customer or when the customer initiates a telephone call to you. For a TEL entry, you must obtain an authorization from the customer over the telephone.
|
|
■
|
WEB: Internet-initiated entry—charge against a personal checking or savings account. You can originate a one-time or recurring WEB entry when the customer initiates the transaction over the Internet. You must obtain an authorization from the customer over the Internet.
|
|
■
|
|
■
|
Important To prevent data tampering CyberSource recommends that you include this field within the signed_field_names field when generating a signature.
|
■
|
|
■
|
Important To prevent data tampering CyberSource recommends that you include this field within the signed_field_names field when generating a signature.
|
■
|
B: Biweekly
|
|
■
|
M: Monthly
|
|
■
|
W: Weekly
|
|
■
|
1: Merchant-funded installment plan
|
|
■
|
2: Issuer-funded installment plan
|
Installment number when making payments in installments. Used along with installment_total_count to keep track of which payment is being processed. For example, the second of 5 payments would be passed to CyberSource as installment_sequence = 2 and installment_total_count = 5.
If you include this field, you must also include the line_item_count field.
Note This field is required when the item_#_code value is not default or relating to shipping or handling.
If you include this field, you must also include the line_item_count field.
|
■
|
ADT: Adult
|
|
■
|
CNN: Child
|
|
■
|
INF: Infant
|
|
■
|
YTH: Youth
|
|
■
|
STU: Student
|
|
■
|
SCR: Senior Citizen
|
|
■
|
MIL: Military
|
|
■
|
|
■
|
Note This field is required when the item_#_code value is not default or relating to shipping or handling.
If you include this field, you must also include the line_item_count field.
|
■
|
|
■
|
If you include this field, you must also include the line_item_count field.
Tax amount to apply to the line item. # can range from 0 to 199. This value cannot be negative. The tax amount and the offer amount must be in the same currency.
If you include this field, you must also include the line_item_count field.
You must include either this field or the amount field in the request.
If you include this field, you must also include the line_item_count field.
Airport code for the destination leg of the trip designated by the pound (#) symbol in the field name. A maximum of 30 legs can be included in the request. This code is usually three digits long, for example: SFO = San Francisco. Do not use the colon (:) or the hyphen (-). For a complete list of airport codes, see IATA’s City Code Directory.
In your request, send either the complete_route field or the individual legs (journey_leg#_orig and journey_leg#_dest). If you send all the fields, the complete route takes precedence over the individual legs.
Airport code for the origin leg of the trip designated by the pound (#) symbol in the field name. A maximum of 30 legs can be included in the request. This code is usually three digits long, for example: SFO = San Francisco. Do not use the colon (:) or the hyphen (-). For a complete list of airport codes, see IATA’s City Code Directory.
In your request, send either the complete_route field or the individual legs (journey_leg#_orig and journey_leg#_dest). If you send all the fields, the complete route takes precedence over the individual legs.
|
■
|
|
■
|
|
■
|
|
■
|
|
■
|
|
■
|
|
■
|
|
■
|
|
■
|
|
■
|
Required when the jpo_payment_method value is 4 and the currency type is JPY.
|
■
|
1: Single payment
|
|
■
|
2: Bonus payment
|
|
■
|
4: Installment payment
|
|
■
|
5: Revolving repayment
|
Optional fields that you can use to store information (see Custom Email Receipt). # can range from 1 to 100.
Merchant defined data fields 1 to 4 are stored against the payment token and are used for subsequent token based transactions. Merchant-defined data fields 5 to 100 are passed trough to Decision Manager as part of the initial payment request and are not stored against the payment token.
For example, if the customer is 2 hours ahead, the value is 120; if 2 hours behind, then -120; if UTC, the value is 0.
|
■
|
include_authorization: The PayPal order is created and authorized.
|
|
■
|
exclude_authorization: The PayPal order is created but not authorized.
|
|
■
|
01: No preference
|
|
■
|
02: No challenge request
|
|
■
|
03: Challenge requested (3D Secure requestor preference)
|
|
■
|
04: Challenge requested (mandate)
|
|
■
|
|
■
|
|
■
|
01: Merchandise available
|
|
■
|
02: Future availability
|
Note This field is required for recurring transactions. If recurring_frequency and recurring_number_of_installments are included in the request, Secure Acceptance will automatically populate this field. Specify a value to override this logic.
Note This field is required for recurring transactions. If recurring_frequency is included in the request, Secure Acceptance will automatically populate this field. Specify a value to override this logic.
|
■
|
01: First time ordered
|
|
■
|
02: Reordered
|
|
■
|
-1: Guest account
|
|
■
|
0: First used during this transaction
|
|
■
|
M: MOTO (Mail Order Telephone Order)
|
|
■
|
R: Retail
|
|
■
|
S: E-commerce
|
|
■
|
P: Mobile Device
|
|
■
|
T: Tablet
|
|
■
|
|
■
|
|
■
|
|
■
|
true (default): Automatically renew.
|
|
■
|
false: Do not automatically renew.
|
|
■
|
weekly: Every 7 days.
|
|
■
|
bi-weekly: Every 2 weeks.
|
|
■
|
quad-weekly: Every 4 weeks.
|
|
■
|
|
■
|
semi-monthly: Twice every month (1st and 15th).
|
|
■
|
semi-annually: Twice every year.
|
|
■
|
|
■
|
261: Weekly
|
|
■
|
130: Bi-weekly
|
|
■
|
65: Quad-weekly
|
|
■
|
60: Monthly
|
|
■
|
120: Semi-monthly
|
|
■
|
20: Quarterly
|
|
■
|
10: Semi-annually
|
|
■
|
5: Annually
|
|
■
|
|
■
|
Example 12345-6789
Example A1B 2C3
State or province of shipping address. Use the two-character ISO state and province codes.
|
■
|
sameday: Courier or same-day service
|
|
■
|
oneday: Next day or overnight service
|
|
■
|
twoday: Two-day service
|
|
■
|
threeday: Three-day service
|
|
■
|
lowcost: Lowest-cost service
|
|
■
|
pickup: Store pickup
|
|
■
|
other: Other shipping method
|
|
■
|
none: No shipping method
|
Merchant-generated Base64 signature. This is generated using the signing method for the access_key field supplied.
The date and time that the signature was generated. Must be in UTC Date & Time format. This field is used to check for duplicate transaction attempts.
Your system time must be accurate to avoid payment processing errors related to the signed_date_time field.
All request fields should be signed to prevent data tampering, with the exception of the card_number field and the signature field.
|
■
|
true: Skip the preauthorization check.
|
|
■
|
false: Perform the preauthorization check.
|
Indicates whether to skip the BIN lookup service. See BIN Lookup. This field can contain one of the following values:
|
■
|
|
■
|
Indicates whether to skip Decision Manager. See Using Decision Manager. This field can contain one of the following values:
|
■
|
true: Decision Manager is not enabled for this transaction and the device fingerprint ID will not be displayed.
|
|
■
|
Important To prevent data tampering CyberSource recommends that you include this field within the signed_field_names field for generating a signature.
|
■
|
Unique merchant-generated identifier. Include with the access_key field for each transaction. This identifier must be unique for each transaction. This field is used to check for duplicate transaction attempts.