Process a Card Purchase with 3D Secure 2

POST /cardpayments/v1/accounts/account_id/auths

Once the user has been authenticated and the authentication has been registered and validated on the Paysafe Group platform, you can do a regular POST request to the auths endpoint.

Your request must contain the additional JSON Authentication object.

See our full API documentation for a complete description of the parameters required for the Authorization request.

By default the card processing system will check for duplicate transactions.

Prior to trying the example, you should:

  • Replace the account number (89987201) in the URL with the test account number you received.
  • Replace the API key (after the -u) with the API key you have received.

The request contains the following parameters:

Element Child Element Type Required? Description


Yes This is the merchant reference number created by the merchant and submitted as part of the request. A unique merchant reference number must be provided for each transaction.


Yes This is the amount of the request, in minor units.


No This indicates whether the request is an Authorization (no settlement) or a Purchase (authorization and settlement). The default value is false.
card cardNum


Yes This is the card number used for the request.
cardExpiry object Yes

This is the card's expiry date. The following parameters are required:

  • month – number, length=2
  • year – number, length=4


No This is the 3- or 4-digit security code that appears on the card following the card number.
authentication eci integer Yes This is the Electronic Commerce Indicator code, which gets returned by the card issuer, indicating whether the cardholder was successfully authenticated.
cavv string
Yes This is the Cardholder Authentication Verification Value, which gets returned by the card issuer, indicating that the transaction has been authenticated.
xid string

This is the transaction identifier returned by the card issuer.

This exists only for 3DS 1.0.2.

threeDEnrollment enum No

This indicates whether or not the cardholder is enrolled in 3D Secure. Possible values are:

  • Y – Authentication is available
  • N – Cardholder is not enrolled
  • U – Authentication is unavailable

This exists only for 3DS 1.0.2.

threeDResult enum No

This indicates the outcome of the authentication. Possible values are:

  • Y – The cardholder successfully authenticated with their card issuer
  • A – The cardholder authentication was attempted
  • N – The cardholder failed to authenticate with their card issuer
  • U – Authentication with the card issuer was unavailable
  • E – An error occurred during authentication
  • R – Rejected transaction

The R value exists only for 3D Secure 2.

signatureStatus enum No

This is the 3D Secure signature verification result value. Possible values are:

  • Y – All transaction and signature checks satisfied
  • N – At least one transaction or signature check failed

This exists only for 3DS 1.0.2.

directoryServerTransactionId string

This is the unique directory server transaction ID required for Mastercard.

This is field is required when the card issuer is Mastercard. This exists only for 3D Secure 2.

threeDSecureVersion string
min=5, max=8
Yes This is the 3D secure protocol version.
billingDetails street


No This is the first line of the street address in the billing address.


No This is the city in the billing address.
state string
No This is the state/province in the billing address.
country string
No This is the country in the billing address.
zip string
No This is the zip/postal code in the billing address.

The status is set to COMPLETED and the value for availableToSettle is 0 because the card was automatically charged as part of the request, since settleWithAuth was set to true. You can look up the transaction at any future time using either the merchantRefNum or the id returned in the response.

The response parameters not contained in the request are described below:

Element Child Element Type Description
links array of link objects

Contains a self link which can be used to fetch details about the authorization.

Contains a settlement link which can be used to fetch details about the settlement (capture).

id string
This is the ID returned in the response.


UTC date format

This is the date and time the request was processed.
status enum

The status of the authorization associated with this purchase. Possible values are:

  • RECEIVED – Our system has received the request and is waiting for the downstream processor’s response.
  • COMPLETED – The transaction has been completed.
  • HELD – The transaction has been placed on hold due to risk considerations.
  • FAILED – The transaction failed, due to an error or being declined.
  • CANCELLED – The request has been fully reversed.
availableToSettle integer
This is the amount of the Authorization remaining to settle, in minor units.
card type enum

This is the type of card used in the request. Possible values are:

  • AM – American Express
  • DC – Discover
  • JC – JCB
  • MC – Mastercard
  • MD – Maestro
  • SO – Solo
  • VI – Visa
  • VD – Visa Debit
  • VE – Visa Electron


This is the last four digits of the card used for the request.
Did you find this page useful?