eCom Payments

The Ecom Payments endpoints initiate card and wallet payment transactions, including one-off purchases, account verifications (amount = 0), and credential-on-file (COF) scenarios. Use capture_now: false to separate authorisation from capture.

For subsequent COF/recurring charges that reference previously stored credentials, use POST /api/v2/transactions/card with a stored_credential.stored_credential_type of CHARGE.

How It Works

Encrypt the card or obtain a wallet payload

Use Verifone.JS or Verifone Checkout to encrypt the card data with the public key alias obtained from Secure Card Capture. For wallet payments, obtain the encrypted payload from the Apple Pay or Google Pay frontend SDK.

Submit the payment request

POST to /api/v2/transactions/card (card/token) or /api/v2/transactions/wallet (Apple Pay / Google Pay) with the required fields. Include an idempotency key header (x-vfi-api-idempotencykey) — this must be retained to trigger a reversal if a timeout occurs.

Read the response

A 201 response returns the transaction id, status, and authorisation details. Store id, rrn, and authorization_code for reconciliation and downstream operations like capture or refund.

Always include x-vfi-api-idempotencykey on card and wallet payment requests. If the request times out, use POST /api/v2/transactions/reverse with the same key to trigger a technical reversal.

Stored Credential Business Models

The stored_credential object controls how the transaction is classified for Credential-on-File (COF) and recurring scenarios.

Online purchase without storing card details. Omit stored_credential.

Shopper Interaction: ECOMMERCE

API Reference

Initiate a payment

post

/api/v2/transactions/card

Initiate a card payment or card verification request when amount is set to 0 (zero).

Transactions business models

Business model

Transaction type

Shopper Interaction

Stored Credential Contract

Stored Credential Processing Model

Online purchase with shopper present

One-off online purchase without storing card payment details for future use.

ECOMMERCE

Online purchase with shopper present

Online purchase where shopper agrees to store card details for future use. This can be a zero-value transaction account verification.

ECOMMERCE

CREDENTIAL_ON_FILE

Online purchase with shopper present

Online purchase where shopper uses previously stored card payment details.

ECOMMERCE

ONE_CLICK

CREDENTIAL_ON_FILE

Subscriptions

Initial transaction to sign up for a subscription.

ECOMMERCE

RECURRING

Subscriptions

Subsequent subscription charge.

ECOMMERCE

MERCHANT_INITIATED

RECURRING

Non-fixed in time contracts (such as auto account top-ups)

Initial transaction to sign up for the terms and conditions of later subsequent charges.

ECOMMERCE

UNSCHEDULED_CREDENTIAL_ON_FILE

Non-fixed in time contracts (such as auto account top-ups)

Subsequent charges as described in the initial terms and conditions during the sign-up transaction.

ECOMMERCE

MERCHANT_INITIATED

UNSCHEDULED_CREDENTIAL_ON_FILE

Authorizations

AuthorizationstringRequired

Header parameters

x-vfi-api-idempotencykeystring · uuidOptional

A value you specify that uniquely identifies this transaction. This must be used to trigger a reversal if there is a timeout.

Example: 63bbc548-d2de-4546-b106-880a5018461c

Body

Responses

201

Ecommerce Payment Result

application/json

400

Bad Request

application/json

401

Unauthorised

application/json

403

Forbidden

application/json

404

Not Found

application/json

500

Internal Server Error

application/json

post

/api/v2/transactions/card

POST /oidc/api/v2/transactions/card HTTP/1.1
Host: emea.gsc.verifone.cloud
Authorization: Basic username:password
Content-Type: application/json
Accept: */*
Content-Length: 2585

{
  "payment_provider_contract": "30b8bec8-5042-4e67-939c-5453fbe41711",
  "amount": 0,
  "auth_type": "FINAL_AUTH",
  "capture_now": false,
  "customer": "0a57b387-2ba7-4f65-be2f-e176bb49d2ce",
  "customer_ip": "127.0.0.1",
  "dynamic_descriptor": "text",
  "invoice_number": "text",
  "merchant_reference": "7a1db7a8-6f24-4bc5-a51b-cef33fc05140",
  "threed_authentication": {
    "eci_flag": "02",
    "enrolled": "Y",
    "cavv": "text",
    "cavv_algorithm": "text",
    "pares_status": "A",
    "xid": "text",
    "threeds_version": "1.0.2",
    "ds_transaction_id": "text",
    "signature_verification": "Y",
    "verification": [
      "DENIED"
    ],
    "error_desc": "text",
    "error_no": "text",
    "authentication_amount": 1,
    "additional_data": {
      "total_items": 1,
      "device_channel": "SDK",
      "status_reason": "text",
      "challenge_indicator": "01",
      "challenge_cancel": "01",
      "acs_url": "text",
      "acs_operator_id": "text",
      "network_score": "20",
      "reason_code": "text",
      "reason_desc": "text"
    }
  },
  "stored_credential": {
    "stored_credential_type": "SIGNUP",
    "processing_model_details": {
      "total_payment_number": 1,
      "total_payment_amount": 1,
      "first_payment_amount": 1,
      "payment_frequency": {
        "time_unit": "DAY",
        "value": 1
      },
      "processing_model": "UNSCHEDULED_CREDENTIAL_ON_FILE",
      "merchant_signup_code": "text",
      "current_payment_number": 1,
      "amount_fixed": false
    },
    "first_payment": true,
    "scheme_reference": "text"
  },
  "customer_details": {
    "title": "text",
    "first_name": "text",
    "middle_name": "text",
    "last_name": "text",
    "company_name": "text",
    "phone_number": "text",
    "email_address": "name@gmail.com",
    "shipping": {
      "address": "3732  Metz Lane",
      "city": "West Roxbury",
      "country": "US",
      "postal_code": "1114",
      "email": "name@gmail.com",
      "first_name": "Thelma",
      "last_name": "Tatro",
      "phone": "8577532706",
      "state": "MA"
    },
    "billing": {
      "address_1": "text",
      "address_2": "text",
      "address_3": "text",
      "city": "text",
      "country": "ZZ",
      "phone": "text",
      "postal_code": "text",
      "state": "text"
    },
    "language": "text"
  },
  "shopper_interaction": "ECOMMERCE",
  "user_agent": "text",
  "sales_description": "text",
  "sca_exemption": "1",
  "currency_code": "AED",
  "card_brand": "text",
  "brand_choice": "MERCHANT",
  "credit_term": "STANDARD",
  "instalment": {
    "down_payment_amount": 1,
    "number_of_instalments": 1,
    "instalment_amount": 1
  },
  "refusal_reason": "ACQUIRER_COMMS_FAILURE",
  "encrypted_card": "U3dhZ2dlciByb2Nrcw==",
  "token_preference": {
    "token_scope": "0e48425a-f1bc-431a-b7d8-f866de8ba276",
    "reuse_token_type": "INTERNAL",
    "token_type": "REUSE",
    "token_expiry_date": "2026-06-15"
  },
  "encrypted_svc_access_code": "text",
  "public_key_alias": "text",
  "promo_code": "text",
  "promo_financing_details": {
    "promoFinancingType": "PROMO_APR",
    "promoPlan": "text",
    "promoPlanExpiry": "2026-06-15"
  },
  "purchase_order_number": "text",
  "tax_indicator": "TAX_NOT_PROVIDED",
  "receipt_type": "FULL_RECEIPT"
}

{
  "id": "76944d4b-89e6-48d2-ac04-675383c3eedf",
  "payment_provider_contract": "30b8bec8-5042-4e67-939c-5453fbe41711",
  "amount": 0,
  "blocked": true,
  "created_at": "2026-06-15T14:21:32.237Z",
  "customer": "text",
  "merchant_reference": "text",
  "payment_product": "text",
  "payment_product_type": "text",
  "processor_reference": "text",
  "processor_details": {},
  "status": "AUTHORIZED",
  "status_reason": "text",
  "customer_details": {
    "title": "text",
    "first_name": "text",
    "middle_name": "text",
    "last_name": "text",
    "company_name": "text",
    "phone_number": "text",
    "email_address": "name@gmail.com",
    "shipping": {
      "address": "3732  Metz Lane",
      "city": "West Roxbury",
      "country": "US",
      "postal_code": "1114",
      "email": "name@gmail.com",
      "first_name": "Thelma",
      "last_name": "Tatro",
      "phone": "8577532706",
      "state": "MA"
    },
    "billing": {
      "address_1": "text",
      "address_2": "text",
      "address_3": "text",
      "city": "text",
      "country": "ZZ",
      "phone": "text",
      "postal_code": "text",
      "state": "text"
    },
    "language": "text"
  },
  "arn": "text",
  "authorization_code": "5B1D4C",
  "avs_result": "A",
  "card": "text",
  "created_by": "text",
  "cvv_present": true,
  "cvv_result": "1",
  "cavv_result": "99",
  "invoice_number": "text",
  "stored_credential": {
    "reference": "text",
    "stored_credential_type": "text",
    "scheme_reference": "text",
    "processing_model": "UNSCHEDULED_CREDENTIAL_ON_FILE"
  },
  "details": {
    "auto_capture": true,
    "mid": "363162200000049"
  },
  "reason_code": "text",
  "rrn": "200211654321",
  "shopper_interaction": "ECOMMERCE",
  "stan": "text",
  "threed_authentication": {
    "eci_flag": "02",
    "enrolled": "Y",
    "cavv": "text",
    "cavv_algorithm": "text",
    "pares_status": "A",
    "xid": "text",
    "threeds_version": "1.0.2",
    "ds_transaction_id": "text"
  },
  "reversal_status": "NONE",
  "geo_location": [
    "52.370216",
    "4.895168"
  ],
  "city": "West Roxbury",
  "country_code": "US",
  "additional_data": {
    "acquirer_response_code": "0000",
    "acquirer_response_message": "text",
    "acquirer_authorizing_network_id": "text",
    "acquirer_authorizing_network_id_descriptor": "text",
    "settlement_date": "2026-06-15",
    "issuer_receipt_text": "text"
  },
  "token_details": {
    "reuse_token": "text",
    "reuse_token_type": "CHASE",
    "analytics_token": "text",
    "token_expiry_date": "2026-06-15",
    "token_scope": "123e4567-e89b-12d3-a456-426614174000",
    "token_status": "DELETED",
    "created_at": "2026-06-15",
    "updated_at": "2026-06-15",
    "variant": "NEW_WORLD",
    "type": "CREDIT",
    "issuer_name": "HSBC",
    "issuer_country": "ZZZ",
    "brand": "VISA",
    "expiry_year": 2021,
    "expiry_month": 12,
    "card_holder_name": "MR J HOLDER",
    "last_four": "3127",
    "bin": "492912",
    "currency_code": "AED"
  },
  "promo_code": "text",
  "promo_financing_result": {
    "promoFinancingType": "PROMO_APR",
    "promoAnnualPercentageRateType": "FIXED",
    "promoAnnualPercentageRate": 1,
    "annualPercentageRateType": "FIXED",
    "annualPercentageRate": 1,
    "promoDurationDescription": "text",
    "promoDescription": "text"
  },
  "purchase_order_number": "text",
  "issuer_instalment_result": {
    "instalment_program": "MCINST",
    "payment_option": "FULL",
    "payment_plan_option": [
      {
        "number_of_instalments": 1,
        "first_instalment_amount": 1,
        "instalment_amount": 1,
        "interest_rate": 1,
        "annual_percentage_rate": 1,
        "handling_fee": 1,
        "total_amount_with_cost": 1
      }
    ],
    "number_of_instalments": 1,
    "min_number_of_instalments": 1,
    "max_number_of_instalments": 1,
    "interest_rate": 1,
    "annual_percentage_rate": 1,
    "handling_fee": 1,
    "down_payment_amount": 1,
    "instalment_amount": 1,
    "total_amount_with_cost": 1
  },
  "balance_amount": 1
}

The wallet endpoint accepts Google Pay and Apple Pay payloads. The sca_compliance_level field controls whether an additional 3DS step is triggered.

To start an Apple Pay payment session before submitting the wallet transaction, call POST /api/v2/apple-pay/validation first to obtain a merchant session object from Apple.

Initiate a wallet payment using Google Pay or Apple Pay

post

/api/v2/transactions/wallet

Initiate a card payment or card verification request when amount is set to 0 (zero).

Transactions business models

Business model

Transaction type

Shopper Interaction

Stored Credential Contract

Token Preference or Reference

Stored Credential Request Type

Stored Credential Processing Model

Online purchase with shopper present

One-off online purchase without storing card payment details for future use.

ECOMMERCE

Online purchase with shopper present

Online purchase where shopper agrees to store card details for future use. This can be a zero-value transaction account verification.

ECOMMERCE

REUSE

SIGNUP

NONE

Subscriptions

Initial transaction to sign up for a subscription.

ECOMMERCE

REUSE or reuse_token

SIGNUP

RECURRING

Non-fixed in time contracts (such as auto account top-ups)

Initial transaction to sign up for the terms and conditions of later subsequent charges.

ECOMMERCE

REUSE

SIGNUP

NONE

Note: To initiate a transaction with reference to previously stored credentials ( `CHARGE` ) use ``/v2/transactions/card`` endpoint instead.

Authorizations

AuthorizationstringRequired

Header parameters

x-vfi-api-idempotencykeystring · uuidOptional

A value you specify that uniquely identifies this transaction. This must be used to trigger a reversal if there is a timeout.

Example: 63bbc548-d2de-4546-b106-880a5018461c

Body

payment_provider_contractstring · uuid-flexibleRequired

The identifier of payment provider contract you want to process the transaction request with.

Example: 30b8bec8-5042-4e67-939c-5453fbe41711

amountintegerRequired

Amount is charged without a decimal place e.g. $1.5 = 150. Currencies can have different decimals/exponentials, see Currencies Section for more details. For Account Verification transactions, provide 0 as value for this field.

Example: 0

auth_typestring · enumOptional

Flags a payment request for either pre-authorization or final authorization.

PRE_AUTH is used when the authorized amount is unknown and can be adjusted later.
FINAL_AUTH is used when a final authorized amount is known and the transaction will definitely be captured in whole.

Default: FINAL_AUTHPossible values:

capture_nowbooleanOptional

Whether auto-capture or not. Setting the value to 'false' will only authorize the transaction.

Default: trueExample: false

customerstring · uuid-flexibleOptional

The ID of a customer.

Example: 0a57b387-2ba7-4f65-be2f-e176bb49d2ce

customer_ipone of · max: 15Optional

The IP Address of the customer where the transaction was initiated.

Example: 127.0.0.1

string · ipv4Optional

string · ipv6Optional

dynamic_descriptorstring · max: 25Optional

A short descriptor to be shown on bank statement of the customer. Please refer to the integration guide for the format requirements.

merchant_referencestring · max: 50Optional

A reference specified by the merchant to identify the transaction.

Example: 7a1db7a8-6f24-4bc5-a51b-cef33fc05140

receipt_typestring · enumOptional

Defines the type of receipt to be generated

Possible values:

shopper_interactionstring · enumOptional

Determines the sales channel the shopper gives their card details through:

ECOMMERCE Online transactions where the cardholder is present.
MAIL order transactions where the shopper is in contact with the merchant via email.
TELEPHONE order transactions where the shopper is in contact with the merchant via telephone.

Default: ECOMMERCEExample: ECOMMERCEPossible values:

user_agentstring · max: 256Optional

The full user agent string of the device the customer used to submit the transaction.

sales_descriptionstring · max: 200Optional

A reference used by the merchant to typically capture a description of the service provided. It could then be used by the merchant to help locate transactions. One could envision a situation where a merchant is trying to locate a transaction/ receipt but in speaking with the customer, the only (or at least a predominant) detail is what service was rendered

sca_exemptionstring · enumOptional

Use this field to request your transaction to be exempted from the application of the Strong Customer Authentication (SCA). Be advised that the use of this field may result to your liability in case of fraudulent transaction.

Possible Values:

1 - Low value payment

2 - Acquirer Transaction Risk Analysis

3 - Trusted beneficiary exemption

4 - Secure Corporate Payment (SCP) exemption

5 - Merchant Initiated Transaction

6 - SCA Delegation

Possible values:

currency_codestring · enumRequired

Three-letter ISO 4217 alphabetical currency code. e.g. USD.

Values correspond to ISO 4217.

Possible values:

card_brandstringOptional

Represents a Card type or brand. It should correspond to a consistent name, the list of standard names is as follows:

Value	Description
AMEX	American Express
CB	Carte Bancaires
DINERS	Diners Club International
DISCOVER	Diners Club Discover
JCB	Japan Credit Bureau
MAESTRO	Multi-national Debit (MasterCard)
MASTERCARD	MasterCard
VISA	Visa
UPI	Union Pay International
GIFT_CARD	Gift Card (Generic)
PLCC	Private Label Credit Card
Other local schemes as applicable. Enter a pre-defined name to represent the scheme or type.
Note: 1. For gift cards, card brand is mandatory and the value should be GIFT_CARD.

This parameter is mandatory for dual branded cards.

encrypted_cvvstringOptional

This is an optional field that is only supported with reuse_token or stored_credentials.reference.

brand_choicestring · enumOptional

For dual-branded cards identifies whether selection is made by a cardholder or merchant.

Default: MERCHANTPossible values:

refusal_reasonstring · enumOptional

The reason a transaction has been refused within the payment ecosystem by the client/Verifone/acquirer. This needs to be set by the component that is refusing this transaction request.

Possible values:

wallet_typestring · enumRequiredPossible values:

wallet_payloadobjectRequired

The encrypted payload object provided by the Wallet on the frontend

sca_compliance_levelstring · enumOptional

Determines if 3ds is needed:

sca_compliance_level	WalletPayload authMethod	Additional 3ds
NONE	N/A	NO
WALLET	PAN_ONLY	YES
WALLET	3DS_CRYPTOGRAM	NO
FORCE_3DS	N/A	YES

Default: WALLETPossible values:

promo_codestringOptional

A code defined by the merchant that affects the calculation of the total amount.

purchase_order_numberstring · max: 17Optional

The purchase order number. It can be provided in transactions with purchase or procurement cards for the cardholder to get better interchange rates (note that this functionality needs alignment with the acquirer and the scheme). This field is part of so-called Level 2 data.

tax_indicatorstring · enumOptional

This field indicates the taxable status of the transaction (if any of the purchased items are taxable). This field is part of so-called Level 2 data. If the value TAX_PROVIDED is sent, tax_amount should also be provided

Default: TAX_NOT_PROVIDEDPossible values:

Responses

201

Wallet Result

application/json

400

Bad Request

application/json

401

Unauthorised

application/json

403

Forbidden

application/json

404

Not Found

application/json

500

Internal Server Error

application/json

post

/api/v2/transactions/wallet

POST /oidc/api/v2/transactions/wallet HTTP/1.1
Host: emea.gsc.verifone.cloud
Authorization: Basic username:password
Content-Type: application/json
Accept: */*
Content-Length: 2580

{
  "payment_provider_contract": "30b8bec8-5042-4e67-939c-5453fbe41711",
  "amount": 0,
  "auth_type": "FINAL_AUTH",
  "capture_now": false,
  "customer": "0a57b387-2ba7-4f65-be2f-e176bb49d2ce",
  "customer_ip": "127.0.0.1",
  "dynamic_descriptor": "text",
  "merchant_reference": "7a1db7a8-6f24-4bc5-a51b-cef33fc05140",
  "threed_authentication": {
    "eci_flag": "02",
    "enrolled": "Y",
    "cavv": "text",
    "cavv_algorithm": "text",
    "pares_status": "A",
    "xid": "text",
    "threeds_version": "1.0.2",
    "ds_transaction_id": "text",
    "signature_verification": "Y",
    "verification": [
      "DENIED"
    ],
    "error_desc": "text",
    "error_no": "text",
    "authentication_amount": 1,
    "additional_data": {
      "total_items": 1,
      "device_channel": "SDK",
      "status_reason": "text",
      "challenge_indicator": "01",
      "challenge_cancel": "01",
      "acs_url": "text",
      "acs_operator_id": "text",
      "network_score": "20",
      "reason_code": "text",
      "reason_desc": "text"
    }
  },
  "stored_credential": {
    "stored_credential_type": "SIGNUP",
    "processing_model_details": {
      "total_payment_number": 1,
      "total_payment_amount": 1,
      "first_payment_amount": 1,
      "payment_frequency": {
        "time_unit": "DAY",
        "value": 1
      },
      "processing_model": "UNSCHEDULED_CREDENTIAL_ON_FILE",
      "merchant_signup_code": "text",
      "current_payment_number": 1,
      "amount_fixed": false
    },
    "first_payment": true,
    "scheme_reference": "text"
  },
  "receipt_type": "FULL_RECEIPT",
  "customer_details": {
    "title": "text",
    "first_name": "text",
    "middle_name": "text",
    "last_name": "text",
    "company_name": "text",
    "phone_number": "text",
    "email_address": "name@gmail.com",
    "shipping": {
      "address": "3732  Metz Lane",
      "city": "West Roxbury",
      "country": "US",
      "postal_code": "1114",
      "email": "name@gmail.com",
      "first_name": "Thelma",
      "last_name": "Tatro",
      "phone": "8577532706",
      "state": "MA"
    },
    "billing": {
      "address_1": "text",
      "address_2": "text",
      "address_3": "text",
      "city": "text",
      "country": "ZZ",
      "phone": "text",
      "postal_code": "text",
      "state": "text"
    },
    "language": "text"
  },
  "shopper_interaction": "ECOMMERCE",
  "user_agent": "text",
  "sales_description": "text",
  "sca_exemption": "1",
  "currency_code": "AED",
  "card_brand": "text",
  "encrypted_cvv": "text",
  "brand_choice": "MERCHANT",
  "refusal_reason": "ACQUIRER_COMMS_FAILURE",
  "token_preference": {
    "token_scope": "0e48425a-f1bc-431a-b7d8-f866de8ba276",
    "reuse_token_type": "INTERNAL",
    "token_type": "REUSE",
    "token_expiry_date": "2026-06-15"
  },
  "wallet_type": "APPLE_PAY",
  "wallet_payload": {},
  "sca_compliance_level": "WALLET",
  "promo_code": "text",
  "promo_financing_details": {
    "promoFinancingType": "PROMO_APR",
    "promoPlan": "text",
    "promoPlanExpiry": "2026-06-15"
  },
  "purchase_order_number": "text",
  "tax_indicator": "TAX_NOT_PROVIDED",
  "detailed_amount": {
    "gratuity_amount": 150,
    "tax_amount": 150,
    "surcharge_amount": 150
  },
  "additional_data": {
    "program_support": [
      "MCINST"
    ]
  }
}

{
  "advice": "3DS_REQUIRED",
  "encrypted_card": "U3dhZ2dlciByb2Nrcw==",
  "public_key_alias": "KEY00101"
}

Start payment session for Apple Pay wallet transactions

post

/api/v2/apple-pay/validation

Create a merchant payment session

Authorizations

AuthorizationstringRequired

Body

validation_urlstringRequired

The URL pointing to the Apple Pay validation location.

Note: Use the URL below according to your Verifone environment:

domainstringRequired

The domain from which the payment request will be initiated.

payment_provider_contractstring · uuid-flexibleRequired

The identifier of payment provider contract you want to process the transaction request with.

Example: 30b8bec8-5042-4e67-939c-5453fbe41711

Responses

201

The Apple Pay Validation Response.

application/json

400

Bad Request

application/json

401

Unauthorised

application/json

403

Forbidden

application/json

404

Not Found

application/json

500

Internal Server Error

application/json

post

/api/v2/apple-pay/validation

POST /oidc/api/v2/apple-pay/validation HTTP/1.1
Host: emea.gsc.verifone.cloud
Authorization: Basic username:password
Content-Type: application/json
Accept: */*
Content-Length: 108

{
  "validation_url": "text",
  "domain": "text",
  "payment_provider_contract": "30b8bec8-5042-4e67-939c-5453fbe41711"
}

{}

Key Response Fields

EcomResponseCard
  ├── id                   ← store this (transaction ID for downstream operations)
  ├── status               ← AUTHORIZED, DECLINED, FAILED, PENDING, etc.
  ├── authorization_code   ← present on successful authorisation (max 6 chars)
  ├── rrn                  ← ISO8583 DE37 retrieval reference number (max 12 chars)
  ├── avs_result           ← Address Verification Service result code
  ├── cvv_result           ← CVC check result (0–6; prefer numeric, M/N/Y/P/S/U deprecated)
  └── token_details        ← populated when token_preference was sent in the request
        └── reuse_token    ← store this if you requested tokenisation

Store the id and idempotency key immediately after receiving a 201. These are required to capture, void, or refund the transaction later.

PreviouseCommerce NextAlternative Payment Methods

Last updated 26 days ago

Was this helpful?