1. Changelog

Version Date Description

10.4

2024-04-10

Added a new field in response: refundARN for method Details.

10.3

2024-03-28

New regexp for houseNumber

10.2

2024-03-25

Openbanking release V1.0.

10.1

2024-02-27

New response code to payment methods: E0211 - Returned when transaction is rejected, because card country is blocked in Fenige System.

10.0

2023-01-25

New status E13000 - Transaction rejected, risk score exceeded.

9.9

2023-11-20

Adding information about Merchant Advice Codes. Changes in check transaction status response - new field merchantAdviceCode. Occurs only for Mastercard and for declined transactions if Mastercard returns this information

9.8

2023-10-27

Complete end of support for 3ds version 1.0

9.7

2023-06-30

Add new optional fields to request in payment methods: street, houseNumber, city, postalCode, province.

9.6

2023-06-28

Added new optional field: authMethod and tokenType for method Token payment.

9.5

2023-05-11

Deleted noCurrencyConversion field for payment methods.

9.4

2023-03-21

Added new optional fields for method /client/3ds/authentication regarding Cardholder Billing Card Information

9.3

2023-03-06

Added new optional field: phoneNumber to Recurring Initial, CoF Initial and Account status inquiry requests. New API status: E01607 - Transaction rejected, internal server error during authorization request generation added to all payment responses.

9.2

2023-01-30

Bugfix (adaptation to documentation) - make 3DS mandatory for 5.9.1 Recurring Payment - initial transaction

9.1

2022-12-16

New error status: E01606 - Transaction rejected, country of residence is not permitted

9.0

2020-12-15

New transaction status, min amount limit per terminal (E01605) + 2.6.4. Payment

8.9

2022-11-24

New field on payment method - country of residence required for merchants crypto

8.8

2022-10-20

PENDING prevent feature released, more information here: 6.4. Payment + 6.4. Payment

8.7

2022-10-26

Removal from use 3DS 1 for all countries (except those configured in the system)

8.6

2022-10-24

Adding information about the withdrawal of 3DSv1.

8.5

2022-09-28

First BLIK release. New response codes to blik methods: E0164, E0165, E0166, E0167, E0189, E00180, E9800

8.4

2022-09-16

New terminal limits added: + E10000 Transaction rejected, terminal daily card transaction limit exceeded, + E10001 Transaction rejected, terminal daily transaction limit, + E10002 Transaction rejected, terminal monthly transaction limit exceeded, + 2.6.4. Payment

8.3

2022-08-29

New API fields in authorization response - cardBlockadeAdditionalData.blockType, cardBlockadeAdditionalData.blockedUntil present when transaction was rejected because card was blocked. Example response is available in authorize response sections.

8.2

2022-08-22

New fields on payment method - there are data address sender required for crypto or wallet

8.1

2022-08-01

New response fields on 3DS 2.X Response: 'errorCode', 'errorCodeDetails', Request: challengeWindowSize

8.0

2022-05-05

New response codes to payment methods: E209 - sender name contains fraudulent phrase, E0210 - Transaction rejected, suspicious sender name

7.9

2022-04-08

New response fields to transaction details method added: terminalSettlementCurrency, amountInTerminalSettlementCurrency, commissionFenigeInTerminalSettlementCurrency

7.8

2022-03-21

Monitoring status added (E0208) 2.7.9. Monitoring

7.7

2021-03-18

New API method: Payment JWE. New response statuses: E8009, E8010. E8011.

7.6

2022-03-11

Remove Terminal/Merchant management from Fenige Ecommerce API

7.5

2022-03-01

Monitoring status added (E0207) 2.7.9. Monitoring

7.4

2021-12-30

New transaction status defined for terminal based restricted transaction amounts (E0159) + 6.4 Payments

7.3

2021-12-17

New transaction status added (E01602) for all transactions type to indicate blocked transaction in specific geographic scope + 6.10 Details

7.2

2021-12-16

Added responseCode - new field in Payment API - Reversal error response (422 UNPROCESSABLE ENTITY with status E0161).

7.1

2021-12-06

Updated validation for purchaseAmount in Authentication request in 3DS 2.X verification methods

7.0

2021-11-22

Add new response code(E01584, E01585) and change validation for outside3ds.eci

6.9

2021-11-04

Add noCurrencyConversion field for payment methods. For more information please refer to 6.4 Payments

6.8

2021-10-26

New transaction status added (E01596) for installment payment performed using terminal restricted card country + 6.9. Installment Payment

6.7

2021-10-19

Added new optional field 'receiverAmount' in payment methods

6.6

2021-10-18

Added description of the use case of the Google pay method.

6.5

2021-10-14

Added new types: DOMESTIC_PL, INTRA_EU, INTER to geographicScope field in 6.10 Details

6.4

2021-08-17

New error status: E01601 - terminal is blocked for provider

6.3

2021-06-09

Added Payment API field 'transactionRef' for determining merchant additional transaction identifier

6.2

2021-05-18

New filed on 3DS 1.0 Initialize method to process Token PAN transaction

6.1

2021-05-05

An implementation of CODE_65(Mastercard)/CODE_1A(Visa) transaction rejection logic for MASTERCARD and VISA. More details can be found here: 6.4 Payments

6.0

2021-04-19

New error status: E01600 in response for 3DS 2.X payment method

5.9

2021-04-09

Added card Id support from Datacenter for methods with 3ds 2.x/3ds 1.0

5.8

2021-04-09

Monitoring status added (E0206) 2.7.9. Monitoring

5.7

2021-04-01

Introduction of a new webhook functionality. Now it is possible to handle information about transaction status without polling API. 9. Webhooks

5.6

2021-03-10

Remove status E01595 and allow processing of all types of payment transactions using quasi-cash terminals

5.5

2021-01-20

Internal functionality to restrict access to specific method for PSP.

5.4

2021-01-18

New field 'terminalUrl' in Ecommerce Payment requests added. The field is optional now, but it is recommended to include it in your request body. From 2021-05-03 the 'terminalUrl' and 'addressIp' fields will be required.

5.3

2021-01-15

Update for 3DS 1.0 Add merchantUuid for verify and initialize method. Optional fields to get merchant configuration.

5.2

2021-01-01

New status E8004 for Clearing and Reversal method. Locks the method call until the ongoing task for a given Request Uuid is completed.

5.1

2020-12-30

Update for 3DS 2.X

5.0

2020-12-06

DataCenter card transaction functionality release for Payment API methods + 6.4. Payment + 6.5. MO/TO payment + 6.6. Token payment + 6.7. CoF payment + 6.8. Recurring payment + 6.9. Installment Payment

4.12

2020-11-20

Cards management methods added 5. Cards

4.11

2020-11-17

3DS version enforcement configuration

4.10

2020-11-06

Change in outside 3DS, authentication status required Y or A value

4.9

2020-11-06

Add Installment Payment API methods 5.10. Installment Payment

4.8

2020-10-26

New transaction status added (E01596) for transactions performed using terminal restricted card country + 5.5. Payment + 5.6. MO/TO payment + 5.7. Token payment + 5.7. CoF payment + 5.7. Recurring payment

4.7

2020-09-23

Add new VISA response code value 80

4.6

2020-09-16

Add new fields in details: authorizeRRN, authorizeStan, reversalRRN, reversalStan, arn

4.5

2020-09-1

Add new method Currency for card 5.3. Currency for card

4.4

2020-09-1

Add new method MO/TO payment 5.6. MO/TO Payment

4.3

2020-08-28

Add new response status E01595 - Returned when terminal MCC configuration is QUASI-CASH.

4.2

2020-07-23

Add new response status E0187 during refund processing to notify that chargeback was reported for transaction

4.1

2020-07-09

Add 3DS 2.X

4.0

2020-07-01

New method "Card Provider" added

3.9

2020-06-30

Update Mastercard statuses table

3.8

2020-06-18

Response status E0141 replaced with E0190 when currency rate cannot be found

3.7

2020-06-10

Documentation updated. Currency Rate method will be deprecated on 30.09.2020 and will be replaced by a new version of the Currency Rate method. 5.2. Currency Rate

3.6

2020-06-08

New status E0163 added + 2.6.6. Reversal

3.5

2020-06-05

Documentation updated. Change value and description about field "md" in Initialize and Finalize methods: + 6.2. Initialize + 6.3. Finalize

3.4

2020-05-13

New reversal status (S0005, S0006) and changed response + 5.11.2 Reversal - response

3.3

2020-04-27

Release API with Recurring Payments functionality + 5.9.1 Recurring Payment - initial transaction + 5.9.4 Recurring Payment - subsequent transaction

3.2

2020-03-26

Release API with Credential on File (CoF) functionality + 5.8.1 Cof payment - initial transaction + 5.8.4 Cof payment - subsequent transaction

3.1

2020-03-05

Monitoring status added (E0205) + 2.6.8. Monitoring + 5.5. Payment + 5.7. Token payment

3.0

2020-03-04

Removed commission and merchantCommission from transaction details response body.

2.9

2020-03-02

ERROR_MPI_CONNECTION status is replaced by the following statuses:

Error mpi - 3ds initialize failed

Error mpi connection

- the change will be available on production from 12.03.2020.

2.8

2020-02-28

3DS Verification method + 6. 3DS 1.0 verification methods - the change will be available on production from 12.03.2020.

2.7

2020-02-24

Outside 3DS transactions documentation added + 5.2. Payment - request

2.6

2020-02-18

Deleted refund status (S0012, S0013), changed refund status (E0184) and added new status (E0186) to refund. Changed response status for refund (2.6.7) + 2.6.7. Refund

2.5

2020-01-31

Information about certification process added

2.4

2020-01-30

New transaction status, amount limit per terminal (E0158) + 2.6.4. Payment

2.3

2019-11-26

Monitoring status added (E0204) + 2.6.8. Monitoring

2.2

2019-11-15

Monitoring status added (E0203) + 2.6.8. Monitoring

2.1

2019-09-26

Monitoring statuses added + 2.6.8. Monitoring

2.0

2019-09-23

New payment method with token description added

1.9

2019-09-10

A flow diagrams updated

1.8

2019-07-18

Clearing amount field has been added to the details method

1.7

2019-05-10

Methods descriptions modified and statuses description improved

1.6

2019-04-25

Endpoint (base url) changed to https://ecom-staging.fenige.pl

1.5

2019-03-20

Fields validation changes

1.4

2019-02-04

Optional IP address field added in transaction request body

1.3

2019-01-16

Fields validation changes

1.2

2018-12-18

Documentation update

1.1

2018-11-13

Partial clearing method describe added

1.0

2018-10-01

First release of documentation

2. Introduction

Fenige e-commerce API service allows to easily and safely perform operations realated to e-commerce. You can authorize payments and show details about completed transactions. Also you can make reversals, clearings and refunds.

Transaction process:

1. Fenige registers the PSP, Merchants and Terminals in his system.

2. The Partner can use all available methods in the API.

2.1. Endpoints

Environment Endpoint (base url)

Staging

https://ecom-staging.fenige.pl

2.2. HTTP verbs

RESTful notes tries to adhere as closely as possible to standard HTTP and REST conventions in its use of HTTP verbs.

Verb Usage

GET

Used to retrieve a resource

POST

Used to create a new resource

PUT

Used to update specific resource

DELETE

Used to delete a resource

2.3. Language

If you want to select your language, add Accept-Language header to request JSON and set its value to, for example, pl, en, cs or sk. In case of a successful transaction for the send money method you will receive a email confirmation in the language which you set.

Accept-Language

en

2.4. General methods

All api methods require the delivery of appropriate headers.

List of methods headers used in Fenige REST API:

Key Value Validation Description

Content-Type

application/json

Required

Used to indicate the media type of the resource

Authorization

Basic cHNwbmFtZTpwYXNzd29yZA==

Required

Used to resolve PSP context of user. Basic Auth from PSP data (PSP name and password). Consist of keyword Basic and string obtained from Base64 coding method for PSP name and password parameter

2.5. HTTP status codes

RESTful notes tries to adhere as closely as possible to standard HTTP and REST conventions in its use of HTTP status codes.

Status code Usage

200 OK

The request completed successfully

202 ACCEPTED

The request has been accepted for processing, but the processing has not been completed. The request might or might not eventually be acted upon, as it might be disallowed when processing actually takes place.

400 BAD REQUEST

The request was malformed. The response body will include an error providing further information

404 NOT FOUND

The requested resource did not exist

500 INTERNAL SERVER ERROR

Message occur when an unexpected condition was encountered

2.5.1. Currency rate

Table 1. Response status for Currency rate method
Code Messages HTTP Code HTTP STATUS

E0190

Failed to get currency rates

500

INTERNAL_SERVER_ERROR

2.5.2. Currency for card

Table 2. Response status for Currency for card method
Code Messages HTTP Code HTTP STATUS

E0400

Failed to get currency for card

500

INTERNAL_SERVER_ERROR

E0401

Issuer card is not supported

422

UNPROCESSABLE_ENTITY

2.5.3. Payment

Table 3. Response status for Payment
Code Messages HTTP Code HTTP STATUS

S0000

SUCCESS

200

OK

S0001

SUCCESS

204

NO CONTENT

S0002

Success transaction

200

OK

S0003

Transaction declined, check response code for reason

200

OK

S0004

PENDING

202

ACCEPTED

E0150

Transaction rejected

422

UNPROCESSABLE ENTITY

E0151

Transaction rejected, currency not supported

422

UNPROCESSABLE ENTITY

E0152

Transaction rejected, issuer not supported

422

UNPROCESSABLE ENTITY

E0153

Transaction declined, problem with MIP connection

500

INTERNAL SERVER ERROR

E0154

Failed to fetch transaction details

500

INTERNAL SERVER ERROR

E0155

Transaction not exist

404

NOT FOUND

E0156

Transaction rejected, terminal not supported 3ds

422

UNPROCESSABLE ENTITY

E0157

Transaction rejected, card not supported 3ds

422

UNPROCESSABLE ENTITY

E0158

Transaction rejected, maximum transaction amount limit exceeded

422

UNPROCESSABLE ENTITY

E01605

Transaction rejected, minimum transaction amount limit exceeded

422

UNPROCESSABLE ENTITY

E01607

Transaction rejected, internal server error during authorization

422

UNPROCESSABLE ENTITY

E0159

Transaction rejected, restricted transaction amount has occurred

422

UNPROCESSABLE ENTITY

E8009

Merchant RSA keys not found

404

NOT FOUND

E8010

Merchant RSA key expired

422

UNPROCESSABLE ENTITY

E8011

Internal error during card decrypting

500

INTERNAL SERVER ERROR

E01580

Transaction rejected. Card is expired.

422

UNPROCESSABLE ENTITY

E01581

Transaction rejected. Not found Card Authentication (3DS 2.X)

422

UNPROCESSABLE ENTITY

E01582

Transaction rejected. Card Authentication not match to transaction type (3DS 2.X)

422

UNPROCESSABLE ENTITY

E01583

Transaction rejected. Outside 3ds is required for terminal

422

UNPROCESSABLE ENTITY

E01584

Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request

422

UNPROCESSABLE ENTITY

E01585

Transaction rejected, Outside 3ds values are not valid for Card Authentication.

422

UNPROCESSABLE ENTITY

E01590

Transaction rejected, cof card not found in db

422

UNPROCESSABLE ENTITY

E01591

Transaction rejected, initial cof transaction not approved

422

UNPROCESSABLE ENTITY

E01592

Transaction rejected, recurring card not found in db

422

UNPROCESSABLE ENTITY

E01593

Transaction rejected, initial recurring transaction not approved

422

UNPROCESSABLE ENTITY

E01594

Transaction rejected, transactionXId parameter had registered for another transaction

422

UNPROCESSABLE ENTITY

E01596

Transaction rejected, terminal blocks transactions with card issued in given card country

422

UNPROCESSABLE ENTITY

E01597

Transaction rejected, 3DS version of terminal are not compatible with 3DS version defined in request

422

UNPROCESSABLE ENTITY

E01598

Transaction rejected, ECI value is not available for card provider

422

UNPROCESSABLE ENTITY

E01599

Transaction declined, processing timeout

500

INTERNAL_SERVER_ERROR

E01600

Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request

422

UNPROCESSABLE ENTITY

E01601

Transaction rejected, terminal is blocked for provider

422

UNPROCESSABLE ENTITY

E01602

Transaction rejected, geographic scope is not permitted for this transaction

422

UNPROCESSABLE ENTITY

E01603

Transaction rejected, Transactions without 3ds above 30 EUR (the blockade applies only to EU countries)

422

UNPROCESSABLE ENTITY

E01604

Transaction rejected, transactions 3DS 1.X not supported for given country

422

UNPROCESSABLE ENTITY

E01606

Transaction rejected, country of residence is not permitted

422

UNPROCESSABLE ENTITY

E10000

Transaction rejected, terminal daily card transaction limit exceeded

422

UNPROCESSABLE ENTITY

E10001

Transaction rejected, terminal daily transaction limit exceeded

422

UNPROCESSABLE ENTITY

E10002

Transaction rejected, terminal monthly transaction limit exceeded

422

UNPROCESSABLE ENTITY

E11000

Transaction rejected, time for transaction processing exceeded

422

UNPROCESSABLE ENTITY

E05000

Installment Payment initial not found

500

INTERNAL SERVER ERROR

E05001

Installment Payment already confirmed

500

INTERNAL SERVER ERROR

E05002

Installment Payment already cancelleded

500

INTERNAL SERVER ERROR

E05003

Installment Payment already pay in full

500

INTERNAL SERVER ERROR

E05004

Installment Payment not confirmed in required time

500

INTERNAL SERVER ERROR

E05005

Installment Payment Initial was failed

500

INTERNAL SERVER ERROR

E05006

Installment Payment could not find valid installment plan for requested uuid

500

INTERNAL SERVER ERROR

E05007

Installment Payment Option not allowed for transaction

500

INTERNAL SERVER ERROR

E05008

Installment Payment missing plan uuid

500

INTERNAL SERVER ERROR

E05009

Installment Payment missing request number of installments

500

INTERNAL SERVER ERROR

E05010

Installment Payment requested number of installments is outside of allowed range

500

INTERNAL SERVER ERROR

E05011

Installment Payment operation not allowed, installment type allows ISSUER_FINANCED installments

500

INTERNAL SERVER ERROR

E05014

Installment Payment outside 3ds request is required for terminal

500

INTERNAL SERVER ERROR

E05015

Installment Payment unsupported card provider VISA

500

INTERNAL SERVER ERROR

2.5.4. Clearing

Table 4. Response status for Clearing
Code Messages HTTP Code HTTP STATUS

E0170

Clearing of the payment is procesing

422

UNPROCESSABLE ENTITY

E0171

Can’t clear payment

422

UNPROCESSABLE ENTITY

E0172

Can’t clear payment, the time is over

422

UNPROCESSABLE ENTITY

E0173

Payment is automatically cleared

422

UNPROCESSABLE ENTITY

E0174

Payment is already cleared

422

UNPROCESSABLE ENTITY

E0175

Can’t clear payment, clearing amount is to low

503

UNPROCESSABLE ENTITY

E0176

Can’t clear payment, clearing amount is to high

503

UNPROCESSABLE ENTITY

2.5.5. Reversal

Table 5. Response status for Reversal
Code Messages HTTP Code HTTP STATUS

S0005

Success reverse transaction

200

OK

S0006

Reverse transaction declined, check response code for reason

200

OK

E0160

Reversal of the payment is procesing

422

UNPROCESSABLE ENTITY

E0161

Can’t reversal payment

422

UNPROCESSABLE ENTITY

E0162

Payment is already reversed

422

UNPROCESSABLE ENTITY

E0163

Payment is already refunded

422

UNPROCESSABLE ENTITY

E05012

Installment Payment reverse not allowed

500

INTERNAL SERVER ERROR

2.5.6. Refund

Table 6. Response status for Refund
Code Messages HTTP Code HTTP STATUS

E0180

Refund rejected, no MC/VISA response

500

INTERNAL SERVER ERROR

E0181

Refund rejected by MC/VISA

500

INTERNAL SERVER ERROR

E0182

Refund transaction amount to low

400

BAD REQUEST

E0183

Refund transaction amount to high

400

BAD REQUEST

E0184

Transaction is refunded

422

UNPROCESSABLE ENTITY

E0185

Transaction not cleared, can’t refund

422

UNPROCESSABLE ENTITY

E0186

Refund is already processing

422

UNPROCESSABLE ENTITY

E0187

Transaction is chargeback reported

422

UNPROCESSABLE ENTITY

E05013

Installment Payment refund not allowed

500

INTERNAL SERVER ERROR

2.5.7. Monitoring

Table 7. Monitoring response status
Code Messages HTTP Code HTTP STATUS

E0200

Transaction rejected, card is blocked

422

UNPROCESSABLE ENTITY

E0201

Transaction rejected, bin is blocked

422

UNPROCESSABLE ENTITY

E0202

Transaction rejected, terminal is blocked

422

UNPROCESSABLE ENTITY

E0203

Transaction rejected, token is blocked

422

UNPROCESSABLE ENTITY

E0204

Transaction rejected, user is on aml list

422

UNPROCESSABLE ENTITY

E0205

Transaction rejected, bank is blocked

422

UNPROCESSABLE ENTITY

E0206

Transaction rejected, to many reject transactions and card is blocked

422

UNPROCESSABLE ENTITY

E0207

Transaction rejected, to many attempts declined and card is blocked

422

UNPROCESSABLE ENTITY

E0208

Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

422

UNPROCESSABLE ENTITY

E0209

Returned when sender or receiver name contains fraudulent phrase

422

UNPROCESSABLE ENTITY

E0210

Returned when sender has suspicious name

422

UNPROCESSABLE ENTITY

E0211

Returned when transaction is rejected, because card country is blocked in Fenige System.

422

UNPROCESSABLE ENTITY

2.5.8. 3DS 2.X

Table 8. Response status for 3DS 2.X
Code Messages HTTP Code HTTP STATUS

S0000

SUCCESS

200

OK

E0300

Error mpi V2 - failed internal

500

INTERNAL_SERVER_ERROR

E0301

Three DS Method Data mismatch

422

UNPROCESSABLE_ENTITY

E0302

Error on parsing Three DS Method Data

422

UNPROCESSABLE_ENTITY

E0303

Card number not Enrolled in 3DS v2

422

UNPROCESSABLE_ENTITY

E0304

Invalid card authentication id

422

UNPROCESSABLE_ENTITY

E0305

Issuer card is not supported

422

UNPROCESSABLE_ENTITY

E0306

Invalid card number

422

UNPROCESSABLE_ENTITY

E0307

Card Authentication not found

404

NOT_FOUND

E0132

Terminal not exists

404

NOT_FOUND

E0309

Protocol version is not supported

422

UNPROCESSABLE_ENTITY

E0310

Invalid Three DS Method Data

422

UNPROCESSABLE_ENTITY

E0311

Google Pay token payment with PAN_ONLY authMethod parameter - 3DS is required

422

UNPROCESSABLE_ENTITY

2.5.9. 3DS 2.X more details Error Code

Table 9. More details Error Code for 3DS 2.X
Code Description

E1001

Three DS Method Data mismatch

E1002

Error on parsing Three DS Method Data

E1003

Card number not Enrolled in 3DS v2

E1004

Read file exception

E1005

Invalid card authentication id

E1006

Issuer card is not supported

E1007

Can not fetch provider configuration

E1008

Invalid card number

E1009

Card Authentication not found

E1010

Protocol version is not supported

E1011

Protocol version is not supported

E601

Could not create ephemeral key.

E602

Invalid certificate.

E603

Invalid operation.

E604

Invalid ClientAuth data.

E605

The errorCode element in Error message is invalid.

E606

Invalid index.

E700

Unknown host exception.

E1101

Protocol error. Received invalid message.

E1102

Protocol error. Invalid message version.

E1201

Protocol error. Missing data element.

E1202

Protocol error. Unrecognized critical extension.

E1203

Data element value is invalid.

E1204

Duplicate Data Element.

E1286

Error while sending to DS.

E1301

Protocol error. Unrecognized transaction Id.

E1302

Decryption failed.

E1303

Access Denied, Invalid Endpoint

E1304

ISO Code Invalid.

E1305

Transaction Data Not Valid.

E1306

MCC Not Valid for Payment System.

E1307

Serial Number Not Valid.

E1402

Transaction Timed Out.

E1403

Transient System Failure.

E1404

Permanent system failure.

E1405

System Connection Failure.

E118

Firewall Error. Error description contains detailed message.

E143

Busy executing current method.

E151

HTTP protocol error. The error message has the server response.

E152

No server specified in URL

E153

Specified URLScheme is invalid.

E155

Range operation is not supported by server.

E156

Invalid cookie index (out of range).

E301

Interrupted.

E302

Can’t open AttachedFile.

E100

You cannot change the RemotePort at this time. A connection is in progress.

E101

You cannot change the RemoteHost (Server) at this time. A connection is in progress.

E102

The RemoteHost address is invalid (X.X.X.X).

E104

Already connected. If you want to reconnect, close the current connection first.

E106

You cannot change the LocalPort at this time. A connection is in progress.

E107

You cannot change the LocalHost at this time. A connection is in progress.

E112

You cannot change MaxLineLength at this time. A connection is in progress.

E116

RemotePort cannot be zero. Please specify a valid service port number.

E117

Cannot change UseConnection option while the bean is Active.

E135

Operation would block.

E201

Timeout.

E211

Action impossible in control’s present state.

E212

Action impossible while not connected.

E213

Action impossible while listening.

E303

Could not open file.

E434

Unable to convert string to selected CodePage

E1105

Already connecting. If you want to reconnect, close the current connection first.

E1117

You need to connect first.

E1119

You cannot change the LocalHost at this time. A connection is in progress.

E1120

Connection dropped by remote host.

E270

Cannot load specified security library.

E271

Cannot open certificate store.

E272

Cannot find specified certificate.

E273

Cannot acquire security credentials.

E274

Cannot find certificate chain.

E275

Cannot verify certificate chain.

E276

Error during handshake.

E280

Error verifying certificate.

E281

Could not find client certificate.

E282

Could not find server certificate.

E283

Error encrypting data.

E284

Error decrypting data.

E10004

Interrupted system call.

E10009

Bad file number.

E10013

Access denied.

E10014

Bad address.

E10022

Invalid argument.

E10024

Too many open files.

E10035

Operation would block.

E10036

Operation now in progress.

E10037

Operation already in progress.

E10038

Socket operation on non-socket.

E10039

Destination address required.

E10040

Message too long.

E10041

Protocol wrong type for socket.

E10042

Bad protocol option.

E10043

Protocol not supported.

E10044

Socket type not supported.

E10045

Operation not supported on socket.

E10046

Protocol family not supported.

E10047

Address family not supported by protocol family.

E10048

Address already in use.

E10049

Can’t assign requested address.

E10050

Network is down.

E10051

Network is unreachable.

E10052

Net dropped connection or reset.

E10053

Software caused connection abort.

E10054

Connection reset by peer.

E10055

No buffer space available.

E10056

Socket is already connected.

E10057

Socket is not connected.

E10058

Can’t send after socket shutdown.

E10059

Too many references, can’t splice.

E10060

Connection timed out.

E10061

Connection refused.

E10062

Too many levels of symbolic links.

E10063

File name too long.

E10064

Host is down.

E10065

No route to host.

E10066

Directory not empty

E10067

Too many processes.

E10068

Too many users.

E10069

Disc Quota Exceeded.

E10070

Stale NFS file handle.

E10071

Too many levels of remote in path.

E10091

Network subsystem is unavailable.

E10092

WINSOCK DLL Version out of range.

E10093

Winsock not loaded yet.

E11001

Host not found.

E11002

Non-authoritative 'Host not found' (try again or check DNS setup).

E11003

Non-recoverable errors: FORMERR, REFUSED, NOTIMP.

E11004

Valid name, no data record (check DNS setup).

2.5.10. Global

Table 10. Global response status
Code Messages HTTP Code HTTP STATUS

E8000

Bad Request

400

BAD REQUEST

E8001

Forbidden

403

FORBIDDEN

E8002

Unauthorized

401

UNAUTHORIZED

E8003

Scale of amount is different than the scale of currency

422

UNPROCESSABLE ENTITY

E8004

Some operation for this requestUuid is processing

422

UNPROCESSABLE ENTITY

2.5.11. Fatal Errors

Table 11. Fatal errors response status
Code Messages HTTP Code HTTP STATUS

E9000

Domain error

500

INTERNAL SERVER ERROR

E9001

Error acquirer connection

503

SERVICE UNAVAILABLE

E9002

Error mpi connection

503

SERVICE_UNAVAILABLE

E9003

Error monitoring connection

503

SERVICE_UNAVAILABLE

E9010

Error data center connection

503

SERVICE_UNAVAILABLE

2.6. Mastercard/VISA statuses

Table 12. Statuses in accordance with ISO-8583
Status code Usage

CODE_00

Approved or completed successfully

CODE_01

Refer to card issuer

CODE_02

Refer to card issuer’s special conditions

CODE_03

Invalid merchant

CODE_04

Pick up card (no fraud)

CODE_05

Do not honor

CODE_06

General error

CODE_07

Pick up card, special condition (fraud account)

CODE_08

Honor with ID

CODE_09

Request in progress

CODE_10

Approved for partial amount

CODE_11

Approved (V.I.P)

CODE_12

Invalid transaction

CODE_13

Invalid amount

CODE_14

Invalid account number (no such number)

CODE_15

No such issuer

CODE_16

Approved, update track 3

CODE_17

Customer cancellation

CODE_18

Customer dispute

CODE_19

Re-enter transaction

CODE_20

Invalid response

CODE_21

No action taken

CODE_22

Suspected malfunction

CODE_23

Unacceptable transaction fee

CODE_24

File update not supported by receiver

CODE_25

Unable to locate record in file

CODE_26

Duplicate file update record, old record replaced

CODE_27

File update field edit error

CODE_28

File update file locked out

CODE_29

File update not successful, contact acquirer

CODE_30

Format error

CODE_31

Bank not supported by switch

CODE_32

Completed partially

CODE_33

Expired card

CODE_34

Suspected fraud

CODE_35

Card acceptor contact acquirer

CODE_36

Restricted card

CODE_37

Card acceptor call acquirer security

CODE_38

Allowable PIN tries exceeded

CODE_39

No credit account

CODE_40

Requested function not supported

CODE_41

Lost card, pick up (fraud account)

CODE_42

No universal account

CODE_43

Stolen card, pick up (fraud account)

CODE_44

No investment account

CODE_51

Not sufficient funds

CODE_52

No checking account

CODE_53

No savings account

CODE_54

Expired card or expiration date is missing

CODE_55

Incorrect PIN or PIN missing

CODE_56

No card record

CODE_57

Transaction not permitted to cardholder

CODE_58

Transaction not permitted to acquirer/terminal

CODE_59

Suspected fraud

CODE_60

Card acceptor contact acquirer

CODE_61

Exceeds withdrawal amount limit

CODE_62

Restricted card (card invalid in this region or country)

CODE_63

Security violation (source is not correct issuer)

CODE_64

Original amount incorrect/Transaction does not fulfill AML requirement

CODE_65

Exceeds withdrawal frequency limit

CODE_66

Card acceptor call acquirer’s security department

CODE_67

Hard capture (requires that card be picked up at ATM)

CODE_68

Response received too late

CODE_70

Contact Card Issuer/PIN data required

CODE_71

PIN Not Changed

CODE_74

Different value than that used for PIN encryption errors

CODE_75

Allowable number of PIN tries exceeded

CODE_76

Invalid/nonexistent “To Account” specified/Unsolicited reversal

CODE_77

Invalid/nonexistent “From Account” specified

CODE_78

Invalid/nonexistent account specified (general)/“Blocked, first used”—Transaction from new cardholder, and card not properly unblocked

CODE_79

Life cycle/Already reversed (by Switch)

CODE_80

System not available/No financial impact

CODE_81

Domestic Debit Transaction Not Allowed (Regional use only)/Cryptographic error found in PIN

CODE_82

Policy (Mastercard use only)/Negative CAM, dCVV, iCVV, or CVV results

CODE_83

Fraud/Security (Mastercard use only)

CODE_84

Invalid Authorization Life Cycle

CODE_85

Not declined/No reason to decline a request for address verification, CVV2 verification, or a credit voucher or merchandise return

CODE_86

PIN Validation not possible

CODE_87

Purchase Amount Only, No Cash Back Allowed

CODE_88

Cryptographic failure

CODE_89

Unacceptable PIN—Transaction Declined—Retry/Ineligible to receive financial position information (GIV)

CODE_90

Cutoff is in process (switch ending a day’s business and starting the next. Transaction can be sent again in a few minutes)

CODE_91

Issuer or switch is inoperative/Issuer or switch inoperative and STIP not applicable or not available for this transaction; Time-out when no stand-in; POS Check Service: Destination unavailable; Credit Voucher and Merchandise Return Authorizations: V.I.P. sent the transaction to the issuer, but the issuer was unavailable.

CODE_92

Financial institution or intermediate network facility cannot be found for routing

CODE_93

Transaction cannot be completed. Violation of law

CODE_94

Duplicate transmission

CODE_95

Reconcile error

CODE_96

System malfunction or certain field error conditions

CODE_A1

Additional customer authentication required

CODE_B1

Surcharge amount not permitted on Visa cards (U.S. acquirers only)

CODE_B2

Surcharge amount not supported by debit network issuer.

CODE_N0

Force STIP

CODE_N3

Cash service not available

CODE_N4

Cashback request exceeds issuer limit or appoved limit

CODE_N5

Ineligible for resubmission

CODE_N7

Decline for CVV2 failure

CODE_N8

Transaction amount exceeds preauthorized approval amount

CODE_P2

Invalid biller information

CODE_P5

Denied PIN unblock—PIN change or unblock request declined by issuer

CODE_P6

Denied PIN change—requested PIN unsafe

CODE_Q1

Card Authentication failed

CODE_R0

Stop payment order

CODE_R1

Revocation of authorization order

CODE_R2

Transaction does not qualify for Visa PIN

CODE_R3

Revocation of all authorizations order

CODE_XA

Forward to issuer

CODE_XD

Forward to issuer

CODE_Z3

Unable to go online

CODE_TBA

Customer ID verification failed

CODE_1A

Additional customer authentication required (Europe Region only)

CODE_6P

Verification Failed (Cardholder Identification does not match issuer records)

2.7. Response statuses

2.7.1. Transaction statuses

Status Description

PENDING

Transaction is processing

APPROVED

Transaction complete successfully

DECLINED

Transaction was declined by Mastercard, look at response code

REVERSED

Transaction was reversed successfully - money will return to cardholder’s account

CLEARED

Transaction is cleared correctly

REJECTED

Something went wrong and some validation error occurred

2.7.2. Reversal statuses

Status Description

APPROVED

A reversal complete successfully

DECLINED

A reversal was declined by Mastercard, look at response code

ERROR

Something went wrong and reversal cannot be processed

CANNOT_REVERSAL

Reversal could not be processed and it is not possible

2.7.3. Clearing statuses

Status

Description

APPROVED

A clearing complete successfully

DECLINED

A clearing is declined

ERROR

Something went wrong and clearing cannot be processed

TO_CLEARING

Transaction was registered correctly and will processing soon

WAITING_FOR_SENDING_FILE_TO_MASTERCARD

Clearing was processed with success and now it is waiting for send to Mastercard

CANNOT_CLEAR

Clearing is not possible

CLEARING_TRANSACTION_NOT_FOUND

Clearing transaction is not found

TIME_IS_OVER

Time for clearing is over (7 days when manual clearing is enabled)

PENDING

Clearing is pending

PROCESSING

Clearing is processing

2.7.4. Refund statuses

Status Description

APPROVED

Refund complete successfully

DECLINED

A refund is declined by MasterCard, look at response code

REFUND_PROCESSING

An attempt to transaction refund was registered and refund is processing

REFUND_TRANSACTION_NOT_FOUND

Transaction not found

REFUND_ALREADY_APPROVED

Transaction is just correctly refund when user make request again with same requestUuid

TRANSACTION_NOT_CLEARED

Transaction in not cleared yet

CHARGEBACK_REPORTED

Transaction is chargeback reported

2.8. Merchant advice codes

Merchant Advice Codes (MACs) are introduced by Mastercard to clearly communicate to merchants the reason for declining transactions, and the course of action that merchants can take. Occurs only for declined transactions if Mastercard returns this information.

Merchant Advice Code Merchant Advice Code Text

01

New account information available

02

Cannot approve at this time, try again later

03

Do not try again

04

Token not supported

21

Stop recurring payment

24

Retry after 1 hour

25

Retry after 24 hours

26

Retry after 2 days

27

Retry after 4 days

28

Retry after 6 days

29

Retry after 8 days

30

Retry after 10 days

40

Consumer non-reloadable prepaid card

41

Consumer single-use virtual card number

3. Merchants

3.1. Get merchant for uuid

GET /merchants/{uuid} Authorization: Basic Auth
Using this method, we can get a merchant with a unique uuid. We send uuid in url as a param. In response, we receive detailed information about the merchant.

3.1.1. Request

HTTP Request
GET /merchants/c25c44ac-44cc-44d1-8a00-4fad9875586c HTTP/1.1
accept-encoding: gzip
user-agent: ReactorNetty/1.0.38
Authorization: Basic dXNlcjpwYXNzd29yZA==
Accept: application/json
Host: ecom-staging.fenige.pl
Table 13. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 14. merchants/{uuid}
Parameter Description

uuid

Merchant’s unique uuid in system

3.1.2. Response

Response status
Status Description

200 OK

Returned when the merchant is already existing. In response are details about the merchant.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant not exist.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:35 GMT
Content-Length: 560

{
  "uuid" : "c25c44ac-44cc-44d1-8a00-4fad9875586c",
  "name" : "merchant_name",
  "companyName" : "merchant_company_name",
  "companyBusinessName" : "merchant_company_business_name",
  "email" : "merchant_mail@example.com",
  "merchantStatus" : "ACTIVE",
  "address" : {
    "city" : "Lublin",
    "country" : "PL",
    "homeNumber" : "10",
    "street" : "Karola Olszewskiego",
    "streetNumber" : "11",
    "postalCode" : "24-110"
  },
  "accountNumber" : "11124000013372880300945921",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 15. Hateoas links
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

uuid

String

Merchant’s unique uuid in system

name

String

The merchant’s name

companyName

String

The merchant’s company name

companyBusinessName

String

The merchant’s company business name

email

String

The merchant’s email

address.city

String

The merchant’s city

address.country

String

The merchant’s country in accordance with ISO 3166-1 Alpha-2

address.homeNumber

String

The merchant’s home number

address.street

String

The merchant’s street

address.streetNumber

String

The merchant’s street number

address.postalCode

String

The merchant’s postal code

httpStatus

String

Response http status

merchantStatus

String

The merchant’s status

accountNumber

String

The merchant’s account number

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:53:35 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "e54a1401-6922-44e8-ac54-56b03fdbd9ce"
}
Table 16. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 135
Date: Fri, 12 Apr 2024 07:53:36 GMT

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "b11f2db3-fc49-41f4-9ac4-2368b5bb26c6"
}
Table 17. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:35 GMT
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "975d8368-45ce-4c4d-a39e-31778b526d8d"
}
Table 18. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:35 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "1f8543b6-6db0-49ff-83e3-9a0741a57632"
}
Table 19. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

3.2. Get merchant list

GET /merchants Authorization: Basic Auth
Using this method, we can get a list of merchants who are assigned to the authenticated PSP.

3.2.1. Request

HTTP Request
GET /merchants HTTP/1.1
accept-encoding: gzip
user-agent: ReactorNetty/1.0.38
Authorization: Basic dXNlcjpwYXNzd29yZA==
Accept: application/json
Host: ecom-staging.fenige.pl
Table 20. Request headers
Name Description

Authorization

Basic auth credentials for PSP

3.2.2. Response

Response status
Status Description

200 OK

Returned when the authorized PSP has at least one merchant. In response, he receives a list of merchants with details about each of them.

200 OK empty list

STATUS: E0123 - Returned when merchant list is empty.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:34 GMT
Content-Length: 1173

{
  "merchants" : {
    "content" : [ {
      "uuid" : "d611d256-ddb3-450a-b009-066c5df15407",
      "name" : "merchant_name",
      "companyName" : "merchant_company_name",
      "companyBusinessName" : "merchant_company_business_name",
      "email" : "merchant_mail@example.com",
      "merchantStatus" : "ACTIVE",
      "address" : {
        "city" : "Lublin",
        "country" : "PL",
        "homeNumber" : "10",
        "street" : "Karola Olszewskiego",
        "streetNumber" : "11",
        "postalCode" : "24-110"
      },
      "accountNumber" : "11124000013372880300945921"
    } ],
    "pageable" : {
      "sort" : {
        "empty" : true,
        "sorted" : false,
        "unsorted" : true
      },
      "offset" : 0,
      "pageNumber" : 0,
      "pageSize" : 20,
      "paged" : true,
      "unpaged" : false
    },
    "last" : true,
    "totalElements" : 1,
    "totalPages" : 1,
    "first" : true,
    "size" : 20,
    "number" : 0,
    "sort" : {
      "empty" : true,
      "sorted" : false,
      "unsorted" : true
    },
    "numberOfElements" : 1,
    "empty" : false
  },
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 21. Hateoas links
Path Type Description

merchants.content.[].name

String

The merchant’s name

merchants.content.[].companyName

String

The merchant’s company name

merchants.content.[].companyBusinessName

String

The merchant’s company business name

merchants.content.[].email

String

The merchant’s email

merchants.content.[].merchantStatus

String

The merchant’s status

merchants.content.[].uuid

String

Merchant’s unique uuid in system

merchants.content.[].address.city

String

The merchant’s city

merchants.content.[].address.country

String

The merchant’s country in accordance with ISO 3166-1 Alpha-2

merchants.content.[].address.homeNumber

String

The merchant’s home number

merchants.content.[].address.street

String

The merchant’s street

merchants.content.[].address.streetNumber

String

The merchant’s street number

merchants.content.[].address.postalCode

String

The merchant’s postal code

merchants.content.[].accountNumber

String

The merchant’s account number

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

200 OK empty list
HTTP Response - STATUS: E0123
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:34 GMT
Content-Length: 91

{
  "status" : "E0123",
  "message" : "List of Merchant is empty.",
  "httpStatus" : "OK"
}
Table 22. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:53:34 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "fb4683f6-6636-42e1-8eae-06c35168c791"
}
Table 23. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 135
Date: Fri, 12 Apr 2024 07:53:35 GMT

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "7c7ab1ca-1a72-4e4d-8cd9-c08798e92928"
}
Table 24. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:34 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "63402302-5424-4cc9-a130-c84335e2432e"
}
Table 25. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

4. Terminals

4.1. Get terminal for uuid

GET /merchants/{merchantUUID}/terminals/{uuid} Authorization: Basic Auth
Using this method, we can get a terminal with a unique uuid. We send merchant uuid and terminal uuid in url as a params. In response, we receive detailed information about the
terminal.

4.1.1. Request

HTTP Request
GET /merchants/bc8fef8f-6468-45f6-8647-7cf376ecdf4e/terminals/dc3c6939-3873-4eb4-873d-82ae1252f5a9 HTTP/1.1
accept-encoding: gzip
user-agent: ReactorNetty/1.0.38
Authorization: Basic dXNlcjpwYXNzd29yZA==
Accept: application/json
Host: ecom-staging.fenige.pl
Table 26. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 27. merchants/{merchantUUID}/terminals/{uuid}
Parameter Description

merchantUUID

Merchant’s unique uuid in system

uuid

Terminal’s unique uuid in system

4.1.2. Response

Response status
Status Description

200 OK

Returned when the terminal is already existing. In response are details about the terminal.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant not exist.

STATUS: E0132 - Returned when terminal not exist.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:51 GMT
Content-Length: 357

{
  "uuid" : "dc3c6939-3873-4eb4-873d-82ae1252f5a9",
  "name" : "terminal_name",
  "merchantUUID" : "bc8fef8f-6468-45f6-8647-7cf376ecdf4e",
  "terminalStatus" : "ACTIVE",
  "settlementCurrency" : "PLN",
  "calculateCommissionType" : "STANDARD",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK",
  "default" : true,
  "3dsEnable" : true
}
Table 28. Hateoas links
Path Type Description

merchantUUID

String

The merchant’s identifier in the database

name

String

The terminal’s name

uuid

String

The terminal’s identifier in the database

3dsEnable

Boolean

Is 3DS enabled for transaction. Enabled if true, is not enabled if false

terminalStatus

String

The terminals’s status (NEW - terminal is waiting for activation in Fenige system, ACTIVE - terminal is active, INACTIVE - terminal is not active)

default

Boolean

Is default terminal. Default if true, is not default if false

calculateCommissionType

String

Commission type for terminal (STANDARD - percentage commission, SUMMARIZE - percentage commission and fixed amount)

settlementCurrency

String

Settlement currency for terminal (in accordance with ISO-4217)

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:53:51 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "76ba5a94-ff82-4800-9fa8-7315ed085ab7"
}
Table 29. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 135
Date: Fri, 12 Apr 2024 07:53:53 GMT

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "b01160fa-808a-4804-944a-fda40b8256f8"
}
Table 30. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0132
HTTP/1.1 404 Not Found
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:51 GMT
Content-Length: 146

{
  "status" : "E0132",
  "message" : "Terminal not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "7819df94-7a2b-4fb5-9d67-6443e6d27402"
}
HTTP Response - STATUS: E0136
HTTP/1.1 404 Not Found
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:51 GMT
Content-Length: 146

{
  "status" : "E0136",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "84fd0619-52e4-4742-bd32-8345faf6c831"
}
Table 31. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:50 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "3c685688-7165-4996-aeb7-094771498c75"
}
Table 32. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

4.2. Get terminals list

GET /merchants/{merchantUUID}/terminals Authorization: Basic Auth
Using this method, we can get a list of terminals who are assigned to the merchant.

4.2.1. Request

HTTP Request
GET /merchants/6b18c5af-b57b-4135-acee-cfd754c452aa/terminals HTTP/1.1
accept-encoding: gzip
user-agent: ReactorNetty/1.0.38
Authorization: Basic dXNlcjpwYXNzd29yZA==
Accept: application/json
Host: ecom-staging.fenige.pl
Table 33. Request headers
Name Description

Authorization

Basic auth credentials for PSP

4.2.2. Response

Response status
Status Description

200 OK

Returned when the merchant has at least one terminal. In response, he receives a list of terminals with details about each of them.

200 OK

STATUS: E0133 - Returned when terminal list is empty.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant not exist.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:50 GMT
Content-Length: 896

{
  "terminals" : {
    "content" : [ {
      "uuid" : "2b67dfec-361d-4655-b2db-be3f1bfabed2",
      "name" : "terminal_name",
      "merchantUUID" : "6b18c5af-b57b-4135-acee-cfd754c452aa",
      "terminalStatus" : "ACTIVE",
      "settlementCurrency" : "PLN",
      "default" : true,
      "3dsEnable" : true
    } ],
    "pageable" : {
      "sort" : {
        "empty" : true,
        "sorted" : false,
        "unsorted" : true
      },
      "offset" : 0,
      "pageNumber" : 0,
      "pageSize" : 20,
      "paged" : true,
      "unpaged" : false
    },
    "last" : true,
    "totalElements" : 1,
    "totalPages" : 1,
    "first" : true,
    "size" : 20,
    "number" : 0,
    "sort" : {
      "empty" : true,
      "sorted" : false,
      "unsorted" : true
    },
    "numberOfElements" : 1,
    "empty" : false
  },
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 34. Hateoas links
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

terminals.content.[].uuid

String

The terminal’s identifier in the database

terminals.content.[].name

String

The terminal’s name

terminals.content.[].merchantUUID

String

Merchant’s unique uuid in system

terminals.content.[].3dsEnable

Boolean

Is 3DS enabled for transaction. Enabled if true, is not enabled if false

terminals.content.[].terminalStatus

String

The terminals’s status (NEW - terminal is waiting for activation in Fenige system, ACTIVE - terminal is active, INACTIVE - terminal is not active)

terminals.content.[].default

Boolean

Is default terminal. Default if true, is not default if false

terminals.content.[].settlementCurrency

String

Settlement currency for terminal (in accordance with ISO-4217)

200 OK empty list
HTTP Response - STATUS: E0133
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:50 GMT
Content-Length: 150

{
  "merchantUuid" : "ff110f73-6948-47c4-aa10-1d0f1235b84a",
  "status" : "E0133",
  "message" : "List of Terminal is empty.",
  "httpStatus" : "OK"
}
Table 35. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

merchantUuid

String

The merchant’s identifier in the database

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:53:49 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "68c7b430-e026-4ffc-ba9e-9b0643be99a1"
}
Table 36. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 135
Date: Fri, 12 Apr 2024 07:53:50 GMT

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "ea610d12-39ee-4ba4-ba9d-b32a63a09f54"
}
Table 37. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0136
HTTP/1.1 404 Not Found
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:49 GMT
Content-Length: 146

{
  "status" : "E0136",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "693e26e9-3906-4f35-b14e-4bf72ba5e660"
}
Table 38. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:49 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "bbfa411e-e658-4a21-9713-87028669593b"
}
Table 39. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

5. Cards

5.1. Add card

POST /client/card Content Type: application/json, Authorization: Basic Auth
Using this method, we can create a new Card in Fenige Datacenter.
Cards in the Ecommerce system are stored securely and are assigned to the PSP object.
Each PSP (object you authenticate in API with) has access to store cards in separated secure database.

5.1.1. Request

HTTP Request
POST /client/card HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 149
Host: ecom-staging.fenige.pl

{
  "cardNumber" : "5453131785534417",
  "expirationDate" : "10/24",
  "firstName" : "John",
  "lastName" : "Doe",
  "email" : "john.doe@fenige.pl"
}
Table 40. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 41. Add Card request fields
Path Type Constraints Description

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expirationDate

String

@Must match the regular expression ^(0[1-9]|1[0-2])\/?([0-9]{2})$, @Must not be empty, @Must not be null

Expiration date of card mm/yy

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null, @Must not be empty

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null, @Must not be empty

Last name of cardholder

email

String

@Length must be between 1 and 128 inclusive, @Must be a well-formed email address, @Must not be blank, @Must not be null, @Must not be empty

Cardholder’s email

5.1.2. Response

Response status
Status Description

200 OK

Returned when terminal was successfully create.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

422 UNPROCESSABLE ENTITY

STATUS: E06007 - Returned when there was issue with internal Datacenter flow.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown. + STATUS: E06000 - Critical error occurred while connecting to Datacenter.

200 OK
HTTP Response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 88

{
  "cardId" : 1,
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 42. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

cardId

Number

Id numeric value of added card

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:47 GMT
Connection: close
Content-Length: 483

{
  "errors" : {
    "firstName" : [ "length must be between 2 and 35" ],
    "lastName" : [ "length must be between 2 and 35" ],
    "email" : [ "must be a well-formed email address" ],
    "cardNumber" : [ "invalid card number", "card number length must be between 12 and 19", "card number must be numeric" ],
    "expirationDate" : [ "invalid card expiration date" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "594100ae-03db-4a57-a37b-a6146587b6fa"
}
Table 43. Response fields
Path Type Description

errors.firstName

Array

First name validation error

errors.lastName

Array

Last name validation error

errors.email

Array

Email validation error

errors.cardNumber

Array

Card number validation error

errors.expirationDate

Array

Expiration date validation error

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:53:47 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "37c0f258-f4b9-49af-b927-d7170fe72bcb"
}
Table 44. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E06007
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 191

{
  "status" : "E06007",
  "message" : "Exception occurred while trying to add ecommerce card",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "88d36832-ceae-4e34-8385-d59d6433fdda"
}
Table 45. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:47 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "8dd1539e-c91d-44b3-b221-467e3f66dcf8"
}
HTTP Response - STATUS: E06000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 197

{
  "status" : "E06000",
  "message" : "Unrecognized error occurred while connection to Datacenter",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "c5eafccb-2d13-4624-86e9-e2eddf49db28"
}
Table 46. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

5.2. Get card

GET /client/card/{cardId} Content Type: application/json, Authorization: Basic Auth
This method can be use for fetch Card object by 'cardId' parameter.

5.2.1. Request

HTTP Request
GET /client/card/1 HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Host: ecom-staging.fenige.pl
Table 47. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 48. /client/card/{cardId}
Parameter Description

cardId

Id numeric value of card existing in database

5.2.2. Response

Response status
Status Description

200 OK

Returned when card was successfully fetched.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 308

{
  "cardId" : 1,
  "hiddenCardNumber" : "545313******4417",
  "firstName" : "John",
  "lastName" : "Doe",
  "email" : "john.doe@fenige.pl",
  "createdDate" : "2024-04-12T09:53:49.071Z",
  "lastModifiedDate" : "2024-04-12T09:53:49.071Z",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 49. Response fields
Path Type Description

hiddenCardNumber

String

Full cardholder’s masked card number must be between 12-digits and 19-digits

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

email

String

Cardholder’s email

createdDate

String

Card creation date

lastModifiedDate

String

Last card edit date

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

cardId

Number

Id numeric value of added card

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:53:47 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "37c0f258-f4b9-49af-b927-d7170fe72bcb"
}
Table 50. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

404 NOT FOUND
HTTP Response - STATUS: E06003
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 152

{
  "status" : "E06003",
  "message" : "Datacenter card not found",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "df04c877-4973-4822-9e74-37131c09d716"
}
Table 51. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:47 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "8dd1539e-c91d-44b3-b221-467e3f66dcf8"
}
HTTP Response - STATUS: E06000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 197

{
  "status" : "E06000",
  "message" : "Unrecognized error occurred while connection to Datacenter",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "c5eafccb-2d13-4624-86e9-e2eddf49db28"
}
Table 52. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

5.3. Update card

PUT /client/card Content Type: application/json, Authorization: Basic Auth
This method allows you to edit the details of a Card that has been added previously.
The request body requires a 'cardId' and any data set. All data is optional.

5.3.1. Request

HTTP Request
PUT /client/card HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 165
Host: ecom-staging.fenige.pl

{
  "cardId" : 1,
  "cardNumber" : "5453131785534417",
  "expirationDate" : "10/24",
  "firstName" : "John",
  "lastName" : "Doe",
  "email" : "john.doe@fenige.pl"
}
Table 53. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 54. Update Card request fields
Path Type Constraints Description

cardId

Number

@Must not be null, @Numeric value

Id numeric value of card existing in database

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expirationDate

String

@Must match the regular expression ^(0[1-9]|1[0-2])\/?([0-9]{2})$, @Must not be empty, @Must not be null

Expiration date of card mm/yy

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null, @Must not be empty

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null, @Must not be empty

Last name of cardholder

email

String

@Length must be between 1 and 128 inclusive, @Must be a well-formed email address, @Must not be blank, @Must not be null, @Must not be empty

Cardholder’s email

5.3.2. Response

Response status
Status Description

200 OK

Returned when card was successfully updated.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 88

{
  "cardId" : 1,
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 55. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

cardId

Number

Id numeric value of added card

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:47 GMT
Connection: close
Content-Length: 690

{
  "errors" : {
    "lastName" : [ "must match \"^[^0-9\\n]+$\"", "must not be blank", "length must be between 2 and 35", "must be null" ],
    "firstName" : [ "length must be between 2 and 35", "must match \"^[^0-9\\n]+$\"", "must be null", "must not be blank" ],
    "cardId" : [ "must not be null" ],
    "email" : [ "must be a well-formed email address", "must be null" ],
    "cardNumber" : [ "invalid card number", "card number must be numeric", "card number length must be between 12 and 19", "must be null" ],
    "expirationDate" : [ "invalid card expiration date" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "ab74c4b8-8904-4eaa-a857-5bc88f4e5f98"
}
Table 56. Response fields
Path Type Description

errors.cardId

Array

cardId validation error

errors.firstName

Array

First name validation error

errors.lastName

Array

Last name validation error

errors.email

Array

Email validation error

errors.cardNumber

Array

Card number validation error

errors.expirationDate

Array

Expiration date validation error

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:53:47 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "37c0f258-f4b9-49af-b927-d7170fe72bcb"
}
Table 57. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E06005
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 185

{
  "status" : "E06005",
  "message" : "Update of ecommerce card failed, card not found",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "71535b9f-09b6-44a6-a6f8-2bc9c27be7a7"
}
Table 58. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:47 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "8dd1539e-c91d-44b3-b221-467e3f66dcf8"
}
HTTP Response - STATUS: E06000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 197

{
  "status" : "E06000",
  "message" : "Unrecognized error occurred while connection to Datacenter",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "c5eafccb-2d13-4624-86e9-e2eddf49db28"
}
Table 59. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

5.4. Delete card

DELETE /client/card/{cardId} Content Type: application/json, Authorization: Basic Auth
This method is used to remove a card from the Datacenter database that is assigned to the PSP with which you have logged in.

5.4.1. Request

HTTP Request
DELETE /client/card/1 HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Host: ecom-staging.fenige.pl
Table 60. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 61. /client/card/{cardId}
Parameter Description

cardId

Id numeric value of card existing in database

5.4.2. Response

Response status
Status Description

200 OK

Returned when card was successfully removed.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 96

{
  "cardRemoved" : true,
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 62. Response fields
Path Type Description

cardRemoved

Boolean

Indicates is card was removed or not

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:53:47 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "37c0f258-f4b9-49af-b927-d7170fe72bcb"
}
Table 63. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E06004
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 185

{
  "status" : "E06004",
  "message" : "Delete of ecommerce card failed, card not found",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "6b6dbedd-15d3-4056-ad4d-e20c3c3c9138"
}
Table 64. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:47 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "8dd1539e-c91d-44b3-b221-467e3f66dcf8"
}
HTTP Response - STATUS: E06000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 197

{
  "status" : "E06000",
  "message" : "Unrecognized error occurred while connection to Datacenter",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "c5eafccb-2d13-4624-86e9-e2eddf49db28"
}
Table 65. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

6. Payment API

6.1. Currency rate

POST /client/payments/currency-rate Content Type: application/json, Authorization: Basic Auth
This method can be used for calculate Mastercard/Visa currency rates between two values depends on terminal and provider.
Notice that `higherRate` is used to transaction processing.

6.1.1. Request

Mastercard
HTTP request
POST /client/payments/currency-rate HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 124
Host: ecom-staging.fenige.pl

{
  "terminalUuid" : "b784fd27-9ebc-4ec9-b6da-98af790f597b",
  "provider" : "MASTERCARD",
  "from" : "USD",
  "to" : "PLN"
}
Table 66. CURRENCY RATE REQUEST FIELDS
Path Type Constraints Description

terminalUuid

String

@Must not be null

Terminal’s unique uuid in system

provider

String

@Must not be null

VISA or MASTERCARD or MAESTRO

from

String

@Must not be null

Currency code for conversion

to

String

@Must not be null

Target currency of conversion

VISA
HTTP request
POST /client/payments/currency-rate HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 118
Host: ecom-staging.fenige.pl

{
  "terminalUuid" : "b784fd27-9ebc-4ec9-b6da-98af790f597b",
  "provider" : "VISA",
  "from" : "USD",
  "to" : "PLN"
}
Table 67. CURRENCY RATE REQUEST FIELDS
Path Type Constraints Description

terminalUuid

String

@Must not be null

Terminal’s unique uuid in system

provider

String

@Must not be null

VISA or MASTERCARD or MAESTRO

from

String

@Must not be null

Currency code for conversion

to

String

@Must not be null

Target currency of conversion

6.1.2. Response

200 OK
HTTP Response - STATUS: S0000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 129

{
  "lowerRate" : 0.88000011,
  "higherRate" : 0.89801726,
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 68. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

lowerRate

Number

Lower currency rate

higherRate

Number

Higher currency rate used for process transaction

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "5ff6d6b4-ec40-4b95-9190-08639afba473"
}
Table 69. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "33812294-415c-4099-8fb2-d6310db2e71e"
}
Table 70. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

6.2. Currency for card

POST /client/currency-for-card Content Type: application/json, Authorization: Basic Auth
Method is used to determine currencies applied for given card. If merchant has stored card in DataCenter can you use this method by cardId rather than cardNumber.

6.2.1. Request

Plain card Mastercard
Table 71. CURRENCY FOR CARD REQUEST FIELDS
Path Type Constraints Description

cardNumber

String

@Card number length must be between 12 and 19, @Luhn, @Must not be blank, @Must not be null

Card number

HTTP request
POST /client/currency-for-card HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 39
Host: ecom-staging.fenige.pl

{
  "cardNumber" : "5575168861324712"
}
Table 72. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Plain card Visa
Table 73. CURRENCY FOR CARD REQUEST FIELDS
Path Type Constraints Description

cardNumber

String

@Card number length must be between 12 and 19, @Luhn, @Must not be blank, @Must not be null

Card number

HTTP request
POST /client/currency-for-card HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 39
Host: ecom-staging.fenige.pl

{
  "cardNumber" : "4761340000000050"
}
Table 74. Request headers
Name Description

Authorization

Basic auth credentials for PSP

DataCenter card
Table 75. CURRENCY FOR CARD REQUEST FIELDS
Path Type Constraints Description

cardId

Number

@Must not be null, @Numeric

DataCenter card id.

HTTP request
POST /client/currency-for-card HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 18
Host: ecom-staging.fenige.pl

{
  "cardId" : 1
}
Table 76. Request headers
Name Description

Authorization

Basic auth credentials for PSP

6.2.2. Response

Response status
Status Description

200 OK

STATUS: S0000 Returned when SUCCESS.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

422 UNPROCESSABLE ENTITY

STATUS: E0401 - Issuer card is not supported.

500 INTERNAL SERVER ERROR

STATUS: E0400 - Returned when failed to get currency for card.

200 OK
HTTP Response - STATUS: S0000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 207

{
  "defaultCurrency" : "PLN",
  "currencyCodes" : [ "PLN", "EUR", "USD" ],
  "provider" : "MASTERCARD",
  "countryCodeNumeric" : "616",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 199

{
  "defaultCurrency" : "UNDEFINED",
  "currencyCodes" : [ "UNDEFINED" ],
  "provider" : "VISA",
  "countryCodeNumeric" : "616",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 173

{
  "defaultCurrency" : "UNDEFINED",
  "currencyCodes" : [ "UNDEFINED" ],
  "provider" : "MASTERCARD",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 77. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

currencyCodes

Array

Currencies supported by card

defaultCurrency

String

Default currency code for card

provider

String

Card’s provider: MASTERCARD, MAESTRO, VISA, UNKNOWN

countryCodeNumeric

String

Country code numeric for Mastercard/Visa:

- ISO 3166-1 Numeric

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:54 GMT
Connection: close
Content-Length: 214

{
  "errors" : {
    "cardNumber" : [ "must not be blank", "must not be null", "must not be empty" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "ff18f8df-d005-40ed-a258-40c14c6c9860"
}
Table 78. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "ce51144c-41a5-40af-abd7-11d40f648389"
}
Table 79. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E8002
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json;charset=UTF-8
Content-Length: 168

{
"status": "E0401",
"message": "Issuer card is not supported",
"httpStatus": "UNPROCESSABLE_ENTITY",
"traceId": "cf77afc8-f41b-425c-ab6a-de4eb9a69136",
"links" : [ ]
}
Table 80. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:53 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "f5db22b3-24bf-423e-8e50-bbac42cd5bcb"
}
Table 81. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

6.3. Card provider

POST /client/card/provider Content Type: application/json, Authorization: Basic Auth
    This method is used to check the card provider, for example: VISA or MASTERCARD. If merchant has stored card in DataCenter can you use this method by cardId rather than
cardNumber.

6.3.1. Request

Plain card
Table 82. Request fields
Path Type Constraints Description

cardNumber

String

@Card number length must be between 12 and 19, @Luhn, @Must not be blank, @Must not be null

PAN card number

HTTP request
POST /client/card/provider HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 39
Host: ecom-staging.fenige.pl

{
  "cardNumber" : "5117964247989169"
}
Table 83. Request headers
Name Description

Authorization

Basic auth credentials for PSP

DataCenter card
Table 84. Request fields
Path Type Constraints Description

cardId

Number

@Must not be null, @Numeric

DataCenter card id.

HTTP request
POST /client/card/provider HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 20
Host: ecom-staging.fenige.pl

{
  "cardId" : 231
}
Table 85. Request headers
Name Description

Authorization

Basic auth credentials for PSP

6.3.2. Response

200 OK
HTTP Response - STATUS: S0000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 101

{
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK",
  "provider" : "MASTERCARD"
}
Table 86. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

provider

String

Card’s provider: MASTERCARD, MAESTRO, VISA, UNKNOWN

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "f0a12581-0f6c-40fe-9da4-ceaf577ea0b6"
}
Table 87. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "574eb634-ab11-4847-bae7-5b8797b8aab8"
}
Table 88. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E90002
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 156

{
  "status" : "E9002",
  "message" : "Error mpi connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "ee9ee39a-3f07-40d5-a7a5-0107b30eaae7"
}
Table 89. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

6.4. Payment

POST /client/payments/auth Content Type: application/json, Authorization: Basic Auth
The method is used to charge the cardholder.
Using this method, we can authorize and process entire transaction. This method supports both 3DS and without 3DS transactions. You can also use this method using the outside 3ds authorization.
How the transaction will be initiated depends on the terminal settings (look at 'is3dsEnable' field).
This endpoint is idempotent so if you execute more than one requests with the same data even at the same time, only first registered transaction will be processed further. In
response, we receive transaction status.
Merchant has the ability to make a payment for goods which causes the cardholder to be debited in the currency of purchase, terminal or card currency based on the parameters provided: currency of transaction, different currency terminals held and currencies supported by the card.
The optional terminalUuid field provided during any of the authorisation methods forces the card to be debited in the currency of the terminal specified if the purchase currency is different from the terminal currency a currency conversion will take place.
The Fenige Payment API methods optionally allows merchants to store card data and sensitive personal data in order to allow performing subsequent transactions.
If merchant decides to use DataCenter transaction flow then is required to provide the card id of the card previously stored in the Fenige DataCenter, from which card the
relevant required parameters will be downloaded and used for authorization.
Card data and sensitive personal data according to the Fenige API specification are: cardNumber, expiryDate, firstName, lastName and email.
All card data are stored securely on Fenige DataCenter servers in accordance with applicable security requirements.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

Since October 2022, there is enabled feature for resolving PENDING status of transaction. Ecommerce system now measure time of processing transaction and rejects transaction which processing time exceeded. Default processing time is set as 120 seconds and in order to change this parameter please contact Fenige Sales Department. If transaction was sent to Mastercard/Visa and processing times up, then Fenige automatically makes reversal for this transaction.

Mastercard and Visa requires for intra-European Economic Area (EEA), plus United Kingdom, for which EMV 3DS must be used subsequent to a valid authorization soft decline DE39=65 (Mastercard)/1A(Visa).To perform a transaction for which the card has previously received CODE_65(Mastercard)/CODE_1A(Visa), the transaction must be processed with full EMV 3DS (3DS 2.x) and the authentication status must be 'Y'.

Correct flow:

  • 3DS 2.x → Challenge → Authentication status Y → Transaction (Recommended)

  • 3DS 2.x(Authentication status A) → Transaction → CODE_65/CODE_1A → 3DS 2.x → Challenge → Authentication status Y → Transaction (Recommended)

  • non3DS → Transaction → CODE_65/CODE_1A → 3DS 2.x → Challenge → Authentication status Y → Transaction (Available only to selected merchants)

When performing authorization, remember that there are currencies with different number of decimal places. For example: VND has no pennies and KWD has three decimal places. Please take this into account in the Amount field. For more information on other currencies, see ISO 4217.

soft decline Code 65 EMV 3DS
E-commerce payment with outside 3DS flow
ecommerce trx flow with outside3ds
E-commerce payment with DataCenter and outside 3DS flow
ecommerce datacenter trx flow
E-commerce payment flow
ecommerce trx flow
E-commerce payment with DataCenter card flow
ecommerce data center trx flow

6.4.1. Request

Request - outside 3DS 2.X
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 866
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "93248239-fd2b-43eb-80af-550f61f0fad3",
  "requestUuid" : "4e499d6e-f5a1-4ca7-83d2-b1cae8f4ffb5",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY",
  "postalCode" : "24-110"
}
Table 90. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 91. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters, @Must match regular expression: \d+

Cardholder’s card cvc2

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

Cardholder Authentication Verification Value.

outside3ds.transactionXId

String

Server transaction Id generated by DS. Required for 3DS 2.x version. The transactionXId is the field that defines the 3DS version. The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x. TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 00 or 01 or 02 or 05 or 06 or 07, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. More info.

outside3ds.authenticationStatus

String

@Must match Y or A or U, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt. U - (Technical or other problem) - No liability shift, consider whether to proceed with the transaction

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

Request - outside 3DS 2.X with forced terminal
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 925
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "93248239-fd2b-43eb-80af-550f61f0fad3",
  "terminalUuid" : "9f4054f0-197b-4869-92a9-f60f7946a268",
  "requestUuid" : "485ff4b0-8728-4a19-be76-124b6b43f3ea",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY",
  "postalCode" : "24-110"
}
Table 92. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 93. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

terminalUuid

String

Request’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters, @Must match regular expression: \d+

Cardholder’s card cvc2

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

Cardholder Authentication Verification Value. The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 00 or 01 or 02 or 05 or 06 or 07, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. More info.

outside3ds.authenticationStatus

String

@Must match Y or A or U, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt. U - (Technical or other problem) - No liability shift, consider whether to proceed with the transaction

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03.

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

Request
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 655
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "7abe2d33-f46c-434f-a60d-2520a389a000",
  "requestUuid" : "e5261ec0-bfae-4baa-a87e-56a1e9fd1dfe",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY",
  "postalCode" : "24-110"
}
Table 94. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 95. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters, @Must match regular expression: \d+

Cardholder’s card cvc2

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

Request - forced Terminal
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 714
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "93248239-fd2b-43eb-80af-550f61f0fad3",
  "terminalUuid" : "7a2c8c4b-93cb-4ebb-ab92-f4768e691537",
  "requestUuid" : "ec635747-abb0-4450-8a4e-d0a3f5681b49",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "postalCode" : "24-110",
  "province" : "NY"
}
Table 96. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 97. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters, @Must match regular expression: \d+

Cardholder’s card cvc2

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

terminalUuid

String

Terminals’s unique uuid in system

Request - DataCenter card
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 744
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "a9d4285a-4bd4-43f8-8e1a-3133a9577524",
  "requestUuid" : "b019446b-04c8-463c-9bd4-bc8424579e89",
  "amount" : 1000,
  "currency" : "USD",
  "cardId" : 1906455,
  "cvc2" : "123",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY",
  "postalCode" : "24-110"
}
Table 98. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 99. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardId

Number

@Must not be null, @Numeric

DataCenter card id. Required to obtain card information data from DataCenter such as (cardNumber, expiryDate, firstName, lastName, email)

cvc2

String

@Optional only for Google pay, @Length must be 3 characters, @Must match regular expression: \d+

Cardholder’s card cvc2

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

Cardholder Authentication Verification Value. The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. Chargeback protection applies.

outside3ds.authenticationStatus

String

@Must match Y or A, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

6.4.2. Response

Response status
Status Description

200 OK

Returned when transaction was successfully authorized.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant is not existing.

STATUS: E0132 - Returned when terminal is not existing.

STATUS: E0135 - Returned when terminal for merchant not exist or all of them are inactive.

STATUS: E0137 - Returned when there is not terminal marked as default

STATUS: E06003 - Returned when DataCenter card was not found.

422 UNPROCESSABLE ENTITY

STATUS: E0150 - Returned when transaction is rejected.

STATUS: E0151 - Returned when transaction is rejected, because currency is not supported.

STATUS: E0152 - Returned when transaction is rejected, because issuer is not supported.

STATUS: E01580 - Returned when transaction is rejected, because DataCenter card was expired.

STATUS: E01581 - Returned when transaction is rejected, because not found Card Authentication (3DS 2.X)

STATUS: E01582 - Returned when transaction is rejected, because Card Authentication not match to transaction type (3DS 2.X)

STATUS: E0159 - Returned when transaction is rejected, because restricted transaction amount has occurred

STATUS: E01594 - Returned when transaction is rejected, because transactionXId parameter had registered for another transaction

STATUS: E01596 - Returned when transaction is rejected, because terminal has blocked transaction with card issued in restricted country

STATUS: E01597 - Returned when transaction is rejected, because 3DS version of terminal are not compatible with 3DS version defined in request

STATUS: E01600 - Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request

STATUS: E01601 - Returned when transaction is rejected, because terminal is blocked for provider

STATUS: E01602 - Transaction rejected, geographic scope is not permitted for this transaction

STATUS: E01607 - Transaction rejected, internal server error during authorization request generation

STATUS: E10000 - Transaction rejected, terminal daily card transaction limit exceeded

STATUS: E10001 - Transaction rejected, terminal daily transaction limit exceeded

STATUS: E10002 - Transaction rejected, terminal monthly transaction limit exceeded

STATUS: E0200 - Returned when transaction is rejected, because card is blocked in Fenige System

STATUS: E0201 - Returned when transaction is rejected, because BIN is blocked in Fenige System

STATUS: E0202 - Returned when transaction is rejected, because Terminal is blocked in Fenige System

STATUS: E0204 - Returned when transaction is rejected, because user’s personal data was found on AML (sanctions) list

STATUS: E0205 - Returned when transaction is rejected, because Bank is blocked in Fenige System

STATUS: E0206 - Returned when transaction is rejected, because to many reject transactions and card is blocked

STATUS: E0207 - Returned when transaction is rejected, bacause to many attempts declined and card is blocked

STATUS: E0208 - Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

STATUS: E0209 - Returned when sender or receiver name contains fraudulent phrase

STATUS: E0210 - Returned when sender has suspicious name

STATUS: E0211 - Returned when transaction is rejected, because card country is blocked in Fenige System.

STATUS: E11000 - Returned when transaction processing time set by terminal was exceeded

STATUS: E13000 - Returned when transaction risk score was exceeded

500 INTERNAL SERVER ERROR

STATUS: E0153 - Returned when transaction is declined, by problem with MIP connection.

STATUS: E01599 - Transaction declined, processing timeout.

STATUS: E0142 - Returned when commission configuration is not added for terminal.

STATUS: E0190 - Returned when currency rate is invalid.

STATUS: E9000 - Returned when reason is unknown.

503 SERVICE UNAVAILABLE

STATUS: E9001 - Returned when is error acquirer connection.

STATUS: E9002 - Returned when is error mpi connection.

STATUS: E9010 - Returned when is error DataCenter connection.

STATUS: E9011 - Returned when is error Limit connection.

200 OK
HTTP Response - transaction without 3DS and with outside3DS
{
  "requestUuid" : "78c40430-c105-4b94-9a30-66681204b34e",
  "transactionStatus" : "APPROVED",
  "responseCode" : "CODE_00",
  "status" : "S0002",
  "message" : "Success transaction",
  "httpStatus" : "OK"
}
Table 100. Response fields
Path Type Description

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

responseCode

String

Response code

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:09 GMT
Connection: close
Content-Length: 478

{
  "errors" : {
    "expiryDate" : [ "invalid card expiration date" ],
    "firstName" : [ "must not be null", "must not be blank" ],
    "lastName" : [ "must not be blank", "must not be null" ],
    "amount" : [ "must not be null" ],
    "merchantUuid" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "currency" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "47911238-1fa8-4d5c-b06b-1b2fc948b453"
}
Table 101. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:09 GMT
Connection: close
Content-Length: 478

{
  "errors" : {
    "expiryDate" : [ "invalid card expiration date" ],
    "firstName" : [ "must not be null", "must not be blank" ],
    "lastName" : [ "must not be blank", "must not be null" ],
    "amount" : [ "must not be null" ],
    "merchantUuid" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "currency" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "47911238-1fa8-4d5c-b06b-1b2fc948b453"
}
Table 102. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E8000 - DataCenter Bad Request
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:09 GMT
Connection: close
Content-Length: 679

{
  "errors" : {
    "expiryDate" : [ "Card id was provided, expiryDate is obtained from data center card: 1906455" ],
    "lastName" : [ "Card id was provided, lastName is obtained from data center card: 1906455" ],
    "firstName" : [ "Card id was provided, firstName is obtained from data center card: 1906455" ],
    "cardId" : [ "Please provide cardId for DATACENTER transaction or fields: cardNumber, expiryDate, firstName, lastName for PLAIN transaction" ],
    "cardNumber" : [ "Card id was provided, cardNumber is obtained from data center card: 1906455" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "72a847a8-88d8-4df5-9936-7c60dad692d8"
}
Table 103. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:53:09 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "5664fb84-ed81-443c-ab6c-189ab8ddb5cf"
}
Table 104. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 135
Date: Fri, 12 Apr 2024 07:53:10 GMT

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "be8e3768-e289-43c5-8490-f102942519eb"
}
Table 105. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "d4c254c2-ee6e-4a7d-98b3-dbba986c0b55"
}
HTTP Response - STATUS: E0132
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0132",
  "message" : "Terminal not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "4715dcd6-1692-4400-a1cf-ae5f4c4e1705"
}
Table 106. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

HTTP Response - STATUS: E0135
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 163

{
  "status" : "E0137",
  "message" : "Default terminal not exist",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "34bd02d0-da98-4511-9783-6a25fcb228e7"
}
Table 107. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

HTTP Response - STATUS: E0137
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 159

{
  "status" : "E0135",
  "message" : "Terminals for merchant not exists",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "268783c5-cf98-4291-bc61-3fad8fc274e7"
}
Table 108. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

HTTP Response - STATUS: E06003
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 246

{
  "requestUuid" : "c4d3ba13-0500-41c6-8051-32a9a74cb1f6",
  "transactionStatus" : "REJECTED",
  "status" : "E06003",
  "message" : "Datacenter card not found",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "14abb331-5e6b-4ce8-b266-29ffdb51f6e1"
}
Table 109. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E0150
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 251

{
  "requestUuid" : "bc34cf33-90db-4a54-9b8b-7c54e0c981c1",
  "transactionStatus" : "REJECTED",
  "status" : "E0150",
  "message" : "Transaction rejected",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "54add448-1315-4b6e-b96f-4b252f46512e"
}
HTTP Response - STATUS: E0151
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 275

{
  "requestUuid" : "9b661b5a-1544-474f-b18e-674935cd32a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0151",
  "message" : "Transaction rejected, currency not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "040e6d3c-1113-40c9-8744-cbda628934b3"
}
HTTP Response - STATUS: E0152
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "e3543a58-6912-4531-b950-953aaf5bcf36",
  "transactionStatus" : "REJECTED",
  "status" : "E0152",
  "message" : "Transaction rejected, issuer card not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a0248da8-a2d7-4a98-a6ea-bca4f0b20f13"
}
HTTP Response - STATUS: E01580
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 270

{
  "requestUuid" : "0e57d50e-a518-49b4-96f9-a5bf50e7686f",
  "transactionStatus" : "REJECTED",
  "status" : "E01580",
  "message" : "Transaction rejected. Card is expired.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "568cafe3-6f3a-4bd7-a552-349c7d0c5a27"
}
HTTP Response - STATUS: E0159
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "5c403813-5d75-4baf-99d7-53df586d976d",
  "transactionStatus" : "REJECTED",
  "status" : "E0159",
  "message" : "Transaction rejected, restricted transaction amount has occurred",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "6faa90c1-94e7-40f3-9635-480be0a619cd"
}
HTTP Response - STATUS: E0201
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 267

{
  "requestUuid" : "c713808e-d759-4524-84db-834b0efdf8fe",
  "transactionStatus" : "REJECTED",
  "status" : "E0201",
  "message" : "Transaction rejected, bin is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "c56f60b3-bfa5-4c90-aaf2-bb7cafa194c7"
}
HTTP Response - STATUS: E0202
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "a9742a55-a654-49c7-82ca-db423af9bd72",
  "transactionStatus" : "REJECTED",
  "status" : "E0202",
  "message" : "Transaction rejected, terminal is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "41f43cf3-c03d-4273-8f2e-d5804ac07d51"
}
HTTP Response - STATUS: E0204
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "0a8923d2-e931-45bb-9dd0-1a9060f75746",
  "transactionStatus" : "REJECTED",
  "status" : "E0204",
  "message" : "Transaction rejected, user is on aml list",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "03e9b393-30ed-4f93-b765-8125cf854aa6"
}
HTTP Response - STATUS: E0205
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 268

{
  "requestUuid" : "25bc90f8-d2c8-45a1-b69f-0be49f4a939b",
  "transactionStatus" : "REJECTED",
  "status" : "E0205",
  "message" : "Transaction rejected, bank is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "1a63ef18-c863-4d83-820e-ae19c89cf949"
}
HTTP Response - STATUS: E0206
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 301

{
  "requestUuid" : "bb4938b8-846f-4cfc-a28e-78f0e6e77fd4",
  "transactionStatus" : "REJECTED",
  "status" : "E0206",
  "message" : "Transaction rejected, too many reject transactions and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "30b927ef-107e-4055-bdbe-91a24a36d038"
}
HTTP Response - STATUS: E0207
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 299

{
  "requestUuid" : "3075fac0-e809-49e2-87e1-6dee6cb7a9a3",
  "transactionStatus" : "REJECTED",
  "status" : "E0207",
  "message" : "Transaction rejected, too many attempts declined and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "561c5e91-7480-43cf-b053-3169db8a8312"
}
HTTP Response - STATUS: E0208
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "24e8d8d8-f378-4815-b24f-b3d8d1cf6e66",
  "transactionStatus" : "REJECTED",
  "status" : "E0208",
  "message" : "Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "438befca-901b-45b8-89fe-0848b1f3bfb0"
}
HTTP Response - STATUS: E0209
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 292

{
  "requestUuid" : "6ec22cc7-933a-424a-83ac-bb44d006c386",
  "transactionStatus" : "REJECTED",
  "status" : "E0209",
  "message" : "Transaction rejected, sender name contains fraudulent phrase.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "9ea074b2-5161-461a-a648-d8617d3b3480"
}
HTTP Response - STATUS: E0210
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 276

{
  "requestUuid" : "42015cb5-cef4-44c0-8fdf-24bbaf0da6a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0210",
  "message" : "Transaction rejected, suspicious sender name.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "4ba0fc1b-5bb7-4ab9-98bd-cd9973044193"
}
HTTP Response - STATUS: E0211
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 277

{
  "requestUuid" : "60d174a3-f42c-4a58-a7a4-7e7d52c34350",
  "transactionStatus" : "REJECTED",
  "status" : "E0211",
  "message" : "Transaction rejected, card country restricted.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f945abac-c057-4a64-b722-d122308387f9"
}
HTTP Response - STATUS: E01594
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 317

{
  "requestUuid" : "b6ad76e6-c73d-40d6-beea-f876abf2f062",
  "transactionStatus" : "REJECTED",
  "status" : "E01594",
  "message" : "Transaction rejected, transactionXId parameter had registered for another transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "b4de3999-032d-4083-8a55-6fbc366504fb"
}
HTTP Response - STATUS: E01596
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "f9913fc5-d2bd-4748-af84-bf395f6f856d",
  "transactionStatus" : "REJECTED",
  "status" : "E01596",
  "message" : "Transaction rejected, terminal blocks transactions with card issued in given card country",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "77e67815-1a5b-40e9-bc14-4a5b026bb0d2"
}
HTTP Response - STATUS: E01597
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 369

{
  "requestUuid" : "636444e5-d118-46bc-87c1-4fe3a7136c3a",
  "transactionStatus" : "REJECTED",
  "status" : "E01597",
  "message" : "Transaction rejected, 3DS version of terminal are not compatible with 3DS version defined in request. Please contact the sales department",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2ddc9c61-b90a-46d4-bd7f-9cabfcf8a155"
}
HTTP Response - STATUS: E01607
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 315

{
  "requestUuid" : "8bd0d3fa-9666-420f-8638-d1d955510e1d",
  "transactionStatus" : "REJECTED",
  "status" : "E01607",
  "message" : "Transaction rejected, internal server error during authorization request generation",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "72b4f3b5-e46c-4428-a16e-b392a174bb1e"
}
HTTP Response - STATUS: E01598
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 298

{
  "requestUuid" : "8ad7b6e4-0729-4861-8c86-5beece64f548",
  "transactionStatus" : "REJECTED",
  "status" : "E01598",
  "message" : "Transaction rejected, ECI value is not available for card provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "6d4ca2a8-6712-47df-8f27-dc27129636e8"
}
Table 110. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E0200
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 381

{
  "requestUuid" : "e8166156-3f78-4f32-93bb-b4e9939437ef",
  "transactionStatus" : "REJECTED",
  "cardBlockadeAdditionalData" : {
    "blockType" : "TEMP",
    "blockedUntil" : "2022-11-01T12:51:32.000"
  },
  "status" : "E0200",
  "message" : "Transaction rejected, card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "24cd9e93-ec68-44e7-94b7-c7f2f7cdf1f6"
}
Table 111. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

cardBlockadeAdditionalData.blockType

String

Block type. Possible values: TEMP - temporary, PERMANENT - permanent.

cardBlockadeAdditionalData.blockedUntil

String

Date until card will be blocked in yyyy-MM-ddThh-mm-ss.SSS format.

HTTP Response - STATUS: E01600
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 326

{
  "requestUuid" : "996626c8-f66b-4cc4-9e9e-62494e6c0c5e",
  "transactionStatus" : "REJECTED",
  "status" : "E01584",
  "message" : "Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "238ba9fd-2bbb-4995-b00c-9f9e256b3fcf"
}
Table 112. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01601
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 286

{
  "requestUuid" : "c2393be1-bda9-4f99-adf9-e0f330a95370",
  "transactionStatus" : "REJECTED",
  "status" : "E01601",
  "message" : "Transaction rejected, terminal is blocked for provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2b50f06b-714b-4853-9f05-6eeb71a92d54"
}
Table 113. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01602
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 308

{
  "requestUuid" : "590f245a-b5fc-4248-a7d1-b6a11a8aa6f2",
  "transactionStatus" : "REJECTED",
  "status" : "E01602",
  "message" : "Transaction rejected, geographic scope is not permitted for this transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a322d0ba-6caa-42c9-b260-2f3e9c6bc7cd"
}
Table 114. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E10000
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 300

{
  "requestUuid" : "72e398e4-9039-4b03-8fb9-a23de2c43033",
  "transactionStatus" : "REJECTED",
  "status" : "E10000",
  "message" : "Transaction rejected, terminal daily card transaction limit exceeded",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "b5e14efc-95e5-42b9-b220-92e03973124e"
}
Table 115. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E10001
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "0549e5fd-edf3-4d28-8617-b9018c48ca30",
  "transactionStatus" : "REJECTED",
  "status" : "E10001",
  "message" : "Transaction rejected, terminal daily transaction limit exceeded",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a2e62345-0203-4e17-88db-bb464365260b"
}
Table 116. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E10002
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 297

{
  "requestUuid" : "7c1c0c3f-f1c4-4fd9-8954-16578d78f98b",
  "transactionStatus" : "REJECTED",
  "status" : "E10002",
  "message" : "Transaction rejected, terminal monthly transaction limit exceeded",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "132d588c-7903-4c56-a70b-a14b74f3437f"
}
Table 117. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E13000
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "97458d20-a50e-45cc-bbfb-54f6c00abd34",
  "transactionStatus" : "REJECTED",
  "status" : "E13000",
  "message" : "Transaction rejected, risk score exceeded",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "101287fc-32fa-4420-8dae-4b6edd43a853"
}
500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0142
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 183

{
  "status" : "E0142",
  "message" : "Commission configuration not add for terminal",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "f4942ea2-bede-41d9-a403-fee4b300df90"
}
HTTP Response - STATUS: E0153
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 280

{
  "requestUuid" : "393e0244-1c15-4e34-a743-747ef085aceb",
  "transactionStatus" : "PENDING",
  "status" : "E0153",
  "message" : "Transaction declined, problem with MIP connection",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "53dd5d09-f7fc-4ece-a4b4-fce7a452877f"
}
HTTP Response - STATUS: E01599
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "cf30fbe0-40fa-4e25-b8f9-8a561a626ff3",
  "transactionStatus" : "DECLINED",
  "status" : "E01599",
  "message" : "Transaction declined, processing timeout",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "04e45ef3-53dd-4a7e-b5ff-747258e31de7"
}
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "6a287595-9242-46e1-82f0-bbd30f00c309"
}
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:47 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "8dd1539e-c91d-44b3-b221-467e3f66dcf8"
}
HTTP Response - STATUS: E9008
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 265

{
  "requestUuid" : "e85cf3c2-6067-4b72-85ff-eccb2e782c96",
  "transactionStatus" : "DECLINED",
  "status" : "E9008",
  "message" : "Error mpi - 3ds initialize failed",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "5dda0c4c-d3fc-47d7-a8b1-70e9d8ef874e"
}
Table 118. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:53 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "f5db22b3-24bf-423e-8e50-bbac42cd5bcb"
}
HTTP Response - STATUS: E9002
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 250

{
  "requestUuid" : "789cefa9-6e7a-4649-80ee-7d02d6896c97",
  "transactionStatus" : "DECLINED",
  "status" : "E9002",
  "message" : "Error mpi connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "1e010a52-2342-4875-b9c5-263f6c2dffa2"
}
HTTP Response - STATUS: E9010
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 258

{
  "requestUuid" : "65eb86b9-c472-4bd9-bcf8-66d833ff192a",
  "transactionStatus" : "REJECTED",
  "status" : "E9010",
  "message" : "Error data center connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "8757917f-6a71-4f23-8fdb-196c6dcfaa5b"
}
HTTP Response - STATUS: E9011
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 249

{
  "requestUuid" : "68d13c5a-7c2f-497e-8027-3cd22b8b8d6c",
  "transactionStatus" : "ERROR",
  "status" : "E9011",
  "message" : "Error limit connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "f933d3eb-9b21-4585-9aa0-163bc7c329d7"
}
Table 119. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

6.5. MO/TO payment

POST /client/payments/moto/auth Content Type: application/json, Authorization: Basic Auth
MO/TO is a type of transaction where the customer makes a purchase in the merchant's shop by phone or e-mail. All required transactional data are obtained through a call to
the merchant's consultant and sensitive data, e.g. by typing cvc, expiry date, card number on the phone keypad.
The MO/TO transaction has two possible types of authentication: CVC (using the card's cvc) or AVS (using the cardholder's address - postcode and address e.g. house number).
Merchant has the ability to make a payment for goods which causes the cardholder to be debited in the currency of purchase, terminal or card currency based on the parameters provided: currency of transaction, different currency terminals held and currencies supported by the card.
The optional terminalUuid field provided during any of the authorisation methods forces the card to be debited in the currency of the terminal specified if the purchase currency is different from the terminal currency a currency conversion will take place.
The Fenige Payment API methods optionally allows merchants to store card data and sensitive personal data in order to allow performing subsequent transactions.
If merchant decides to use DataCenter transaction flow then is required to provide the card id of the card previously stored in the Fenige DataCenter, from which card the
relevant required parameters will be downloaded and used for authorization.
Card data and sensitive personal data according to the Fenige API specification are: cardNumber, expiryDate, firstName, lastName and email.
All card data are stored securely on Fenige DataCenter servers in accordance with applicable security requirements.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

When performing authorization, remember that there are currencies with different number of decimal places. For example: VND has no pennies and KWD has three decimal places. Please take this into account in the Amout field. For more information on other currencies, see ISO 4217.

MO/TO payment with outside 3DS flow
ecommerce moto with outside3ds trx flow
MO/TO payment with DataCenter and outside 3DS flow
ecommerce moto data center trx with outside3ds flow
MO/TO payment flow
ecommerce moto trx flow
MO/TO payment with DataCenter flow
ecommerce moto data center trx flow

6.5.1. Request

MO/TO CVC
HTTP Request
POST /client/payments/moto/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 677
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "7abe2d33-f46c-434f-a60d-2520a389a000",
  "requestUuid" : "01f0d1e7-1a76-49f6-9d37-03c1b8b850fe",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "motoType" : "CVC",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY",
  "postalCode" : "24-110"
}
Table 120. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 121. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

cvc2

String

@Length must be 3 characters, @Must not be null when MO/TO CVC @Must match regular expression: \d+

Cardholder’s card cvc2. Required only when moto verification type (motoType) is set to CVC value

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

motoType

String

@Must not be null

Allows to switch between CVC and AVS (Address Verification) methods of authentication

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

MO/TO CVC - forced Terminal
HTTP Request
POST /client/payments/moto/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 736
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "de992fcb-7163-40a8-9a2f-2aff4b3abb25",
  "terminalUuid" : "c3bc9720-f847-436f-bee0-4d902b847c6c",
  "requestUuid" : "4a434cfe-4b81-4ece-8119-bf5f2841748e",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "motoType" : "CVC",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "postalCode" : "24-110",
  "province" : "NY"
}
Table 122. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 123. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

terminalUuid

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Terminals’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

cvc2

String

@Length must be 3 characters, @Must not be null when MO/TO CVC @Must match regular expression: \d+

Cardholder’s card cvc2. Required only when moto verification type (motoType) is set to CVC value

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

motoType

String

@Must not be null

Allows to switch between CVC and AVS (Address Verification) methods of authentication

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

MO/TO AVS
HTTP Request
POST /client/payments/moto/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 690
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "7abe2d33-f46c-434f-a60d-2520a389a000",
  "requestUuid" : "e9ce2f09-249b-4a36-b7d1-2b6bef21dffb",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "email" : "test@fenige.pl",
  "motoType" : "AVS",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "clientPostalCode" : "24-110",
  "clientAddress" : "5",
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY"
}
Table 124. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 125. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

motoType

String

@Must not be null

Allows to switch between CVC and AVS (Address Verification) methods of authentication

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

clientPostalCode

String

@Length must be between 1 and 10 inclusive, @Must not be blank, @Must not be null when AVS

Client postal code required in AVS service to authorize cardholder in bank issuer during MO/TO transaction

clientAddress

String

@Must not be null when AVS

Client address (e.g. house number) required in AVS service to authorize cardholder in bank issuer during MO/TO transaction

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

MO/TO AVS - forced Terminal
HTTP Request
POST /client/payments/moto/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 749
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "de992fcb-7163-40a8-9a2f-2aff4b3abb25",
  "terminalUuid" : "c3bc9720-f847-436f-bee0-4d902b847c6c",
  "requestUuid" : "b7e17fc9-c6f0-4fed-9295-5686ed16d100",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "email" : "test@fenige.pl",
  "motoType" : "AVS",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "clientPostalCode" : "24-110",
  "clientAddress" : "5",
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY"
}
Table 126. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 127. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

terminalUuid

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Terminals’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

motoType

String

@Must not be null

Allows to switch between CVC and AVS (Address Verification) methods of authentication

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

clientPostalCode

String

@Length must be between 1 and 10 inclusive, @Must not be blank, @Must not be null when AVS

Client postal code required in AVS service to authorize cardholder in bank issuer during MO/TO transaction

clientAddress

String

@Must not be null when AVS

Client address (e.g. house number) required in AVS service to authorize cardholder in bank issuer during MO/TO transaction

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

Request - DataCenter card
HTTP Request
POST /client/payments/moto/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 555
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "7abe2d33-f46c-434f-a60d-2520a389a000",
  "requestUuid" : "eda67535-65c1-4af4-9bde-d4d50eadbac4",
  "amount" : 1000,
  "currency" : "USD",
  "cardId" : 1906455,
  "cvc2" : "123",
  "motoType" : "CVC",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY",
  "postalCode" : "24-110"
}
Table 128. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 129. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cvc2

String

@Length must be 3 characters, @Must not be null when MO/TO CVC @Must match regular expression: \d+

Cardholder’s card cvc2. Required only when moto verification type (motoType) is set to CVC value

cardId

Number

@Must not be null, @Numeric

DataCenter card id. Required to obtain card information data from DataCenter such as (cardNumber, expiryDate, firstName, lastName, email)

motoType

String

@Must not be null

Allows to switch between CVC and AVS (Address Verification) methods of authentication

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

6.5.2. Response

Response status
Status Description

200 OK

Returned when transaction was successfully authorized.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant is not existing.

STATUS: E0132 - Returned when terminal is not existing.

STATUS: E0135 - Returned when terminal for merchant not exist or all of them are inactive.

STATUS: E0137 - Returned when there is not terminal marked as default

STATUS: E06003 - Returned when DataCenter card was not found.

422 UNPROCESSABLE ENTITY

STATUS: E0150 - Returned when transaction is rejected.

STATUS: E0151 - Returned when transaction is rejected, because currency is not supported.

STATUS: E0152 - Returned when transaction is rejected, because issuer is not supported.

STATUS: E01580 - Returned when transaction is rejected, because DataCenter card was expired.

STATUS: E0159 - Returned when transaction is rejected, because restricted transaction amount has occurred

STATUS: E01596 - Returned when transaction is rejected, because terminal has blocked transaction with card issued in restricted country

STATUS: E01601 - Returned when transaction is rejected, because terminal is blocked for provider

STATUS: E01602 - Transaction rejected, geographic scope is not permitted for this transaction

STATUS: E01607 - Transaction rejected, internal server error during authorization request generation

STATUS: E0200 - Returned when transaction is rejected, because card is blocked in Fenige System

STATUS: E0201 - Returned when transaction is rejected, because BIN is blocked in Fenige System

STATUS: E0202 - Returned when transaction is rejected, because Terminal is blocked in Fenige System

STATUS: E0204 - Returned when transaction is rejected, because user’s personal data was found on AML (sanctions) list

STATUS: E0205 - Returned when transaction is rejected, because Bank is blocked in Fenige System

STATUS: E0206 - Returned when transaction is rejected, because to many reject transactions and card is blocked

STATUS: E0207 - Returned when transaction is rejected, bacause to many attempts declined and card is blocked

STATUS: E0208 - Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

STATUS: E0209 - Returned when sender or receiver name contains fraudulent phrase

STATUS: E0210 - Returned when sender has suspicious name

STATUS: E0211 - Returned when transaction is rejected, because card country is blocked in Fenige System.

STATUS: E11000 - Returned when transaction processing time set by terminal was exceeded

STATUS: E13000 - Returned when transaction risk score was exceeded

500 INTERNAL SERVER ERROR

STATUS: E0153 - Returned when transaction is declined, by problem with MIP connection.

STATUS: E01599 - Transaction declined, processing timeout.

STATUS: E0142 - Returned when commission configuration is not added for terminal.

STATUS: E0190 - Returned when currency rate is invalid.

STATUS: E9000 - Returned when reason is unknown.

STATUS: E9010 - Returned when is error DataCenter connection.

503 SERVICE UNAVAILABLE

STATUS: E9001 - Returned when is error acquirer connection.

200 OK
HTTP Response - transaction
{
  "requestUuid" : "1aae24fb-c227-43ef-9cc7-a797e997acf2",
  "transactionStatus" : "APPROVED",
  "responseCode" : "CODE_00",
  "status" : "S0002",
  "message" : "Success transaction",
  "httpStatus" : "OK"
}
Table 130. Response fields
Path Type Description

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

responseCode

String

Response code

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:09 GMT
Connection: close
Content-Length: 478

{
  "errors" : {
    "expiryDate" : [ "invalid card expiration date" ],
    "firstName" : [ "must not be null", "must not be blank" ],
    "lastName" : [ "must not be blank", "must not be null" ],
    "amount" : [ "must not be null" ],
    "merchantUuid" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "currency" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "47911238-1fa8-4d5c-b06b-1b2fc948b453"
}
HTTP Response - transaction without specified motoType
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:52:12 GMT
Connection: close
Content-Length: 170

{
  "errors" : {
    "motoType" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "264498e9-e3d5-4d97-a92f-903b37dff733"
}
Table 131. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E8000 - DataCenter Bad Request
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:09 GMT
Connection: close
Content-Length: 679

{
  "errors" : {
    "expiryDate" : [ "Card id was provided, expiryDate is obtained from data center card: 1906455" ],
    "lastName" : [ "Card id was provided, lastName is obtained from data center card: 1906455" ],
    "firstName" : [ "Card id was provided, firstName is obtained from data center card: 1906455" ],
    "cardId" : [ "Please provide cardId for DATACENTER transaction or fields: cardNumber, expiryDate, firstName, lastName for PLAIN transaction" ],
    "cardNumber" : [ "Card id was provided, cardNumber is obtained from data center card: 1906455" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "72a847a8-88d8-4df5-9936-7c60dad692d8"
}
Table 132. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:53:09 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "5664fb84-ed81-443c-ab6c-189ab8ddb5cf"
}
Table 133. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 135
Date: Fri, 12 Apr 2024 07:53:10 GMT

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "be8e3768-e289-43c5-8490-f102942519eb"
}
Table 134. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "d4c254c2-ee6e-4a7d-98b3-dbba986c0b55"
}
HTTP Response - STATUS: E0132
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0132",
  "message" : "Terminal not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "4715dcd6-1692-4400-a1cf-ae5f4c4e1705"
}
HTTP Response - STATUS: E0135
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 159

{
  "status" : "E0135",
  "message" : "Terminals for merchant not exists",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "268783c5-cf98-4291-bc61-3fad8fc274e7"
}
HTTP Response - STATUS: E0137
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 163

{
  "status" : "E0137",
  "message" : "Default terminal not exist",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "34bd02d0-da98-4511-9783-6a25fcb228e7"
}
Table 135. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

HTTP Response - STATUS: E06003
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 246

{
  "requestUuid" : "c4d3ba13-0500-41c6-8051-32a9a74cb1f6",
  "transactionStatus" : "REJECTED",
  "status" : "E06003",
  "message" : "Datacenter card not found",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "14abb331-5e6b-4ce8-b266-29ffdb51f6e1"
}
Table 136. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E0150
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 251

{
  "requestUuid" : "bc34cf33-90db-4a54-9b8b-7c54e0c981c1",
  "transactionStatus" : "REJECTED",
  "status" : "E0150",
  "message" : "Transaction rejected",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "54add448-1315-4b6e-b96f-4b252f46512e"
}
HTTP Response - STATUS: E0151
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 275

{
  "requestUuid" : "9b661b5a-1544-474f-b18e-674935cd32a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0151",
  "message" : "Transaction rejected, currency not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "040e6d3c-1113-40c9-8744-cbda628934b3"
}
HTTP Response - STATUS: E0152
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "e3543a58-6912-4531-b950-953aaf5bcf36",
  "transactionStatus" : "REJECTED",
  "status" : "E0152",
  "message" : "Transaction rejected, issuer card not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a0248da8-a2d7-4a98-a6ea-bca4f0b20f13"
}
HTTP Response - STATUS: E0159
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "5c403813-5d75-4baf-99d7-53df586d976d",
  "transactionStatus" : "REJECTED",
  "status" : "E0159",
  "message" : "Transaction rejected, restricted transaction amount has occurred",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "6faa90c1-94e7-40f3-9635-480be0a619cd"
}
HTTP Response - STATUS: E01580
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 270

{
  "requestUuid" : "0e57d50e-a518-49b4-96f9-a5bf50e7686f",
  "transactionStatus" : "REJECTED",
  "status" : "E01580",
  "message" : "Transaction rejected. Card is expired.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "568cafe3-6f3a-4bd7-a552-349c7d0c5a27"
}
HTTP Response - STATUS: E0201
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 267

{
  "requestUuid" : "c713808e-d759-4524-84db-834b0efdf8fe",
  "transactionStatus" : "REJECTED",
  "status" : "E0201",
  "message" : "Transaction rejected, bin is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "c56f60b3-bfa5-4c90-aaf2-bb7cafa194c7"
}
HTTP Response - STATUS: E0202
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "a9742a55-a654-49c7-82ca-db423af9bd72",
  "transactionStatus" : "REJECTED",
  "status" : "E0202",
  "message" : "Transaction rejected, terminal is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "41f43cf3-c03d-4273-8f2e-d5804ac07d51"
}
HTTP Response - STATUS: E0204
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "0a8923d2-e931-45bb-9dd0-1a9060f75746",
  "transactionStatus" : "REJECTED",
  "status" : "E0204",
  "message" : "Transaction rejected, user is on aml list",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "03e9b393-30ed-4f93-b765-8125cf854aa6"
}
HTTP Response - STATUS: E0205
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 268

{
  "requestUuid" : "25bc90f8-d2c8-45a1-b69f-0be49f4a939b",
  "transactionStatus" : "REJECTED",
  "status" : "E0205",
  "message" : "Transaction rejected, bank is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "1a63ef18-c863-4d83-820e-ae19c89cf949"
}
HTTP Response - STATUS: E0206
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 301

{
  "requestUuid" : "bb4938b8-846f-4cfc-a28e-78f0e6e77fd4",
  "transactionStatus" : "REJECTED",
  "status" : "E0206",
  "message" : "Transaction rejected, too many reject transactions and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "30b927ef-107e-4055-bdbe-91a24a36d038"
}
HTTP Response - STATUS: E0207
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 299

{
  "requestUuid" : "3075fac0-e809-49e2-87e1-6dee6cb7a9a3",
  "transactionStatus" : "REJECTED",
  "status" : "E0207",
  "message" : "Transaction rejected, too many attempts declined and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "561c5e91-7480-43cf-b053-3169db8a8312"
}
HTTP Response - STATUS: E0208
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "24e8d8d8-f378-4815-b24f-b3d8d1cf6e66",
  "transactionStatus" : "REJECTED",
  "status" : "E0208",
  "message" : "Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "438befca-901b-45b8-89fe-0848b1f3bfb0"
}
HTTP Response - STATUS: E0209
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 292

{
  "requestUuid" : "6ec22cc7-933a-424a-83ac-bb44d006c386",
  "transactionStatus" : "REJECTED",
  "status" : "E0209",
  "message" : "Transaction rejected, sender name contains fraudulent phrase.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "9ea074b2-5161-461a-a648-d8617d3b3480"
}
HTTP Response - STATUS: E0210
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 276

{
  "requestUuid" : "42015cb5-cef4-44c0-8fdf-24bbaf0da6a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0210",
  "message" : "Transaction rejected, suspicious sender name.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "4ba0fc1b-5bb7-4ab9-98bd-cd9973044193"
}
HTTP Response - STATUS: E0211
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 277

{
  "requestUuid" : "60d174a3-f42c-4a58-a7a4-7e7d52c34350",
  "transactionStatus" : "REJECTED",
  "status" : "E0211",
  "message" : "Transaction rejected, card country restricted.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f945abac-c057-4a64-b722-d122308387f9"
}
HTTP Response - STATUS: E01607
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 315

{
  "requestUuid" : "8bd0d3fa-9666-420f-8638-d1d955510e1d",
  "transactionStatus" : "REJECTED",
  "status" : "E01607",
  "message" : "Transaction rejected, internal server error during authorization request generation",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "72b4f3b5-e46c-4428-a16e-b392a174bb1e"
}
HTTP Response - STATUS: E01596
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "f9913fc5-d2bd-4748-af84-bf395f6f856d",
  "transactionStatus" : "REJECTED",
  "status" : "E01596",
  "message" : "Transaction rejected, terminal blocks transactions with card issued in given card country",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "77e67815-1a5b-40e9-bc14-4a5b026bb0d2"
}
Table 137. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E0200
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 381

{
  "requestUuid" : "e8166156-3f78-4f32-93bb-b4e9939437ef",
  "transactionStatus" : "REJECTED",
  "cardBlockadeAdditionalData" : {
    "blockType" : "TEMP",
    "blockedUntil" : "2022-11-01T12:51:32.000"
  },
  "status" : "E0200",
  "message" : "Transaction rejected, card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "24cd9e93-ec68-44e7-94b7-c7f2f7cdf1f6"
}
Table 138. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

cardBlockadeAdditionalData.blockType

String

Block type. Possible values: TEMP - temporary, PERMANENT - permanent.

cardBlockadeAdditionalData.blockedUntil

String

Date until card will be blocked in yyyy-MM-ddThh-mm-ss.SSS format.

HTTP Response - STATUS: E01601
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 286

{
  "requestUuid" : "c2393be1-bda9-4f99-adf9-e0f330a95370",
  "transactionStatus" : "REJECTED",
  "status" : "E01601",
  "message" : "Transaction rejected, terminal is blocked for provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2b50f06b-714b-4853-9f05-6eeb71a92d54"
}
Table 139. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01602
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 308

{
  "requestUuid" : "590f245a-b5fc-4248-a7d1-b6a11a8aa6f2",
  "transactionStatus" : "REJECTED",
  "status" : "E01602",
  "message" : "Transaction rejected, geographic scope is not permitted for this transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a322d0ba-6caa-42c9-b260-2f3e9c6bc7cd"
}
Table 140. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E13000
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "97458d20-a50e-45cc-bbfb-54f6c00abd34",
  "transactionStatus" : "REJECTED",
  "status" : "E13000",
  "message" : "Transaction rejected, risk score exceeded",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "101287fc-32fa-4420-8dae-4b6edd43a853"
}
500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0142
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 183

{
  "status" : "E0142",
  "message" : "Commission configuration not add for terminal",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "f4942ea2-bede-41d9-a403-fee4b300df90"
}
HTTP Response - STATUS: E0153
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 280

{
  "requestUuid" : "393e0244-1c15-4e34-a743-747ef085aceb",
  "transactionStatus" : "PENDING",
  "status" : "E0153",
  "message" : "Transaction declined, problem with MIP connection",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "53dd5d09-f7fc-4ece-a4b4-fce7a452877f"
}
HTTP Response - STATUS: E01599
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "cf30fbe0-40fa-4e25-b8f9-8a561a626ff3",
  "transactionStatus" : "DECLINED",
  "status" : "E01599",
  "message" : "Transaction declined, processing timeout",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "04e45ef3-53dd-4a7e-b5ff-747258e31de7"
}
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "6a287595-9242-46e1-82f0-bbd30f00c309"
}
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:47 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "8dd1539e-c91d-44b3-b221-467e3f66dcf8"
}
Table 141. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:53 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "f5db22b3-24bf-423e-8e50-bbac42cd5bcb"
}
HTTP Response - STATUS: E9002
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 250

{
  "requestUuid" : "789cefa9-6e7a-4649-80ee-7d02d6896c97",
  "transactionStatus" : "DECLINED",
  "status" : "E9002",
  "message" : "Error mpi connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "1e010a52-2342-4875-b9c5-263f6c2dffa2"
}
HTTP Response - STATUS: E9010
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 258

{
  "requestUuid" : "65eb86b9-c472-4bd9-bcf8-66d833ff192a",
  "transactionStatus" : "REJECTED",
  "status" : "E9010",
  "message" : "Error data center connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "8757917f-6a71-4f23-8fdb-196c6dcfaa5b"
}
Table 142. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

6.6. Token payment

POST /client/payments/token/auth Content Type: application/json, Authorization: Basic Auth
    The token payment method is a solution that allows merchant customers to make payments using mobile applications. The merchant uses a card number in the form of a token
(Apple pay) and dynamic cryptographic data to authenticate the cardholder. The merchant receives this data from the token requestor it uses.
    Then Fenige authorizes the transaction in Mastercard or VISA and depending on the result, returns the corresponding status to the merchant.
    An additional option not required is to send an additional authentication in the form of an outside3ds object containing the authentication data for the 3DS version 2.x
 execution confirmation.
Merchant has the ability to make a payment for goods which causes the cardholder to be debited in the currency of purchase, terminal or card currency based on the parameters provided: currency of transaction, different currency terminals held and currencies supported by the card.
The optional terminalUuid field provided during any of the authorisation methods forces the card to be debited in the currency of the terminal specified if the purchase currency is different from the terminal currency a currency conversion will take place.

Google pay - payment with Google pay is a standard ecommerce payment for which you can use the 6.4. Payment method except that there is no CVC2 field

This endpoint is idempotent so if you execute more than one requests with the same data even at the same time, only first registered transaction will be processed further. In
response, we receive transaction status.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

When performing authorization, remember that there are currencies with different number of decimal places. For example: VND has no pennies and KWD has three decimal places. Please take this into account in the Amout field. For more information on other currencies, see ISO 4217.

E-commerce payment with token and outside 3DS flow
ecommerce token with outside3ds flow

6.6.1. Request

Request - with forced terminal outside 3DS 2.0
HTTP Request
POST /client/payments/token/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 1117
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "e1ec0caf-e92b-4ed9-b52f-1821c847e961",
  "terminalUuid" : "d2c53141-bfcd-41e9-8073-3a5ed6bbef1b",
  "requestUuid" : "aebfea6e-a6ea-406a-be1d-6fc8124901e4",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 100,
  "currency" : "USD",
  "tokenPan" : "5127482301411937126",
  "authMethod" : "CRYPTOGRAM_3DS",
  "tokenType" : "GOOGLE_PAY",
  "expiryDate" : "11/26",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "terminalLocation" : "HOME",
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "paymentData" : {
    "onlinePaymentCryptogram" : "/0OL1zEABL+gk70RYJ8lMAABAAA=",
    "eciIndicator" : "02"
  },
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "receiverAmount" : 90,
  "countryOfResidence" : "PL",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY",
  "postalCode" : "24-110"
}
Table 143. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 144. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

tokenPan

String

@Must be not null, @Must be not blank, @Length must be between 16 and 19

Token that is used in place of sender’s card number (PAN). Token form payment gateway or native apps from google, apple etc

terminalLocation

String

@Must not be null

Location of terminal - value must be set as HOME or PREMISES

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

paymentData

Object

Required payment tokenization data object.

Not required when tokenType = 'GOOGLE_PAY' and authMethod = 'PAN_ONLY'.

paymentData.onlinePaymentCryptogram

String

Payment secure cryptogram obtained during merchant card tokenization in mobile app (TAVV in GOOGLE_PAY case). Base64 encoded payment crypto value.

paymentData.eciIndicator

String

@Must match 01 or 02 or 05 or 06

Eci value returned only for tokens on the Visa card network. The value should be passed by merchant if present with payment cryptogram. Optional value.

If tokenType = 'GOOGLE_PAY' and authMethod = 'CRYPTOGRAM_3DS' and provider is 'VISA' then this field is required. Possible values for VISA are 05, 06.

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 00 or 01 or 02 or 05 or 06 or 07, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. More info.

outside3ds.authenticationStatus

String

@Must match Y or A or U, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt. U - (Technical or other problem) - No liability shift, consider whether to proceed with the transaction

countryOfResidence

String

Country of residence is only required for merchants crypto

tokenType

String

@Optional

Token used - value may be set as GOOGLE_PAY or APPLE_PAY or OTHER.

authMethod

String

@Optional

Required only if tokenType is 'GOOGLE_PAY'.

Type of token transaction authorization - value may be set as CRYPTOGRAM_3DS or PAN_ONLY.

If authMethod is 'CRYPTOGRAM_3DS' then paymentData is required and outside3ds is optional.

If authMethod is 'PAN_ONLY' then outside3ds is required and there is no paymentData.

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

terminalUuid

String

Terminals’s unique uuid in system

Request
HTTP Request
POST /client/payments/token/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 847
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "3bb2a5db-edd2-4a89-9c0b-5e853d9dd4c0",
  "requestUuid" : "aebfea6e-a6ea-406a-be1d-6fc8124901e4",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 100,
  "currency" : "USD",
  "authMethod" : "CRYPTOGRAM_3DS",
  "tokenType" : "GOOGLE_PAY",
  "tokenPan" : "5127482301411937126",
  "expiryDate" : "11/26",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "terminalLocation" : "HOME",
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "paymentData" : {
    "onlinePaymentCryptogram" : "/0OL1zEABL+gk70RYJ8lMAABAAA=",
    "eciIndicator" : "02"
  },
  "receiverAmount" : 90,
  "countryOfResidence" : "PL",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY",
  "postalCode" : "24-110"
}
Table 145. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 146. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

tokenPan

String

@Must be not null, @Must be not blank, @Length must be between 16 and 19

Token that is used in place of sender’s card number (PAN). Token form payment gateway or native apps from google, apple etc

terminalLocation

String

@Must not be null

Location of terminal - value must be set as HOME or PREMISES

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

paymentData

Object

Required payment tokenization data object.

Not required when tokenType = 'GOOGLE_PAY' and authMethod = 'PAN_ONLY'.

paymentData.onlinePaymentCryptogram

String

Payment secure cryptogram obtained during merchant card tokenization in mobile app (TAVV in GOOGLE_PAY case). Base64 encoded payment crypto value.

paymentData.eciIndicator

String

@Must match 01 or 02 or 05 or 06

Eci value returned only for tokens on the Visa card network. The value should be passed by merchant if present with payment cryptogram. Optional value.

If tokenType = 'GOOGLE_PAY' and authMethod = 'CRYPTOGRAM_3DS' and provider is 'VISA' then this field is required. Possible values for VISA are 05, 06.

countryOfResidence

String

Country of residence is only required for merchants crypto

tokenType

String

@Optional

Token used - value may be set as GOOGLE_PAY or APPLE_PAY or OTHER.

authMethod

String

@Optional

Required only if tokenType is 'GOOGLE_PAY'.

Type of token transaction authorization - value may be set as CRYPTOGRAM_3DS or PAN_ONLY.

If authMethod is 'CRYPTOGRAM_3DS' then paymentData is required and outside3ds is optional.

If authMethod is 'PAN_ONLY' then outside3ds is required and there is no paymentData.

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

Request - forced Terminal
HTTP Request
POST /client/payments/token/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 906
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "e1ec0caf-e92b-4ed9-b52f-1821c847e961",
  "terminalUuid" : "d2c53141-bfcd-41e9-8073-3a5ed6bbef1b",
  "requestUuid" : "aebfea6e-a6ea-406a-be1d-6fc8124901e4",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 100,
  "currency" : "USD",
  "authMethod" : "CRYPTOGRAM_3DS",
  "tokenType" : "GOOGLE_PAY",
  "tokenPan" : "5127482301411937126",
  "expiryDate" : "11/26",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "terminalLocation" : "HOME",
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "paymentData" : {
    "onlinePaymentCryptogram" : "/0OL1zEABL+gk70RYJ8lMAABAAA=",
    "eciIndicator" : "02"
  },
  "receiverAmount" : 90,
  "countryOfResidence" : "PL",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY",
  "postalCode" : "24-110"
}
Table 147. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 148. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

tokenPan

String

@Must be not null, @Must be not blank, @Length must be between 16 and 19

Token that is used in place of sender’s card number (PAN). Token form payment gateway or native apps from google, apple etc

terminalLocation

String

@Must not be null

Location of terminal - value must be set as HOME or PREMISES

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

paymentData

Object

Required payment tokenization data object.

Not required when tokenType = 'GOOGLE_PAY' and authMethod = 'PAN_ONLY'.

paymentData.onlinePaymentCryptogram

String

Payment secure cryptogram obtained during merchant card tokenization in mobile app (TAVV in GOOGLE_PAY case). Base64 encoded payment crypto value.

paymentData.eciIndicator

String

@Must match 01 or 02 or 05 or 06

Eci value returned only for tokens on the Visa card network. The value should be passed by merchant if present with payment cryptogram. Optional value.

If tokenType = 'GOOGLE_PAY' and authMethod = 'CRYPTOGRAM_3DS' and provider is 'VISA' then this field is required. Possible values for VISA are 05, 06.

countryOfResidence

String

Country of residence is only required for merchants crypto

tokenType

String

@Optional

Token used - value may be set as GOOGLE_PAY or APPLE_PAY or OTHER.

authMethod

String

@Optional

Required only if tokenType is 'GOOGLE_PAY'.

Type of token transaction authorization - value may be set as CRYPTOGRAM_3DS or PAN_ONLY.

If authMethod is 'CRYPTOGRAM_3DS' then paymentData is required and outside3ds is optional.

If authMethod is 'PAN_ONLY' then outside3ds is required and there is no paymentData.

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

terminalUuid

String

Terminals’s unique uuid in system

6.6.2. Response

Response status
Status Description

200 OK

Returned when transaction was successfully authorized with Token.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when there was a problem with authorization to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorizeToken it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant is not existing.

STATUS: E0132 - Returned when terminal is not existing.

STATUS: E0135 - Returned when terminal for merchant not exist or all of them are inactive.

STATUS: E0137 - Returned when there is not terminal marked as default

422 UNPROCESSABLE ENTITY

STATUS: E0150 - Returned when transaction is rejected.

STATUS: E0151 - Returned when transaction is rejected, because currency is not supported.

STATUS: E0152 - Returned when transaction is rejected, because issuer is not supported.

STATUS: E0156 - Returned where terminal used for process transaction do not support 3DS

STATUS: E0157 - Returned where card used for process transaction do not support 3DS

STATUS: E01583 - Returned when transaction is rejected, because outside3ds object was not provided in transaction request

STATUS: E0159 - Returned when transaction is rejected, because restricted transaction amount has occurred

STATUS: E01596 - Returned when transaction is rejected, because terminal has blocked transaction with card issued in restricted country

STATUS: E01597 - Transaction rejected, 3DS version of terminal are not compatible with 3DS version defined in request. Please contact the sales department

STATUS: E01598 - Transaction rejected, ECI value is not available for card provider

STATUS: E01600 - Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request

STATUS: E01601 - Returned when transaction is rejected, because terminal is blocked for provider

STATUS: E01602 - Transaction rejected, geographic scope is not permitted for this transaction

STATUS: E01607 - Transaction rejected, internal server error during authorization request generation

STATUS: E0200 - Returned when transaction is rejected, because card is blocked in Fenige System

STATUS: E0201 - Returned when transaction is rejected, because BIN is blocked in Fenige System

STATUS: E0202 - Returned when transaction is rejected, because Terminal is blocked in Fenige System

STATUS: E0203 - Returned when transaction is rejected, because Token is blocked in Fenige System

STATUS: E0204 - Returned when transaction is rejected, because user’s personal data was found on AML (sanctions) list

STATUS: E0205 - Returned when transaction is rejected, because Bank is blocked in Fenige System

STATUS: E0206 - Returned when transaction is rejected, because to many reject transactions and card is blocked

STATUS: E0207 - Returned when transaction is rejected, bacause to many attempts declined and card is blocked

STATUS: E0208 - Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

STATUS: E0209 - Returned when sender or receiver name contains fraudulent phrase

STATUS: E0210 - Returned when sender has suspicious name

STATUS: E0211 - Returned when transaction is rejected, because card country is blocked in Fenige System.

STATUS: E11000 - Returned when transaction processing time set by terminal was exceeded

STATUS: E13000 - Returned when transaction risk score was exceeded

500 INTERNAL SERVER ERROR

STATUS: E0153 - Returned when transaction is declined, by problem with MIP connection.

STATUS: E01599 - Transaction declined, processing timeout.

STATUS: E0142 - Returned when commission configuration is not added for terminal.

STATUS: E0190 - Returned when currency rate is invalid.

STATUS: E9000 - Returned when reason is unknown.

503 SERVICE UNAVAILABLE

STATUS: E9001 - Returned when is error acquirer connection.

STATUS: E9002 - Returned when is error mpi connection.

200 OK
HTTP Response - transaction with outside3DS
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 208

{
  "requestUuid" : "0367f681-7db0-4b4b-8e92-cb645f1cd488",
  "transactionStatus" : "APPROVED",
  "responseCode" : "CODE_00",
  "status" : "S0002",
  "message" : "Success transaction",
  "httpStatus" : "OK"
}
Table 149. Response fields
Path Type Description

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

responseCode

String

Response code

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:21 GMT
Connection: close
Content-Length: 481

{
  "errors" : {
    "expiryDate" : [ "ExpiryDate must not be null" ],
    "lastName" : [ "must not be null", "must not be blank" ],
    "firstName" : [ "must not be blank", "must not be null" ],
    "amount" : [ "must not be null" ],
    "terminalLocation" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "currency" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "7d090d8d-5ee2-4ce7-993a-9271e37b81b8"
}
Table 150. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:53:21 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "46ae66b9-0f00-4d3a-9fea-4a58e54ee76a"
}
Table 151. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 135
Date: Fri, 12 Apr 2024 07:53:10 GMT

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "be8e3768-e289-43c5-8490-f102942519eb"
}
Table 152. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "804f4b8c-f773-4b32-815f-918b41eaea8f"
}
HTTP Response - STATUS: E0137
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 159

{
  "status" : "E0135",
  "message" : "Terminals for merchant not exists",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "204ce8ee-231d-4a83-84e4-e091f98d2a7b"
}
Table 153. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E0150
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 251

{
  "requestUuid" : "a9348d10-4757-4ffb-a07f-568171a41099",
  "transactionStatus" : "REJECTED",
  "status" : "E0150",
  "message" : "Transaction rejected",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a5c44305-bb9c-4026-b790-fb7e8a7e893e"
}
HTTP Response - STATUS: E0151
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 275

{
  "requestUuid" : "509c63b4-e8fe-4fd0-b01d-64990f7b9635",
  "transactionStatus" : "REJECTED",
  "status" : "E0151",
  "message" : "Transaction rejected, currency not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f55b1366-0008-41a6-9337-13e130578ea1"
}

E01585 .HTTP Response - STATUS: E0152

HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "6ebb0d12-e37f-4ddd-82fa-3321324f9ba4",
  "transactionStatus" : "REJECTED",
  "status" : "E0152",
  "message" : "Transaction rejected, issuer card not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a9fda2d1-97d1-4144-bbea-920907a13038"
}
HTTP Response - STATUS: E0156
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 185

{
  "status" : "E0156",
  "message" : "Transaction rejected, terminal not supported 3ds",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "44b7a4e6-7371-4dc1-935d-360ffea2d373"
}
HTTP Response - STATUS: E0157
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 181

{
  "status" : "E0157",
  "message" : "Transaction rejected, card not supported 3ds",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2c1e2384-e4a5-4a27-a53d-4c7d6fc41d5d"
}
HTTP Response - STATUS: E0159
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "5c403813-5d75-4baf-99d7-53df586d976d",
  "transactionStatus" : "REJECTED",
  "status" : "E0159",
  "message" : "Transaction rejected, restricted transaction amount has occurred",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "6faa90c1-94e7-40f3-9635-480be0a619cd"
}
HTTP Response - STATUS: E01599
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "2b2f2db4-19e9-4253-80f0-39caa57e910a",
  "transactionStatus" : "DECLINED",
  "status" : "E01599",
  "message" : "Transaction declined, processing timeout",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "5aacc7bb-6661-46e5-97b2-451fcae87981"
}
HTTP Response - STATUS: E0201
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 267

{
  "requestUuid" : "7fa14d47-7b00-48f6-8f0b-c7f1e5a6a1eb",
  "transactionStatus" : "REJECTED",
  "status" : "E0201",
  "message" : "Transaction rejected, bin is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "fd2b5f28-87de-4021-bbde-c9c96e6739e1"
}
HTTP Response - STATUS: E0202
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "aa350916-98e3-49c0-899d-d3b37854e60a",
  "transactionStatus" : "REJECTED",
  "status" : "E0202",
  "message" : "Transaction rejected, terminal is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "772525f1-3d49-4b3f-8af5-cd9c0beb131e"
}
HTTP Response - STATUS: E0203
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 269

{
  "requestUuid" : "b3cb8d9a-30dd-4c13-9964-0e5cbd215991",
  "transactionStatus" : "REJECTED",
  "status" : "E0203",
  "message" : "Transaction rejected, token is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "bf232bb0-170e-4b8e-a8b0-b9fffdca06e3"
}
HTTP Response - STATUS: E0204
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "0de47d0d-7120-430e-9066-84c4fe3e2f5d",
  "transactionStatus" : "REJECTED",
  "status" : "E0204",
  "message" : "Transaction rejected, user is on aml list",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "6fe89ce1-b624-4ba0-a3db-a4d67f501169"
}
HTTP Response - STATUS: E0205
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 268

{
  "requestUuid" : "7bf40865-52fa-444d-b3c7-064661a9d6cb",
  "transactionStatus" : "REJECTED",
  "status" : "E0205",
  "message" : "Transaction rejected, bank is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "3e3cbcc0-a444-457d-9bab-dd61284dda25"
}
HTTP Response - STATUS: E0206
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 301

{
  "requestUuid" : "bb4938b8-846f-4cfc-a28e-78f0e6e77fd4",
  "transactionStatus" : "REJECTED",
  "status" : "E0206",
  "message" : "Transaction rejected, too many reject transactions and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "30b927ef-107e-4055-bdbe-91a24a36d038"
}
HTTP Response - STATUS: E0207
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 299

{
  "requestUuid" : "3075fac0-e809-49e2-87e1-6dee6cb7a9a3",
  "transactionStatus" : "REJECTED",
  "status" : "E0207",
  "message" : "Transaction rejected, too many attempts declined and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "561c5e91-7480-43cf-b053-3169db8a8312"
}
HTTP Response - STATUS: E0208
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "24e8d8d8-f378-4815-b24f-b3d8d1cf6e66",
  "transactionStatus" : "REJECTED",
  "status" : "E0208",
  "message" : "Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "438befca-901b-45b8-89fe-0848b1f3bfb0"
}
HTTP Response - STATUS: E0209
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 292

{
  "requestUuid" : "6ec22cc7-933a-424a-83ac-bb44d006c386",
  "transactionStatus" : "REJECTED",
  "status" : "E0209",
  "message" : "Transaction rejected, sender name contains fraudulent phrase.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "9ea074b2-5161-461a-a648-d8617d3b3480"
}
HTTP Response - STATUS: E0210
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 276

{
  "requestUuid" : "42015cb5-cef4-44c0-8fdf-24bbaf0da6a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0210",
  "message" : "Transaction rejected, suspicious sender name.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "4ba0fc1b-5bb7-4ab9-98bd-cd9973044193"
}
HTTP Response - STATUS: E0211
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 277

{
  "requestUuid" : "60d174a3-f42c-4a58-a7a4-7e7d52c34350",
  "transactionStatus" : "REJECTED",
  "status" : "E0211",
  "message" : "Transaction rejected, card country restricted.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f945abac-c057-4a64-b722-d122308387f9"
}
HTTP Response - STATUS: E01583
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 290

{
  "requestUuid" : "a9d8ad39-45e4-4797-ac47-1f3e3bff8d78",
  "transactionStatus" : "REJECTED",
  "status" : "E01583",
  "message" : "Transaction rejected. Outside 3ds is required for terminal",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a38c22fe-8f56-4441-88c3-c4a52181b60a"
}
HTTP Response - STATUS: E01596
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "f9913fc5-d2bd-4748-af84-bf395f6f856d",
  "transactionStatus" : "REJECTED",
  "status" : "E01596",
  "message" : "Transaction rejected, terminal blocks transactions with card issued in given card country",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "77e67815-1a5b-40e9-bc14-4a5b026bb0d2"
}
HTTP Response - STATUS: E01597
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 369

{
  "requestUuid" : "636444e5-d118-46bc-87c1-4fe3a7136c3a",
  "transactionStatus" : "REJECTED",
  "status" : "E01597",
  "message" : "Transaction rejected, 3DS version of terminal are not compatible with 3DS version defined in request. Please contact the sales department",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2ddc9c61-b90a-46d4-bd7f-9cabfcf8a155"
}
HTTP Response - STATUS: E01607
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 315

{
  "requestUuid" : "8bd0d3fa-9666-420f-8638-d1d955510e1d",
  "transactionStatus" : "REJECTED",
  "status" : "E01607",
  "message" : "Transaction rejected, internal server error during authorization request generation",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "72b4f3b5-e46c-4428-a16e-b392a174bb1e"
}
HTTP Response - STATUS: E01598
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 298

{
  "requestUuid" : "8ad7b6e4-0729-4861-8c86-5beece64f548",
  "transactionStatus" : "REJECTED",
  "status" : "E01598",
  "message" : "Transaction rejected, ECI value is not available for card provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "6d4ca2a8-6712-47df-8f27-dc27129636e8"
}
Table 154. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E0200
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 381

{
  "requestUuid" : "430261af-9069-4892-ac4f-bf7731464cdf",
  "transactionStatus" : "REJECTED",
  "cardBlockadeAdditionalData" : {
    "blockType" : "TEMP",
    "blockedUntil" : "2022-11-01T12:51:32.000"
  },
  "status" : "E0200",
  "message" : "Transaction rejected, card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "34697259-416d-4057-aeac-0d0fda9cd242"
}
Table 155. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

cardBlockadeAdditionalData.blockType

String

Block type. Possible values: TEMP - temporary, PERMANENT - permanent.

cardBlockadeAdditionalData.blockedUntil

String

Date until card will be blocked in yyyy-MM-ddThh-mm-ss.SSS format.

HTTP Response - STATUS: E01600
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 326

{
  "requestUuid" : "996626c8-f66b-4cc4-9e9e-62494e6c0c5e",
  "transactionStatus" : "REJECTED",
  "status" : "E01584",
  "message" : "Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "238ba9fd-2bbb-4995-b00c-9f9e256b3fcf"
}
Table 156. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01601
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 286

{
  "requestUuid" : "c2393be1-bda9-4f99-adf9-e0f330a95370",
  "transactionStatus" : "REJECTED",
  "status" : "E01601",
  "message" : "Transaction rejected, terminal is blocked for provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2b50f06b-714b-4853-9f05-6eeb71a92d54"
}
Table 157. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01602
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 308

{
  "requestUuid" : "590f245a-b5fc-4248-a7d1-b6a11a8aa6f2",
  "transactionStatus" : "REJECTED",
  "status" : "E01602",
  "message" : "Transaction rejected, geographic scope is not permitted for this transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a322d0ba-6caa-42c9-b260-2f3e9c6bc7cd"
}
Table 158. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E13000
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "97458d20-a50e-45cc-bbfb-54f6c00abd34",
  "transactionStatus" : "REJECTED",
  "status" : "E13000",
  "message" : "Transaction rejected, risk score exceeded",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "101287fc-32fa-4420-8dae-4b6edd43a853"
}
500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0153
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 280

{
  "requestUuid" : "77b3951d-9fa4-4335-a91b-4b80d8959c2c",
  "transactionStatus" : "PENDING",
  "status" : "E0153",
  "message" : "Transaction declined, problem with MIP connection",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "b76e295c-47b6-4d6e-90e7-14daf1be2399"
}
HTTP Response - STATUS: E0142
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 183

{
  "status" : "E0142",
  "message" : "Commission configuration not add for terminal",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "65ecbc2e-868e-470a-bc03-f5001803520d"
}
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "802a2142-4ebd-4212-93e2-3f86e2183c19"
}
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:47 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "8dd1539e-c91d-44b3-b221-467e3f66dcf8"
}
HTTP Response - STATUS: E9008
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 265

{
  "requestUuid" : "96be0680-e5cf-4eea-8170-820a2753e052",
  "transactionStatus" : "DECLINED",
  "status" : "E9008",
  "message" : "Error mpi - 3ds initialize failed",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "3f15db7a-1dc6-4694-b4d9-f543b8450fda"
}
Table 159. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:53 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "f5db22b3-24bf-423e-8e50-bbac42cd5bcb"
}
HTTP Response - STATUS: E9002
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 250

{
  "requestUuid" : "d5ee5a04-2411-4ce7-a1cf-e315b118069b",
  "transactionStatus" : "DECLINED",
  "status" : "E9002",
  "message" : "Error mpi connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "3a4c522a-22ed-4315-8ef7-72fdd1216a3e"
}
Table 160. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

6.7. CoF payment

A CoF (credential on file transaction) is a transaction where a cardholder authorizes a merchant to store account information such as (PAN and expiration date, and the
cardholder subsequently authorizes that same merchant to bill the cardholder’s stored account.
The method is used to charge the cardholder with no need to collect account data (PAN, exp date) from merchant at every transaction.
Using this method, we can authorize and process entire transaction using stored payment details. CoF supports both 3DS and without 3DS transactions. How the transaction will
be initiated depends on the terminal settings (look at 'is3dsEnable' field).
This endpoint is idempotent so if you execute more than one requests with the same data even at the same time, only first registered transaction will be processed further. In
response, we receive transaction status.
The cof transaction consists of two parts: initial and subsequent, which are discussed in detail below.
Please see detailed CoF transaction flow described on below listings.
Merchant has the ability to make a payment for goods which causes the cardholder to be debited in the currency of purchase, terminal or card currency based on the parameters provided: currency of transaction, different currency terminals held and currencies supported by the card.
The optional terminalUuid field provided during any of the authorisation methods forces the card to be debited in the currency of the terminal specified if the purchase currency is different from the terminal currency a currency conversion will take place.
The Fenige Payment API methods optionally allows merchants to store card data and sensitive personal data in order to allow performing subsequent transactions.
If merchant decides to use DataCenter transaction flow then is required to provide the card id of the card previously stored in the Fenige DataCenter, from which card the
relevant required parameters will be downloaded and used for authorization.
Card data and sensitive personal data according to the Fenige API specification are: cardNumber, expiryDate, firstName, lastName and email.
All card data are stored securely on Fenige DataCenter servers in accordance with applicable security requirements.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

When performing authorization, remember that there are currencies with different number of decimal places. For example: VND has no pennies and KWD has three decimal places. Please take this into account in the Amout field. For more information on other currencies, see ISO 4217.

CoF payment flow
cof trx flow
CoF payment with outside 3DS
cof trx with outside3ds flow
CoF payment with DataCenter flow
cof trx data center flow
CoF payment with DataCenter and outside 3DS flow
cof trx data center outside3ds flow

6.7.1. CoF Initial transaction

POST /client/payments/cof/initial Content Type: application/json, Authorization: Basic Auth
The first stage is a one-time initial transaction, which is a simple e-commerce payment but contains the customer's consent to store card data for subsequent purchases. Card
 data is stored in a secure FENIGE environment. After completing the initial merchant receives the unique cofInitialUuid identifier needed to perform subsequent CoF
 transactions without having to enter card data.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

Request
Request - outside 3DS 2.X
HTTP Request
POST /client/payments/cof/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 897
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "7abe2d33-f46c-434f-a60d-2520a389a000",
  "requestUuid" : "a07ee413-7026-4dd8-afbb-3396263faba9",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "phoneNumber" : "500500500",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "postalCode" : "24-110",
  "province" : "NY"
}
Table 161. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 162. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters, @Must match regular expression: \d+

Cardholder’s card cvc2

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

phoneNumber

String

@Optional @Must match regular expression [0-9]{3,14}

Cardholder’s phone number

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

Cardholder Authentication Verification Value. The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. Chargeback protection applies.

outside3ds.authenticationStatus

String

@Must match Y or A, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt.

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "^[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

Request
HTTP Request
POST /client/payments/cof/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 686
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "7abe2d33-f46c-434f-a60d-2520a389a000",
  "requestUuid" : "39efb012-3729-4f0e-a162-1af53e0f3fb1",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "phoneNumber" : "500500500",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "postalCode" : "24-110",
  "province" : "NY"
}
Table 163. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 164. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters, @Must match regular expression: \d+

Cardholder’s card cvc2

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

phoneNumber

String

@Optional @Must match regular expression [0-9]{3,14}

Cardholder’s phone number

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "^[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

Request with forced Terminal
HTTP Request
POST /client/payments/cof/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 745
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "59736832-4f9d-4c1a-911c-ac05c611b1a4",
  "terminalUuid" : "454bb919-7e03-452f-9e24-25c49384790a",
  "requestUuid" : "a4c88d29-c4e7-44f3-918a-0b6f6abd2274",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "phoneNumber" : "500500500",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "postalCode" : "24-110",
  "province" : "NY"
}
Table 165. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 166. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters, @Must match regular expression: \d+

Cardholder’s card cvc2

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

phoneNumber

String

@Optional @Must match regular expression [0-9]{3,14}

Cardholder’s phone number

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "^[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

terminalUuid

String

Terminals’s unique uuid in system

Request with DataCenter card
HTTP Request
POST /client/payments/cof/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 744
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "80704c89-6cff-418a-9702-571f196c1372",
  "requestUuid" : "650dc8ab-9609-4a8c-b03e-c1aeb02abd7d",
  "amount" : 1000,
  "currency" : "USD",
  "cardId" : 1906455,
  "cvc2" : "123",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY",
  "postalCode" : "24-110"
}
Table 167. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 168. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

cvc2

String

@Optional only for Google pay, @Length must be 3 characters, @Must match regular expression: \d+

Cardholder’s card cvc2

cardId

Number

@Must not be null, @Numeric

DataCenter card id. Required to obtain card information data from DataCenter such as (cardNumber, expiryDate, firstName, lastName, email)

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

Cardholder Authentication Verification Value. The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. Chargeback protection applies.

outside3ds.authenticationStatus

String

@Must match Y or A, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt.

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "^[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

Response
Status Description

200 OK

Returned when transaction was successfully authorized.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant is not existing.

STATUS: E0132 - Returned when terminal is not existing.

STATUS: E0135 - Returned when terminal for merchant not exist or all of them are inactive.

STATUS: E0137 - Returned when there is not terminal marked as default

STATUS: E06003 - Returned when DataCenter card was not found.

422 UNPROCESSABLE ENTITY

STATUS: E0150 - Returned when transaction is rejected.

STATUS: E0151 - Returned when transaction is rejected, because currency is not supported.

STATUS: E0152 - Returned when transaction is rejected, because issuer is not supported.

STATUS: E01580 - Returned when transaction is rejected, because DataCenter card was expired.

STATUS: E0159 - Returned when transaction is rejected, because restricted transaction amount has occurred

STATUS: E01596 - Returned when transaction is rejected, because terminal has blocked transaction with card issued in restricted country

STATUS: E01601 - Returned when transaction is rejected, because terminal is blocked for provider

STATUS: E01602 - Transaction rejected, geographic scope is not permitted for this transaction

STATUS: E01607 - Transaction rejected, internal server error during authorization request generation

STATUS: E0200 - Returned when transaction is rejected, because card is blocked in Fenige System

STATUS: E0201 - Returned when transaction is rejected, because BIN is blocked in Fenige System

STATUS: E0202 - Returned when transaction is rejected, because Terminal is blocked in Fenige System

STATUS: E0204 - Returned when transaction is rejected, because user’s personal data was found on AML (sanctions) list

STATUS: E0205 - Returned when transaction is rejected, because Bank is blocked in Fenige System

STATUS: E0206 - Returned when transaction is rejected, because to many reject transactions and card is blocked

STATUS: E0207 - Returned when transaction is rejected, bacause to many attempts declined and card is blocked

STATUS: E0208 - Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

STATUS: E0209 - Returned when sender or receiver name contains fraudulent phrase

STATUS: E0210 - Returned when sender has suspicious name

STATUS: E0211 - Returned when transaction is rejected, because card country is blocked in Fenige System.

STATUS: E01600 - Returned when transaction is declined, because 3DS 2.X flow invoked for other card number than specified in the request

STATUS: E11000 - Returned when transaction processing time set by terminal was exceeded

STATUS: E13000 - Returned when transaction risk score was exceeded

500 INTERNAL SERVER ERROR

STATUS: E0142 - Returned when commission configuration is not added for terminal.

STATUS: E0153 - Returned when transaction is declined, by problem with MIP connection.

STATUS: E01599 - Transaction declined, processing timeout.

STATUS: E0190 - Returned when currency rate is invalid.

STATUS: E9000 - Returned when reason is unknown.

503 SERVICE UNAVAILABLE

STATUS: E9001 - Returned when is error acquirer connection.

STATUS: E9002 - Returned when is error mpi connection.

STATUS: E9010 - Returned when is error DataCenter connection.

200 OK
HTTP Response - transaction without 3DS or with outside3DS
{
  "requestUuid" : "bc01581e-07a5-4656-9f90-dcd9c3dbe3c1",
  "cofInitialUuid" : "cdc187af-addc-4bbf-bb99-73b19f391b20",
  "transactionStatus" : "APPROVED",
  "responseCode" : "CODE_00",
  "status" : "S0002",
  "message" : "Success transaction",
  "httpStatus" : "OK"
}
Table 169. Response fields
Path Type Description

requestUuid

String

Request unique uuid in system

cofInitialUuid

String

CoF transaction unique uuid in system

transactionStatus

String

Transaction status

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

responseCode

String

Response code

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:52:45 GMT
Connection: close
Content-Length: 478

{
  "errors" : {
    "expiryDate" : [ "invalid card expiration date" ],
    "firstName" : [ "must not be blank", "must not be null" ],
    "lastName" : [ "must not be null", "must not be blank" ],
    "amount" : [ "must not be null" ],
    "merchantUuid" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "currency" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "b8da8ca3-f5cb-4ad0-96ec-e67a0d0ee865"
}
Table 170. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E8000 - DataCenter Bad Request
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:52:43 GMT
Connection: close
Content-Length: 679

{
  "errors" : {
    "expiryDate" : [ "Card id was provided, expiryDate is obtained from data center card: 1906455" ],
    "firstName" : [ "Card id was provided, firstName is obtained from data center card: 1906455" ],
    "lastName" : [ "Card id was provided, lastName is obtained from data center card: 1906455" ],
    "cardId" : [ "Please provide cardId for DATACENTER transaction or fields: cardNumber, expiryDate, firstName, lastName for PLAIN transaction" ],
    "cardNumber" : [ "Card id was provided, cardNumber is obtained from data center card: 1906455" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "21961c83-eb50-426d-9a27-9de9e9394250"
}
Table 171. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:52:43 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "7e39ccd1-204e-4074-9770-19a2a9ac0c3e"
}
Table 172. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 135
Date: Fri, 12 Apr 2024 07:52:46 GMT

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "c0bc3a03-f8fb-4f47-94f8-537aad556738"
}
Table 173. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "d090175e-ac23-4a1a-8801-f0e8e44d8a63"
}
HTTP Response - STATUS: E0132
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0132",
  "message" : "Terminal not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "7c3ded88-0b0f-4ce6-b549-609f9b25c07a"
}
Table 174. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

HTTP Response - STATUS: E0135
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 163

{
  "status" : "E0137",
  "message" : "Default terminal not exist",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "680746e4-ce6b-4070-8bd8-0463f2622346"
}
Table 175. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

HTTP Response - STATUS: E0137
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 159

{
  "status" : "E0135",
  "message" : "Terminals for merchant not exists",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "ebcf49d7-8d5c-41fe-a5e8-0a634eb07d78"
}
Table 176. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

HTTP Response - STATUS: E06003
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 246

{
  "requestUuid" : "c4d3ba13-0500-41c6-8051-32a9a74cb1f6",
  "transactionStatus" : "REJECTED",
  "status" : "E06003",
  "message" : "Datacenter card not found",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "14abb331-5e6b-4ce8-b266-29ffdb51f6e1"
}
Table 177. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E0150
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 251

{
  "requestUuid" : "cd5eadbf-4b2f-41b0-b1b3-77db67a05c76",
  "transactionStatus" : "REJECTED",
  "status" : "E0150",
  "message" : "Transaction rejected",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "d09a9cd4-1270-4665-993f-c3afe136d947"
}
HTTP Response - STATUS: E0151
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 275

{
  "requestUuid" : "87aa3858-4746-4788-bc19-3630403c1e76",
  "transactionStatus" : "REJECTED",
  "status" : "E0151",
  "message" : "Transaction rejected, currency not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "91f58338-e316-4894-b714-3ea557b554bd"
}
HTTP Response - STATUS: E0152
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "07fa8985-e000-42af-8ab8-2d9739070274",
  "transactionStatus" : "REJECTED",
  "status" : "E0152",
  "message" : "Transaction rejected, issuer card not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2b21534d-369e-49d0-b67f-0a31ed07620f"
}
HTTP Response - STATUS: E01580
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 270

{
  "requestUuid" : "0e57d50e-a518-49b4-96f9-a5bf50e7686f",
  "transactionStatus" : "REJECTED",
  "status" : "E01580",
  "message" : "Transaction rejected. Card is expired.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "568cafe3-6f3a-4bd7-a552-349c7d0c5a27"
}
HTTP Response - STATUS: E0159
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "5c403813-5d75-4baf-99d7-53df586d976d",
  "transactionStatus" : "REJECTED",
  "status" : "E0159",
  "message" : "Transaction rejected, restricted transaction amount has occurred",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "6faa90c1-94e7-40f3-9635-480be0a619cd"
}
HTTP Response - STATUS: E0201
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 267

{
  "requestUuid" : "dc33556e-53f9-4922-bee3-0c0b9c5a8ced",
  "transactionStatus" : "REJECTED",
  "status" : "E0201",
  "message" : "Transaction rejected, bin is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "dd3cb7fd-49cb-41fc-a0ec-fbb1b4271792"
}
HTTP Response - STATUS: E0202
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "f488e732-8346-4520-a3ff-c6c4a6f404c5",
  "transactionStatus" : "REJECTED",
  "status" : "E0202",
  "message" : "Transaction rejected, terminal is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f0bab236-c8e0-4fec-b764-5e2e6bfd9ce4"
}
HTTP Response - STATUS: E0204
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "2c96220f-3b3c-47d5-b5f4-f0c5cee541ee",
  "transactionStatus" : "REJECTED",
  "status" : "E0204",
  "message" : "Transaction rejected, user is on aml list",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a78f7e36-defd-4dcb-ad5d-56fef56eb1b6"
}
HTTP Response - STATUS: E0205
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 268

{
  "requestUuid" : "75e9c35a-5bf9-4144-bfa0-e70327b1128f",
  "transactionStatus" : "REJECTED",
  "status" : "E0205",
  "message" : "Transaction rejected, bank is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "6b3885c6-5be9-41d9-896d-827a76e3a1f0"
}
HTTP Response - STATUS: E0206
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 301

{
  "requestUuid" : "bb4938b8-846f-4cfc-a28e-78f0e6e77fd4",
  "transactionStatus" : "REJECTED",
  "status" : "E0206",
  "message" : "Transaction rejected, too many reject transactions and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "30b927ef-107e-4055-bdbe-91a24a36d038"
}
HTTP Response - STATUS: E0207
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 299

{
  "requestUuid" : "3075fac0-e809-49e2-87e1-6dee6cb7a9a3",
  "transactionStatus" : "REJECTED",
  "status" : "E0207",
  "message" : "Transaction rejected, too many attempts declined and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "561c5e91-7480-43cf-b053-3169db8a8312"
}
HTTP Response - STATUS: E0208
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "24e8d8d8-f378-4815-b24f-b3d8d1cf6e66",
  "transactionStatus" : "REJECTED",
  "status" : "E0208",
  "message" : "Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "438befca-901b-45b8-89fe-0848b1f3bfb0"
}
HTTP Response - STATUS: E0209
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 292

{
  "requestUuid" : "6ec22cc7-933a-424a-83ac-bb44d006c386",
  "transactionStatus" : "REJECTED",
  "status" : "E0209",
  "message" : "Transaction rejected, sender name contains fraudulent phrase.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "9ea074b2-5161-461a-a648-d8617d3b3480"
}
HTTP Response - STATUS: E0210
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 276

{
  "requestUuid" : "42015cb5-cef4-44c0-8fdf-24bbaf0da6a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0210",
  "message" : "Transaction rejected, suspicious sender name.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "4ba0fc1b-5bb7-4ab9-98bd-cd9973044193"
}
HTTP Response - STATUS: E0211
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 277

{
  "requestUuid" : "60d174a3-f42c-4a58-a7a4-7e7d52c34350",
  "transactionStatus" : "REJECTED",
  "status" : "E0211",
  "message" : "Transaction rejected, card country restricted.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f945abac-c057-4a64-b722-d122308387f9"
}
HTTP Response - STATUS: E01596
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "f9913fc5-d2bd-4748-af84-bf395f6f856d",
  "transactionStatus" : "REJECTED",
  "status" : "E01596",
  "message" : "Transaction rejected, terminal blocks transactions with card issued in given card country",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "77e67815-1a5b-40e9-bc14-4a5b026bb0d2"
}
HTTP Response - STATUS: E01597
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 369

{
  "requestUuid" : "636444e5-d118-46bc-87c1-4fe3a7136c3a",
  "transactionStatus" : "REJECTED",
  "status" : "E01597",
  "message" : "Transaction rejected, 3DS version of terminal are not compatible with 3DS version defined in request. Please contact the sales department",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2ddc9c61-b90a-46d4-bd7f-9cabfcf8a155"
}
HTTP Response - STATUS: E01607
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 315

{
  "requestUuid" : "8bd0d3fa-9666-420f-8638-d1d955510e1d",
  "transactionStatus" : "REJECTED",
  "status" : "E01607",
  "message" : "Transaction rejected, internal server error during authorization request generation",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "72b4f3b5-e46c-4428-a16e-b392a174bb1e"
}
HTTP Response - STATUS: E01598
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 298

{
  "requestUuid" : "8ad7b6e4-0729-4861-8c86-5beece64f548",
  "transactionStatus" : "REJECTED",
  "status" : "E01598",
  "message" : "Transaction rejected, ECI value is not available for card provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "6d4ca2a8-6712-47df-8f27-dc27129636e8"
}
Table 178. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E0200
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 381

{
  "requestUuid" : "8bd3918d-25ce-4b51-bfef-67b6164cb95d",
  "transactionStatus" : "REJECTED",
  "cardBlockadeAdditionalData" : {
    "blockType" : "TEMP",
    "blockedUntil" : "2022-11-01T12:51:32.000"
  },
  "status" : "E0200",
  "message" : "Transaction rejected, card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "09b72c28-f432-4dab-88d8-8b43a33d066b"
}
Table 179. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

cardBlockadeAdditionalData.blockType

String

Block type. Possible values: TEMP - temporary, PERMANENT - permanent.

cardBlockadeAdditionalData.blockedUntil

String

Date until card will be blocked in yyyy-MM-ddThh-mm-ss.SSS format.

HTTP Response - STATUS: E01600
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 326

{
  "requestUuid" : "996626c8-f66b-4cc4-9e9e-62494e6c0c5e",
  "transactionStatus" : "REJECTED",
  "status" : "E01584",
  "message" : "Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "238ba9fd-2bbb-4995-b00c-9f9e256b3fcf"
}
Table 180. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01601
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 286

{
  "requestUuid" : "c2393be1-bda9-4f99-adf9-e0f330a95370",
  "transactionStatus" : "REJECTED",
  "status" : "E01601",
  "message" : "Transaction rejected, terminal is blocked for provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2b50f06b-714b-4853-9f05-6eeb71a92d54"
}
Table 181. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01602
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 308

{
  "requestUuid" : "590f245a-b5fc-4248-a7d1-b6a11a8aa6f2",
  "transactionStatus" : "REJECTED",
  "status" : "E01602",
  "message" : "Transaction rejected, geographic scope is not permitted for this transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a322d0ba-6caa-42c9-b260-2f3e9c6bc7cd"
}
Table 182. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E13000
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "97458d20-a50e-45cc-bbfb-54f6c00abd34",
  "transactionStatus" : "REJECTED",
  "status" : "E13000",
  "message" : "Transaction rejected, risk score exceeded",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "101287fc-32fa-4420-8dae-4b6edd43a853"
}
500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0142
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 183

{
  "status" : "E0142",
  "message" : "Commission configuration not add for terminal",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "89d123a7-a939-45f5-88d0-c8b8e0231da5"
}
HTTP Response - STATUS: E0153
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 280

{
  "requestUuid" : "32b77d18-e74c-4272-991e-90fe57e98f9a",
  "transactionStatus" : "PENDING",
  "status" : "E0153",
  "message" : "Transaction declined, problem with MIP connection",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "49ac0735-707a-4c50-a5dd-68337881c190"
}
HTTP Response - STATUS: E01599
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "72c25204-149b-4d3d-a648-12b586e59afc",
  "transactionStatus" : "DECLINED",
  "status" : "E01599",
  "message" : "Transaction declined, processing timeout",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "d130427c-a1e9-454c-a3dc-afdb3b5bd2e9"
}
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "908cad0b-e61d-4181-abcb-d05da548f6f9"
}
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:47 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "8dd1539e-c91d-44b3-b221-467e3f66dcf8"
}
Table 183. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:53 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "f5db22b3-24bf-423e-8e50-bbac42cd5bcb"
}
HTTP Response - STATUS: E9010
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 258

{
  "requestUuid" : "65eb86b9-c472-4bd9-bcf8-66d833ff192a",
  "transactionStatus" : "REJECTED",
  "status" : "E9010",
  "message" : "Error data center connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "8757917f-6a71-4f23-8fdb-196c6dcfaa5b"
}
Table 184. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

6.7.2. CoF Subsequent transaction

POST /client/payments/cof/subsequent Content Type: application/json, Authorization: Basic Auth
The second phase is the subsequent transaction, which requires a successful initial transaction containing the consent to store card data.
Merchant provides the cofInitialUuid parameter received in the initial transaction, which defines the customer's card data saved in the transaction.
Subsequent transactions are intended for multiple execution.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

Request
Simple request
HTTP Request
POST /client/payments/cof/subsequent HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 464
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "7abe2d33-f46c-434f-a60d-2520a389a000",
  "requestUuid" : "cb06cdcd-3be8-4bac-a79c-45baac94817d",
  "cofInitialUuid" : "9ab20b17-f703-4a79-a6e1-e53b1735747d",
  "amount" : 1000,
  "currency" : "USD",
  "autoClear" : true,
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "province" : "NY",
  "postalCode" : "24-110"
}
Table 185. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 186. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

cofInitialUuid

String

@Must not be null

CoF initial transaction identifier uuid

amount

Number

@Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "^[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

Request with forced Terminal
HTTP Request
POST /client/payments/cof/subsequent HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 523
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "535f3ea5-9f67-4cc0-b8be-242220ffce2f",
  "terminalUuid" : "0fb03f4b-a922-4abe-a7be-d65e0bb73b10",
  "requestUuid" : "b37cd60f-aa0e-4857-8323-cd57710d58ec",
  "cofInitialUuid" : "535f3ea5-9f67-4cc0-b8be-242220ffce2f",
  "amount" : 1000,
  "currency" : "USD",
  "autoClear" : true,
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "postalCode" : "24-110",
  "province" : "NY"
}
Table 187. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 188. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

cofInitialUuid

String

@Must not be null

CoF initial transaction identifier uuid

amount

Number

@Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

countryOfResidence

String

Country of residence is only required for merchants crypto

city

String

@Optional@Length(min = 1, max = 55)

Optional city of sender

street

String

@Optional @Length(min = 1, max = 55) @Pattern(regexp = "[\\s\](\\s[^\\s]+)*$")

Optional street name of sender

province

String

@Optional @Length(min = 2, max = 2)

Optional USA state or CAN province code of sender

houseNumber

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = "^[1-9][0-9]{0,4}(?:[A-z]?[0-9]{0,4})?((?:[-/ ][1-9]?[A-z]?[0-9]{0,4})*[A-z]?)?$")

Optional house number of sender

postalCode

String

@Optional @Length(min = 1, max = 10) @Pattern(regexp = (^[a-zA-Z\d][a-zA-Z\d\- ]{0,9}[a-zA-Z\d]$)|^[a-zA-Z1-9]$

Optional postal code of sender

terminalUuid

String

Terminals’s unique uuid in system

Response
Status Description

200 OK

Returned when transaction was successfully authorized.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant is not existing.

STATUS: E0132 - Returned when terminal is not existing.

STATUS: E0135 - Returned when terminal for merchant not exist or all of them are inactive.

STATUS: E0137 - Returned when there is not terminal marked as default

422 UNPROCESSABLE ENTITY

STATUS: E0150 - Returned when transaction is rejected.

STATUS: E0151 - Returned when transaction is rejected, because currency is not supported.

STATUS: E0152 - Returned when transaction is rejected, because issuer is not supported.

STATUS: E0159 - Returned when transaction is rejected, because restricted transaction amount has occurred

STATUS: E01590 - Returned when transaction is rejected, because initial CoF card not found in DC.

STATUS: E01591 - Returned when transaction is rejected, because initial CoF transaction not approved.

STATUS: E01601 - Returned when transaction is rejected, because terminal is blocked for provider

STATUS: E01602 - Transaction rejected, geographic scope is not permitted for this transaction

STATUS: E01607 - Transaction rejected, internal server error during authorization request generation

STATUS: E0200 - Returned when transaction is rejected, because card is blocked in Fenige System

STATUS: E0201 - Returned when transaction is rejected, because BIN is blocked in Fenige System

STATUS: E0202 - Returned when transaction is rejected, because Terminal is blocked in Fenige System

STATUS: E0204 - Returned when transaction is rejected, because user’s personal data was found on AML (sanctions) list

STATUS: E0205 - Returned when transaction is rejected, because Bank is blocked in Fenige System

STATUS: E0206 - Returned when transaction is rejected, because to many reject transactions and card is blocked

STATUS: E0207 - Returned when transaction is rejected, bacause to many attempts declined and card is blocked

STATUS: E0208 - Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

STATUS: E0209 - Returned when sender or receiver name contains fraudulent phrase

STATUS: E0210 - Returned when sender has suspicious name

STATUS: E0211 - Returned when transaction is rejected, because card country is blocked in Fenige System.

STATUS: E11000 - Returned when transaction processing time set by terminal was exceeded

STATUS: E13000 - Returned when transaction risk score was exceeded

500 INTERNAL SERVER ERROR

STATUS: E0142 - Returned when commission configuration is not added for terminal.

STATUS: E0153 - Returned when transaction is declined, by problem with MIP connection.

STATUS: E01599 - Transaction declined, processing timeout.

STATUS: E0190 - Returned when currency rate is invalid.

STATUS: E9000 - Returned when reason is unknown.

503 SERVICE UNAVAILABLE

STATUS: E9001 - Returned when is error acquirer connection.

STATUS: E9002 - Returned when is error mpi connection.

STATUS: E9010 - Returned when is error data center connection.

200 OK
HTTP Response - transaction
{
  "requestUuid" : "fb13775f-8058-4ea6-b5b2-20b90a29f289",
  "cofInitialUuid" : "e2a2c6b1-4c6b-4f1d-8d9a-f69ed48c78a4",
  "transactionStatus" : "APPROVED",
  "responseCode" : "CODE_00",
  "status" : "S0002",
  "message" : "Success transaction",
  "httpStatus" : "OK"
}
Table 189. Response fields
Path Type Description

requestUuid

String

Request unique uuid in system

cofInitialUuid

String

CoF transaction unique uuid in system

transactionStatus

String

Transaction status

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

responseCode

String

Response code

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:52:31 GMT
Connection: close
Content-Length: 345

{
  "errors" : {
    "amount" : [ "must not be null" ],
    "merchantUuid" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "currency" : [ "must not be null" ],
    "cofInitialUuid" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "d147a40c-72d2-4b98-a628-e9f44a0f4788"
}
Table 190. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141
Date: Fri, 12 Apr 2024 07:52:29 GMT

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "b05c89ae-516a-45d5-b79f-bf577ec7faab"
}
Table 191. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 135
Date: Fri, 12 Apr 2024 07:52:31 GMT

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "d5003dc2-29d7-4943-8133-2d5b68900dca"
}
Table 192. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "8cdfa9d4-a2cf-4bbb-a1a3-f7caa12e4c22"
}
HTTP Response - STATUS: E0132
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0132",
  "message" : "Terminal not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "11ebb833-e953-4785-b315-fbf7767eb39e"
}
HTTP Response - STATUS: E0135
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 163

{
  "status" : "E0137",
  "message" : "Default terminal not exist",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "5c89b14e-1cea-431c-b80e-8c56961dedfa"
}
HTTP Response - STATUS: E0137
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 159

{
  "status" : "E0135",
  "message" : "Terminals for merchant not exists",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "955a68b9-3ada-4a42-817f-5859b9719edb"
}
Table 193. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E0150
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 251

{
  "requestUuid" : "9f80478d-2036-4324-8d85-41944d430248",
  "transactionStatus" : "REJECTED",
  "status" : "E0150",
  "message" : "Transaction rejected",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "9131bc3e-957d-428d-8cd3-21f45d940f0e"
}
HTTP Response - STATUS: E0151
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 275

{
  "requestUuid" : "b2b72666-7ecd-4233-8aff-a484805a5743",
  "transactionStatus" : "REJECTED",
  "status" : "E0151",
  "message" : "Transaction rejected, currency not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "701f81ac-4ba4-4b7e-baa0-1212dbee090c"
}
HTTP Response - STATUS: E0152
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "f3565cd0-5599-435f-a784-b398fa30c300",
  "transactionStatus" : "REJECTED",
  "status" : "E0152",
  "message" : "Transaction rejected, issuer card not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "c90b4896-a9e2-455c-9c66-a889875bfc6b"
}
HTTP Response - STATUS: E0159
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "5c403813-5d75-4baf-99d7-53df586d976d",
  "transactionStatus" : "REJECTED",
  "status" : "E0159",
  "message" : "Transaction rejected, restricted transaction amount has occurred",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "6faa90c1-94e7-40f3-9635-480be0a619cd"
}
HTTP Response - STATUS: E01590
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "be1087e8-3ebf-4ab1-8ffe-7abd8875a7c4",
  "transactionStatus" : "REJECTED",
  "status" : "E01590",
  "message" : "Transaction rejected, cof card not found in db",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "ec5b6b62-7672-495d-9c15-6df74f1bfa04"
}
HTTP Response - STATUS: E01591
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "f3503061-59f6-485e-b092-562bb2dadafd",
  "transactionStatus" : "REJECTED",
  "status" : "E01590",
  "message" : "Transaction rejected, cof card not found in db",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "95489340-7969-470c-b72b-befcaedca204"
}
HTTP Response - STATUS: E0200
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 381

{
  "requestUuid" : "53f8b679-e747-481b-8d49-6aa389b65796",
  "transactionStatus" : "REJECTED",
  "cardBlockadeAdditionalData" : {
    "blockType" : "TEMP",
    "blockedUntil" : "2022-11-01T12:51:32.000"
  },
  "status" : "E0200",
  "message" : "Transaction rejected, card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "19648679-c8cb-4f2d-ab42-95b4a76f0a48"
}
HTTP Response - STATUS: E0201
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 267

{
  "requestUuid" : "69f3d54c-645e-4ae3-9642-36c21b31bab8",
  "transactionStatus" : "REJECTED",
  "status" : "E0201",
  "message" : "Transaction rejected, bin is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "7b31910d-0a2e-4379-a47a-a5d50c84e627"
}
HTTP Response - STATUS: E0202
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "50bcbed4-6762-4462-9ce8-49c5b58a72d3",
  "transactionStatus" : "REJECTED",
  "status" : "E0202",
  "message" : "Transaction rejected, terminal is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "937e8255-a0fb-45f2-b022-2508fe71c6e4"
}
HTTP Response - STATUS: E0204
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "bca978f6-d44b-43d6-bb93-6b5c203cabac",
  "transactionStatus" : "REJECTED",
  "status" : "E0204",
  "message" : "Transaction rejected, user is on aml list",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "257b93c4-4199-4308-a3ea-744d386b3dbc"
}
HTTP Response - STATUS: E0205
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 268

{
  "requestUuid" : "f893c98d-007e-46ab-8bf7-c553da586634",
  "transactionStatus" : "REJECTED",
  "status" : "E0205",
  "message" : "Transaction rejected, bank is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "9b3e8eeb-5e09-460b-84a8-6d774f7bbf6a"
}
Table 194. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E0206
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 301

{
  "requestUuid" : "bb4938b8-846f-4cfc-a28e-78f0e6e77fd4",
  "transactionStatus" : "REJECTED",
  "status" : "E0206",
  "message" : "Transaction rejected, too many reject transactions and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "30b927ef-107e-4055-bdbe-91a24a36d038"
}
HTTP Response - STATUS: E0207
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 299

{
  "requestUuid" : "3075fac0-e809-49e2-87e1-6dee6cb7a9a3",
  "transactionStatus" : "REJECTED",
  "status" : "E0207",
  "message" : "Transaction rejected, too many attempts declined and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "561c5e91-7480-43cf-b053-3169db8a8312"
}
HTTP Response - STATUS: E0208
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "24e8d8d8-f378-4815-b24f-b3d8d1cf6e66",
  "transactionStatus" : "REJECTED",
  "status" : "E0208",
  "message" : "Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "438befca-901b-45b8-89fe-0848b1f3bfb0"
}
HTTP Response - STATUS: E0209
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 292

{
  "requestUuid" : "6ec22cc7-933a-424a-83ac-bb44d006c386",
  "transactionStatus" : "REJECTED",
  "status" : "E0209",
  "message" : "Transaction rejected, sender name contains fraudulent phrase.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "9ea074b2-5161-461a-a648-d8617d3b3480"
}
HTTP Response - STATUS: E0210
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 276

{
  "requestUuid" : "42015cb5-cef4-44c0-8fdf-24bbaf0da6a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0210",
  "message" : "Transaction rejected, suspicious sender name.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "4ba0fc1b-5bb7-4ab9-98bd-cd9973044193"
}
HTTP Response - STATUS: E0211
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 277

{
  "requestUuid" : "60d174a3-f42c-4a58-a7a4-7e7d52c34350",
  "transactionStatus" : "REJECTED",
  "status" : "E0211",
  "message" : "Transaction rejected, card country restricted.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f945abac-c057-4a64-b722-d122308387f9"
}
HTTP Response - STATUS: E01601
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 286

{
  "requestUuid" : "c2393be1-bda9-4f99-adf9-e0f330a95370",
  "transactionStatus" : "REJECTED",
  "status" : "E01601",
  "message" : "Transaction rejected, terminal is blocked for provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2b50f06b-714b-4853-9f05-6eeb71a92d54"
}
HTTP Response - STATUS: E01602
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 308

{
  "requestUuid" : "590f245a-b5fc-4248-a7d1-b6a11a8aa6f2",
  "transactionStatus" : "REJECTED",
  "status" : "E01602",
  "message" : "Transaction rejected, geographic scope is not permitted for this transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a322d0ba-6caa-42c9-b260-2f3e9c6bc7cd"
}
HTTP Response - STATUS: E01607
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 315

{
  "requestUuid" : "8bd0d3fa-9666-420f-8638-d1d955510e1d",
  "transactionStatus" : "REJECTED",
  "status" : "E01607",
  "message" : "Transaction rejected, internal server error during authorization request generation",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "72b4f3b5-e46c-4428-a16e-b392a174bb1e"
}
HTTP Response - STATUS: E13000
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "97458d20-a50e-45cc-bbfb-54f6c00abd34",
  "transactionStatus" : "REJECTED",
  "status" : "E13000",
  "message" : "Transaction rejected, risk score exceeded",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "101287fc-32fa-4420-8dae-4b6edd43a853"
}
500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0142
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 183

{
  "status" : "E0142",
  "message" : "Commission configuration not add for terminal",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "c9987432-34fb-4ffa-a7d7-344b55b507e8"
}
HTTP Response - STATUS: E0153
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 280

{
  "requestUuid" : "d57e9947-709b-4326-af79-6e788d092bfd",
  "transactionStatus" : "PENDING",
  "status" : "E0153",
  "message" : "Transaction declined, problem with MIP connection",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "c282b0d5-29e8-40b8-8e44-25b8be6f751d"
}
HTTP Response - STATUS: E01599
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "fba2d8d5-266b-48e3-8bd8-c7af094b3532",
  "transactionStatus" : "DECLINED",
  "status" : "E01599",
  "message" : "Transaction declined, processing timeout",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "ae8e7e0d-d573-4d51-bc39-a16cb84b57e0"
}
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "af7e1628-04df-43b0-938f-39c552ee6b58"
}
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:47 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "8dd1539e-c91d-44b3-b221-467e3f66dcf8"
}
Table 195. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Fri, 12 Apr 2024 07:53:53 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "f5db22b3-24bf-423e-8e50-bbac42cd5bcb"
}
HTTP Response - STATUS: E9010
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 164

{
  "status" : "E9010",
  "message" : "Error data center connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "86e9dd8f-4586-4844-9706-20cada6ce25f"
}
Table 196. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

merchantAdviceCode

String

Information about the reasons for declined transactions and actions that merchants can take. Occurs only for mastercard and for declined transactions if Mastercard returns this information

6.8. Recurring payment

    A Recurring Payment is a type of the transaction performed as a result of an agreement between a cardholder and a merchant in which the cardholder authorizes
the merchant to bill the cardholder’s Mastercard account, with no specified end date. Billing may occur periodically, such as monthly, quarterly or annually.
Each payment may be for a variable or a fixed amount.
    The method is used to charge the cardholder with no need to collect account data (PAN, exp date) from merchant at every transaction. Only initial transaction requires providing
card information which are saved in secure Fenige environment according to PCI-DSS Compliance.
    This endpoint is idempotent so if you execute more than one requests with the same data even at the same time, only first registered transaction will be processed further. In
response, we receive transaction status.
The Recurring Payment consists of two parts: initial and subsequent, which are discussed in detail below.
Please see detailed Recurring Payment with 3-DS flow described on below listing.
Merchant has the ability to make a payment for goods which causes the cardholder to be debited in the currency of purchase, terminal or card currency based on the parameters provided: currency of transaction, different currency terminals held and currencies supported by the card.
The optional terminalUuid field provided during any of the authorisation methods forces the card to be debited in the currency of the terminal specified if the purchase currency is different from the terminal currency a currency conversion will take place.
The Fenige Payment API methods optionally allows merchants to store card data and sensitive personal data in order to allow performing subsequent transactions.
If merchant decides to use DataCenter transaction flow then is required to provide the card id of the card previously stored in the Fenige DataCenter, from which card the
relevant required parameters will be downloaded and used for authorization.
Card data and sensitive personal data according to the Fenige API specification are: cardNumber, expiryDate, firstName, lastName and email.
All card data are stored securely on Fenige DataCenter servers in accordance with applicable security requirements.

When performing authorization, remember that there are currencies with different number of decimal places. For example: VND has no pennies and KWD has three decimal places. Please take this into account in the Amout field. For more information on other currencies, see ISO 4217.

Recurring payment with outside 3DS flow
recurring trx outside3ds flow
Recurring payment with DataCenter outside 3DS flow
recurring trx datacenter outside3ds flow

6.8.1. Recurring Initial transaction

POST /client/payments/recurring/initial Content Type: application/json, Authorization: Basic Auth
    The start phase is a one-time initial transaction, which is a simple e-commerce payment with forced 3-DS authentication, but contains the customer's consent to store card data
for recurring subsequent purchases. Card data are stored in a secure FENIGE environment.
    After completing the recurring initial merchant receives the unique recurringInitialUuid identifier needed to perform subsequent Recurring Payments transactions without
    having to enter card data in the future.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

Request
Simple request
HTTP Request
POST /client/payments/recurring/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 897
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "7abe2d33-f46c-434f-a60d-2520a389a000",
  "requestUuid" : "daa48d96-6593-42b4-baf4-dbd22f84c71c",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/26",
  "cvc2" : "123",
  "phoneNumber" : "500500500",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "countryOfResidence" : "US",
  "street" : "Karola Olszewskiego",
  "houseNumber" : "10",
  "city" : "Lublin",
  "postalCode" : "24-110",
  "province" : "NY"
}
Table 197. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 198. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters, @Must match regular expression: \d+

Cardholder’s card cvc2

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

phoneNumber

String

@Optional @Must match regular expression [0-9]{3,14}

Cardholder’s phone number

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

Cardholder Authentication Verification Value. The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String