1. Changelog

Version Date Description

8.8

2022-11-24

New field on payment method - country of residence required for merchants crypto

8.7

2022-10-26

Removal from use 3DS 1 for all countries (except those configured in the system)

8.6

2022-10-24

Adding information about the withdrawal of 3DSv1.

8.5

2022-09-28

First BLIK release. New response codes to blik methods: E0164, E0165, E0166, E0167, E0189, E00180, E9800

8.4

2022-09-16

New terminal limits added: + E10000 Transaction rejected, terminal daily card transaction limit exceeded, + E10001 Transaction rejected, terminal daily transaction limit, + E10002 Transaction rejected, terminal monthly transaction limit exceeded, + 2.6.4. Payment

8.3

2022-08-29

New API fields in authorization response - cardBlockadeAdditionalData.blockType, cardBlockadeAdditionalData.blockedUntil present when transaction was rejected because card was blocked. Example response is available in authorize response sections.

8.2

2022-08-22

New fields on payment method - there are data address sender required for crypto or wallet

8.1

2022-08-01

New response fields on 3DS 2.X Response: 'errorCode', 'errorCodeDetails', Request: challengeWindowSize

8.0

2022-05-05

New response codes to payment methods: E209 - sender name contains fraudulent phrase, E0210 - Transaction rejected, suspicious sender name

7.9

2022-04-08

New response fields to transaction details method added: terminalSettlementCurrency, amountInTerminalSettlementCurrency, commissionFenigeInTerminalSettlementCurrency

7.8

2022-03-21

Monitoring status added (E0208) 2.7.9. Monitoring

7.7

2021-03-18

New API method: Payment JWE. New response statuses: E8009, E8010. E8011.

7.6

2022-03-11

Remove Terminal/Merchant management from Fenige Ecommerce API

7.5

2022-03-01

Monitoring status added (E0207) 2.7.9. Monitoring

7.4

2021-12-30

New transaction status defined for terminal based restricted transaction amounts (E0159) + 6.4 Payments

7.3

2021-12-17

New transaction status added (E01602) for all transactions type to indicate blocked transaction in specific geographic scope + 6.10 Details

7.2

2021-12-16

Added responseCode - new field in Payment API - Reversal error response (422 UNPROCESSABLE ENTITY with status E0161).

7.1

2021-12-06

Updated validation for purchaseAmount in Authentication request in 3DS 2.X verification methods

7.0

2021-11-22

Add new response code(E01584, E01585) and change validation for outside3ds.eci

6.9

2021-11-04

Add noCurrencyConversion field for payment methods. For more information please refer to 6.4 Payments

6.8

2021-10-26

New transaction status added (E01596) for installment payment performed using terminal restricted card country + 6.9. Installment Payment

6.7

2021-10-19

Added new optional field 'receiverAmount' in payment methods

6.6

2021-10-18

Added description of the use case of the Google pay method.

6.5

2021-10-14

Added new types: DOMESTIC_PL, INTRA_EU, INTER to geographicScope field in 6.10 Details

6.4

2021-08-17

New error status: E01601 - terminal is blocked for provider

6.3

2021-06-09

Added Payment API field 'transactionRef' for determining merchant additional transaction identifier

6.2

2021-05-18

New filed on 3DS 1.0 Initialize method to process Token PAN transaction

6.1

2021-05-05

An implementation of CODE_65(Mastercard)/CODE_1A(Visa) transaction rejection logic for MASTERCARD and VISA. More details can be found here: 6.4 Payments

6.0

2021-04-19

New error status: E01600 in response for 3DS 2.X payment method

5.9

2021-04-09

Added card Id support from Datacenter for methods with 3ds 2.x/3ds 1.0

5.8

2021-04-09

Monitoring status added (E0206) 2.7.9. Monitoring

5.7

2021-04-01

Introduction of a new webhook functionality. Now it is possible to handle information about transaction status without polling API. 9. Webhooks

5.6

2021-03-10

Remove status E01595 and allow processing of all types of payment transactions using quasi-cash terminals

5.5

2021-01-20

Internal functionality to restrict access to specific method for PSP.

5.4

2021-01-18

New field 'terminalUrl' in Ecommerce Payment requests added. The field is optional now, but it is recommended to include it in your request body. From 2021-05-03 the 'terminalUrl' and 'addressIp' fields will be required.

5.3

2021-01-15

Update for 3DS 1.0 Add merchantUuid for verify and initialize method. Optional fields to get merchant configuration.

5.2

2021-01-01

New status E8004 for Clearing and Reversal method. Locks the method call until the ongoing task for a given Request Uuid is completed.

5.1

2020-12-30

Update for 3DS 2.X

5.0

2020-12-06

DataCenter card transaction functionality release for Payment API methods + 6.4. Payment + 6.5. MO/TO payment + 6.6. Token payment + 6.7. CoF payment + 6.8. Recurring payment + 6.9. Installment Payment

4.12

2020-11-20

Cards management methods added 5. Cards

4.11

2020-11-17

3DS version enforcement configuration

4.10

2020-11-06

Change in outside 3DS, authentication status required Y or A value

4.9

2020-11-06

Add Installment Payment API methods 5.10. Installment Payment

4.8

2020-10-26

New transaction status added (E01596) for transactions performed using terminal restricted card country + 5.5. Payment + 5.6. MO/TO payment + 5.7. Token payment + 5.7. CoF payment + 5.7. Recurring payment

4.7

2020-09-23

Add new VISA response code value 80

4.6

2020-09-16

Add new fields in details: authorizeRRN, authorizeStan, reversalRRN, reversalStan, arn

4.5

2020-09-1

Add new method Currency for card 5.3. Currency for card

4.4

2020-09-1

Add new method MO/TO payment 5.6. MO/TO Payment

4.3

2020-08-28

Add new response status E01595 - Returned when terminal MCC configuration is QUASI-CASH.

4.2

2020-07-23

Add new response status E0187 during refund processing to notify that chargeback was reported for transaction

4.1

2020-07-09

Add 3DS 2.X

4.0

2020-07-01

New method "Card Provider" added

3.9

2020-06-30

Update Mastercard statuses table

3.8

2020-06-18

Response status E0141 replaced with E0190 when currency rate cannot be found

3.7

2020-06-10

Documentation updated. Currency Rate method will be deprecated on 30.09.2020 and will be replaced by a new version of the Currency Rate method. 5.2. Currency Rate

3.6

2020-06-08

New status E0163 added + 2.6.6. Reversal

3.5

2020-06-05

Documentation updated. Change value and description about field "md" in Initialize and Finalize methods: + 6.2. Initialize + 6.3. Finalize

3.4

2020-05-13

New reversal status (S0005, S0006) and changed response + 5.11.2 Reversal - response

3.3

2020-04-27

Release API with Recurring Payments functionality + 5.9.1 Recurring Payment - initial transaction + 5.9.4 Recurring Payment - subsequent transaction

3.2

2020-03-26

Release API with Credential on File (CoF) functionality + 5.8.1 Cof payment - initial transaction + 5.8.4 Cof payment - subsequent transaction

3.1

2020-03-05

Monitoring status added (E0205) + 2.6.8. Monitoring + 5.5. Payment + 5.7. Token payment

3.0

2020-03-04

Removed commission and merchantCommission from transaction details response body.

2.9

2020-03-02

ERROR_MPI_CONNECTION status is replaced by the following statuses:

Error mpi - 3ds initialize failed

Error mpi connection

- the change will be available on production from 12.03.2020.

2.8

2020-02-28

3DS Verification method + 6. 3DS 1.0 verification methods - the change will be available on production from 12.03.2020.

2.7

2020-02-24

Outside 3DS transactions documentation added + 5.2. Payment - request

2.6

2020-02-18

Deleted refund status (S0012, S0013), changed refund status (E0184) and added new status (E0186) to refund. Changed response status for refund (2.6.7) + 2.6.7. Refund

2.5

2020-01-31

Information about certification process added

2.4

2020-01-30

New transaction status, amount limit per terminal (E0158) + 2.6.4. Payment

2.3

2019-11-26

Monitoring status added (E0204) + 2.6.8. Monitoring

2.2

2019-11-15

Monitoring status added (E0203) + 2.6.8. Monitoring

2.1

2019-09-26

Monitoring statuses added + 2.6.8. Monitoring

2.0

2019-09-23

New payment method with token description added

1.9

2019-09-10

A flow diagrams updated

1.8

2019-07-18

Clearing amount field has been added to the details method

1.7

2019-05-10

Methods descriptions modified and statuses description improved

1.6

2019-04-25

Endpoint (base url) changed to https://ecom-staging.fenige.pl

1.5

2019-03-20

Fields validation changes

1.4

2019-02-04

Optional IP address field added in transaction request body

1.3

2019-01-16

Fields validation changes

1.2

2018-12-18

Documentation update

1.1

2018-11-13

Partial clearing method describe added

1.0

2018-10-01

First release of documentation

2. Introduction

Fenige e-commerce API service allows to easily and safely perform operations realated to e-commerce. You can authorize payments and show details about completed transactions. Also you can make reversals, clearings and refunds.

Transaction process:

1. Fenige registers the PSP, Merchants and Terminals in his system.

2. The Partner can use all available methods in the API.

2.1. Certification

In order to access the Moneysend API, you must successfully pass the certification process in our dedicated application. The application is available at https://certification.fenige.pl/
The new partner will receive login data from the Fenige employee, who is responsible for introducing new customers. After a positive result, the user receives access to the production environment. Be adviced that the entire process takes place in a staging environment.

2.2. Transaction types

In Ecommerce Service we have two various transaction types

Transaction type Description

Domestic

This transaction type can be execute only if card’s country of sender, receiver and merchant are all the same.

Crossborder

This transaction type is executed if one or more conditions of Domestic Transaction type is not fulfill.

ecommerce flow
Figure 1. E-commerce flow

2.3. Endpoints

Environment Endpoint (base url)

Staging

https://ecom-staging.fenige.pl

2.4. HTTP verbs

RESTful notes tries to adhere as closely as possible to standard HTTP and REST conventions in its use of HTTP verbs.

Verb Usage

GET

Used to retrieve a resource

POST

Used to create a new resource

PUT

Used to update specific resource

DELETE

Used to delete a resource

2.5. Language

If you want to select your language, add Accept-Language header to request JSON and set its value to, for example, pl, en, cs or sk. In case of a successful transaction for the send money method you will receive a email confirmation in the language which you set.

Accept-Language

en

2.6. General methods

All api methods require the delivery of appropriate headers.

List of methods headers used in Fenige REST API:

Key Value Validation Description

Content-Type

application/json

Required

Used to indicate the media type of the resource

Authorization

Basic cHNwbmFtZTpwYXNzd29yZA==

Required

Used to resolve PSP context of user. Basic Auth from PSP data (PSP name and password). Consist of keyword Basic and string obtained from Base64 coding method for PSP name and password parameter

2.7. HTTP status codes

RESTful notes tries to adhere as closely as possible to standard HTTP and REST conventions in its use of HTTP status codes.

Status code Usage

200 OK

The request completed successfully

202 ACCEPTED

The request has been accepted for processing, but the processing has not been completed. The request might or might not eventually be acted upon, as it might be disallowed when processing actually takes place.

203 NON-AUTHORITATIVE INFORMATION

The request with 3ds has been registered for processing. Check status in a while.

400 BAD REQUEST

The request was malformed. The response body will include an error providing further information

404 NOT FOUND

The requested resource did not exist

500 INTERNAL SERVER ERROR

Message occur when an unexpected condition was encountered

2.7.1. Currency rate

Table 1. Response status for Currency rate method
Code Messages HTTP Code HTTP STATUS

E0190

Failed to get currency rates

500

INTERNAL_SERVER_ERROR

2.7.2. Currency for card

Table 2. Response status for Currency for card method
Code Messages HTTP Code HTTP STATUS

E0400

Failed to get currency for card

500

INTERNAL_SERVER_ERROR

E0401

Issuer card is not supported

422

UNPROCESSABLE_ENTITY

2.7.3. Payment

Table 3. Response status for Payment
Code Messages HTTP Code HTTP STATUS

S0000

SUCCESS

200

OK

S0001

SUCCESS

204

NO CONTENT

S0002

Success transaction

200

OK

S0003

Transaction declined, check response code for reason

200

OK

S0004

PENDING

202

ACCEPTED

E0150

Transaction rejected

422

UNPROCESSABLE ENTITY

E0151

Transaction rejected, currency not supported

422

UNPROCESSABLE ENTITY

E0152

Transaction rejected, issuer not supported

422

UNPROCESSABLE ENTITY

E0153

Transaction declined, problem with MIP connection

500

INTERNAL SERVER ERROR

E0154

Failed to fetch transaction details

500

INTERNAL SERVER ERROR

E0155

Transaction not exist

404

NOT FOUND

E0156

Transaction rejected, terminal not supported 3ds

422

UNPROCESSABLE ENTITY

E0157

Transaction rejected, card not supported 3ds

422

UNPROCESSABLE ENTITY

E0158

Transaction rejected, maximum transaction amount limit exceeded

422

UNPROCESSABLE ENTITY

E0159

Transaction rejected, restricted transaction amount has occurred

422

UNPROCESSABLE ENTITY

E8009

Merchant RSA keys not found

404

NOT FOUND

E8010

Merchant RSA key expired

422

UNPROCESSABLE ENTITY

E8011

Internal error during card decrypting

500

INTERNAL SERVER ERROR

E01580

Transaction rejected. Data center card is expired.

422

UNPROCESSABLE ENTITY

E01581

Transaction rejected. Not found Card Authentication (3DS 2.X)

422

UNPROCESSABLE ENTITY

E01582

Transaction rejected. Card Authentication not match to transaction type (3DS 2.X)

422

UNPROCESSABLE ENTITY

E01583

Transaction rejected. Outside 3ds is required for terminal

422

UNPROCESSABLE ENTITY

E01584

Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request

422

UNPROCESSABLE ENTITY

E01585

Transaction rejected, Outside 3ds values are not valid for Card Authentication.

422

UNPROCESSABLE ENTITY

E01590

Transaction rejected, cof card not found in db

422

UNPROCESSABLE ENTITY

E01591

Transaction rejected, initial cof transaction not approved

422

UNPROCESSABLE ENTITY

E01592

Transaction rejected, recurring card not found in db

422

UNPROCESSABLE ENTITY

E01593

Transaction rejected, initial recurring transaction not approved

422

UNPROCESSABLE ENTITY

E01594

Transaction rejected, transactionXId parameter had registered for another transaction

422

UNPROCESSABLE ENTITY

E01596

Transaction rejected, terminal blocks transactions with card issued in given card country

422

UNPROCESSABLE ENTITY

E01597

Transaction rejected, 3DS version of terminal are not compatible with 3DS version defined in request

422

UNPROCESSABLE ENTITY

E01598

Transaction rejected, ECI value is not available for card provider

422

UNPROCESSABLE ENTITY

E01599

Transaction declined, processing timeout

500

INTERNAL_SERVER_ERROR

E01600

Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request

422

UNPROCESSABLE ENTITY

E01601

Transaction rejected, terminal is blocked for provider

422

UNPROCESSABLE ENTITY

E01602

Transaction rejected, geographic scope is not permitted for this transaction

422

UNPROCESSABLE ENTITY

E01603

Transaction rejected, Transactions without 3ds above 30 EUR (the blockade applies only to EU countries)

422

UNPROCESSABLE ENTITY

E01604

Transaction rejected, transactions 3DS 1.X not supported for given country

422

UNPROCESSABLE ENTITY

E10000

Transaction rejected, terminal daily card transaction limit exceeded

422

UNPROCESSABLE ENTITY

E10001

Transaction rejected, terminal daily transaction limit exceeded

422

UNPROCESSABLE ENTITY

E10002

Transaction rejected, terminal monthly transaction limit exceeded

422

UNPROCESSABLE ENTITY

E05000

Installment Payment initial not found

500

INTERNAL SERVER ERROR

E05001

Installment Payment already confirmed

500

INTERNAL SERVER ERROR

E05002

Installment Payment already cancelleded

500

INTERNAL SERVER ERROR

E05003

Installment Payment already pay in full

500

INTERNAL SERVER ERROR

E05004

Installment Payment not confirmed in required time

500

INTERNAL SERVER ERROR

E05005

Installment Payment Initial was failed

500

INTERNAL SERVER ERROR

E05006

Installment Payment could not find valid installment plan for requested uuid

500

INTERNAL SERVER ERROR

E05007

Installment Payment Option not allowed for transaction

500

INTERNAL SERVER ERROR

E05008

Installment Payment missing plan uuid

500

INTERNAL SERVER ERROR

E05009

Installment Payment missing request number of installments

500

INTERNAL SERVER ERROR

E05010

Installment Payment requested number of installments is outside of allowed range

500

INTERNAL SERVER ERROR

E05011

Installment Payment operation not allowed, installment type allows ISSUER_FINANCED installments

500

INTERNAL SERVER ERROR

E05014

Installment Payment outside 3ds request is required for terminal

500

INTERNAL SERVER ERROR

E05015

Installment Payment unsupported card provider VISA

500

INTERNAL SERVER ERROR

2.7.4. Clearing

Table 4. Response status for Clearing
Code Messages HTTP Code HTTP STATUS

E0170

Clearing of the payment is procesing

422

UNPROCESSABLE ENTITY

E0171

Can’t clear payment

422

UNPROCESSABLE ENTITY

E0172

Can’t clear payment, the time is over

422

UNPROCESSABLE ENTITY

E0173

Payment is automatically cleared

422

UNPROCESSABLE ENTITY

E0174

Payment is already cleared

422

UNPROCESSABLE ENTITY

E0175

Can’t clear payment, clearing amount is to low

503

UNPROCESSABLE ENTITY

E0176

Can’t clear payment, clearing amount is to high

503

UNPROCESSABLE ENTITY

2.7.5. Reversal

Table 5. Response status for Reversal
Code Messages HTTP Code HTTP STATUS

S0005

Success reverse transaction

200

OK

S0006

Reverse transaction declined, check response code for reason

200

OK

E0160

Reversal of the payment is procesing

422

UNPROCESSABLE ENTITY

E0161

Can’t reversal payment

422

UNPROCESSABLE ENTITY

E0162

Payment is already reversed

422

UNPROCESSABLE ENTITY

E0163

Payment is already refunded

422

UNPROCESSABLE ENTITY

E05012

Installment Payment reverse not allowed

500

INTERNAL SERVER ERROR

2.7.6. Refund

Table 6. Response status for Refund
Code Messages HTTP Code HTTP STATUS

E0180

Refund rejected, no MC/VISA response

500

INTERNAL SERVER ERROR

E0181

Refund rejected by MC/VISA

500

INTERNAL SERVER ERROR

E0182

Refund transaction amount to low

400

BAD REQUEST

E0183

Refund transaction amount to high

400

BAD REQUEST

E0184

Transaction is refunded

422

UNPROCESSABLE ENTITY

E0185

Transaction not cleared, can’t refund

422

UNPROCESSABLE ENTITY

E0186

Refund is already processing

422

UNPROCESSABLE ENTITY

E0187

Transaction is chargeback reported

422

UNPROCESSABLE ENTITY

E05013

Installment Payment refund not allowed

500

INTERNAL SERVER ERROR

2.7.7. Monitoring

Table 7. Monitoring response status
Code Messages HTTP Code HTTP STATUS

E0200

Transaction rejected, card is blocked

422

UNPROCESSABLE ENTITY

E0201

Transaction rejected, bin is blocked

422

UNPROCESSABLE ENTITY

E0202

Transaction rejected, terminal is blocked

422

UNPROCESSABLE ENTITY

E0203

Transaction rejected, token is blocked

422

UNPROCESSABLE ENTITY

E0204

Transaction rejected, user is on aml list

422

UNPROCESSABLE ENTITY

E0205

Transaction rejected, bank is blocked

422

UNPROCESSABLE ENTITY

E0206

Transaction rejected, to many reject transactions and card is blocked

422

UNPROCESSABLE ENTITY

E0207

Transaction rejected, to many attempts declined and card is blocked

422

UNPROCESSABLE ENTITY

E0208

Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

422

UNPROCESSABLE ENTITY

2.7.8. 3DS 2.X

Table 8. Response status for 3DS 2.X
Code Messages HTTP Code HTTP STATUS

S0000

SUCCESS

200

OK

E0300

Error mpi V2 - failed internal

500

INTERNAL_SERVER_ERROR

E0301

Three DS Method Data mismatch

422

UNPROCESSABLE_ENTITY

E0302

Error on parsing Three DS Method Data

422

UNPROCESSABLE_ENTITY

E0303

Card number not Enrolled in 3DS v2

422

UNPROCESSABLE_ENTITY

E0304

Invalid card authentication id

422

UNPROCESSABLE_ENTITY

E0305

Issuer card is not supported

422

UNPROCESSABLE_ENTITY

E0306

Invalid card number

422

UNPROCESSABLE_ENTITY

E0307

Card Authentication not found

404

NOT_FOUND

E0132

Terminal not exists

404

NOT_FOUND

E0309

Protocol version is not supported

422

UNPROCESSABLE_ENTITY

E0310

Invalid Three DS Method Data

422

UNPROCESSABLE_ENTITY

2.7.9. 3DS 2.X more details Error Code

Table 9. More details Error Code for 3DS 2.X
Code Description

E1001

Three DS Method Data mismatch

E1002

Error on parsing Three DS Method Data

E1003

Card number not Enrolled in 3DS v2

E1004

Read file exception

E1005

Invalid card authentication id

E1006

Issuer card is not supported

E1007

Can not fetch provider configuration

E1008

Invalid card number

E1009

Card Authentication not found

E1010

Protocol version is not supported

E1011

Protocol version is not supported

E601

Could not create ephemeral key.

E602

Invalid certificate.

E603

Invalid operation.

E604

Invalid ClientAuth data.

E605

The errorCode element in Error message is invalid.

E606

Invalid index.

E700

Unknown host exception.

E1101

Protocol error. Received invalid message.

E1102

Protocol error. Invalid message version.

E1201

Protocol error. Missing data element.

E1202

Protocol error. Unrecognized critical extension.

E1203

Data element value is invalid.

E1204

Duplicate Data Element.

E1286

Error while sending to DS.

E1301

Protocol error. Unrecognized transaction Id.

E1302

Decryption failed.

E1303

Access Denied, Invalid Endpoint

E1304

ISO Code Invalid.

E1305

Transaction Data Not Valid.

E1306

MCC Not Valid for Payment System.

E1307

Serial Number Not Valid.

E1402

Transaction Timed Out.

E1403

Transient System Failure.

E1404

Permanent system failure.

E1405

System Connection Failure.

E118

Firewall Error. Error description contains detailed message.

E143

Busy executing current method.

E151

HTTP protocol error. The error message has the server response.

E152

No server specified in URL

E153

Specified URLScheme is invalid.

E155

Range operation is not supported by server.

E156

Invalid cookie index (out of range).

E301

Interrupted.

E302

Can’t open AttachedFile.

E100

You cannot change the RemotePort at this time. A connection is in progress.

E101

You cannot change the RemoteHost (Server) at this time. A connection is in progress.

E102

The RemoteHost address is invalid (X.X.X.X).

E104

Already connected. If you want to reconnect, close the current connection first.

E106

You cannot change the LocalPort at this time. A connection is in progress.

E107

You cannot change the LocalHost at this time. A connection is in progress.

E112

You cannot change MaxLineLength at this time. A connection is in progress.

E116

RemotePort cannot be zero. Please specify a valid service port number.

E117

Cannot change UseConnection option while the bean is Active.

E135

Operation would block.

E201

Timeout.

E211

Action impossible in control’s present state.

E212

Action impossible while not connected.

E213

Action impossible while listening.

E303

Could not open file.

E434

Unable to convert string to selected CodePage

E1105

Already connecting. If you want to reconnect, close the current connection first.

E1117

You need to connect first.

E1119

You cannot change the LocalHost at this time. A connection is in progress.

E1120

Connection dropped by remote host.

E270

Cannot load specified security library.

E271

Cannot open certificate store.

E272

Cannot find specified certificate.

E273

Cannot acquire security credentials.

E274

Cannot find certificate chain.

E275

Cannot verify certificate chain.

E276

Error during handshake.

E280

Error verifying certificate.

E281

Could not find client certificate.

E282

Could not find server certificate.

E283

Error encrypting data.

E284

Error decrypting data.

E10004

Interrupted system call.

E10009

Bad file number.

E10013

Access denied.

E10014

Bad address.

E10022

Invalid argument.

E10024

Too many open files.

E10035

Operation would block.

E10036

Operation now in progress.

E10037

Operation already in progress.

E10038

Socket operation on non-socket.

E10039

Destination address required.

E10040

Message too long.

E10041

Protocol wrong type for socket.

E10042

Bad protocol option.

E10043

Protocol not supported.

E10044

Socket type not supported.

E10045

Operation not supported on socket.

E10046

Protocol family not supported.

E10047

Address family not supported by protocol family.

E10048

Address already in use.

E10049

Can’t assign requested address.

E10050

Network is down.

E10051

Network is unreachable.

E10052

Net dropped connection or reset.

E10053

Software caused connection abort.

E10054

Connection reset by peer.

E10055

No buffer space available.

E10056

Socket is already connected.

E10057

Socket is not connected.

E10058

Can’t send after socket shutdown.

E10059

Too many references, can’t splice.

E10060

Connection timed out.

E10061

Connection refused.

E10062

Too many levels of symbolic links.

E10063

File name too long.

E10064

Host is down.

E10065

No route to host.

E10066

Directory not empty

E10067

Too many processes.

E10068

Too many users.

E10069

Disc Quota Exceeded.

E10070

Stale NFS file handle.

E10071

Too many levels of remote in path.

E10091

Network subsystem is unavailable.

E10092

WINSOCK DLL Version out of range.

E10093

Winsock not loaded yet.

E11001

Host not found.

E11002

Non-authoritative 'Host not found' (try again or check DNS setup).

E11003

Non-recoverable errors: FORMERR, REFUSED, NOTIMP.

E11004

Valid name, no data record (check DNS setup).

2.7.10. Global

Table 10. Global response status
Code Messages HTTP Code HTTP STATUS

E8000

Bad Request

400

BAD REQUEST

E8001

Forbidden

403

FORBIDDEN

E8002

Unauthorized

401

UNAUTHORIZED

E8003

Scale of amount is different than the scale of currency

422

UNPROCESSABLE ENTITY

E8004

Some operation for this requestUuid is processing

422

UNPROCESSABLE ENTITY

2.7.11. Fatal Errors

Table 11. Fatal errors response status
Code Messages HTTP Code HTTP STATUS

E9000

Domain error

500

INTERNAL SERVER ERROR

E9001

Error acquirer connection

503

SERVICE UNAVAILABLE

E9002

Error mpi connection

503

SERVICE_UNAVAILABLE

E9003

Error monitoring connection

503

SERVICE_UNAVAILABLE

E9007

Error mpi - 3ds verify failed

500

INTERNAL_SERVER_ERROR

E9008

Error mpi - 3ds initialize failed

500

INTERNAL_SERVER_ERROR

E9009

Error mpi - 3ds finalize failed

500

INTERNAL_SERVER_ERROR

E9010

Error data center connection

503

SERVICE_UNAVAILABLE

2.8. Mastercard/VISA statuses

Table 12. Statuses in accordance with ISO-8583
Status code Usage

CODE_00

Approved or completed successfully

CODE_01

Refer to card issuer

CODE_02

Refer to card issuer, special condition

CODE_03

Invalid merchant or service provider

CODE_04

Capture card/Pick up card (no fraud)

CODE_05

Do not honor

CODE_06

General error

CODE_07

Pick up card, special condition (fraud account)

CODE_08

Honor with ID

CODE_10

Partial approval

CODE_11

Approved (V.I.P)

CODE_12

Invalid transaction

CODE_13

Invalid amount or currency conversion field overflow

CODE_14

Invalid account number (no such number)

CODE_15

Invalid issuer/No such issuer (first 8 digits of account number do not relate to an issuing identifier)

CODE_19

Re-enter transaction

CODE_21

No action taken

CODE_25

Unable to locate record in file

CODE_28

File temporarily not available for update or inquiry

CODE_30

Format error

CODE_39

No credit account

CODE_41

Lost card, pick up (fraud account)

CODE_43

Stolen card, pick up (fraud account)

CODE_44

No investment account

CODE_46

Closed account

CODE_51

Insufficient funds/over credit limit

CODE_52

No checking account

CODE_53

No savings account

CODE_54

Expired card or expiration date is missing

CODE_55

Incorrect PIN or PIN missing

CODE_57

Transaction not permitted to issuer/cardholder. Used by switch when function requested is not allowed for product or card type

CODE_58

Transaction not permitted to acquirer/terminal

CODE_59

Suspected fraud

CODE_61

Exceeds withdrawal amount limit/Exceeds approval amount limit

CODE_62

Restricted card (card invalid in this region or country)

CODE_63

Security violation (source is not correct issuer)

CODE_64

Transaction does not fulfill AML requirement

CODE_65

Exceeds withdrawal frequency limit

CODE_68

Response received too late

CODE_70

Contact card issuer/ PIN data required (Europe Region only) (Visa)

CODE_71

PIN Not Changed

CODE_75

Allowable number of PIN-entry tries exceeded

CODE_76

Invalid/nonexistent “To Account” specified

CODE_77

Invalid/nonexistent “From Account” specified

CODE_78

Invalid/nonexistent account specified(general)/Blocked, first used or special condition (account is temporarily blocked) (Visa)

CODE_79

Life cycle (Mastercard use only)/Already reversed (by Switch)

CODE_80

No financial impact

CODE_81

Domestic Debit Transaction Not Allowed (Regional use only)/Cryptographic error found in PIN(Visa)

CODE_82

Negative Online CAM, dCVV, iCVV, or CVV results/Offline PIN authentication interrupted/Policy (Mastercard use only)

CODE_83

Fraud/Security (Mastercard use only)

CODE_84

Invalid Authorization Life Cycle

CODE_85

No reason to decline a request for address verification, CVV2 verification, or a credit voucher or merchandise return

CODE_86

PIN Validation not possible/Cannot verify PIN

CODE_87

Purchase Amount Only, No Cash Back

CODE_88

Cryptographic failure

CODE_89

Card verification value (CVV) verification failed (no pickup)/Ineligible to receive financial position information (GIV)

CODE_91

Authorization platform or issuer or switch inoperative

CODE_92

Unable to route transaction

CODE_93

Transaction cannot be completed - violation of law

CODE_94

Duplicate transmission detected

CODE_95

Reconcile error

CODE_96

System malfunction or certain field error conditions

CODE_B1

Surcharge amount not permitted on Visa cards (U.S. acquirers only)

CODE_B2

Surcharge amount not supported by debit network issuer.

CODE_N0

Force STIP

CODE_N3

Cash service not available

CODE_N4

Cashback request exceeds issuer limit or appoved limit

CODE_N5

Ineligible for resubmission

CODE_N7

Decline for CVV2 failure

CODE_N8

Transaction amount exceeds preauthorized approval amount

CODE_P2

Invalid biller information

CODE_P5

PIN Change/Unblock request declined

CODE_P6

Unsafe PIN

CODE_Q1

Card Authentication failed

CODE_R0

Stop payment order

CODE_R1

Revocation of authorization order

CODE_R3

Revocation of all authorizations order

CODE_XA

Forward to issuer

CODE_XD

Forward to issuer

CODE_Z3

Unable to go online

CODE_TBA

Customer ID verification failed

CODE_1A

Additional customer authentication required (Europe Region only)

CODE_6P

Verification Failed (Cardholder Identification does not match issuer records)

2.9. Response statuses

2.9.1. Transaction statuses

Status Description

PENDING

Transaction is processing

APPROVED

Transaction complete successfully

DECLINED

Transaction was declined by Mastercard, look at response code

REVERSED

Transaction was reversed successfully - money will return to cardholder’s account

CLEARED

Transaction is cleared correctly

WAITING_ON_3DS_CONFIRMATION

Transaction is waiting for login to bank by cardholder and confirm transaction

NO_3DS_AUTHENTICATION

Cardholder did not login to bank in 15 minutes since transaction initiated

REJECTED

Something went wrong and some validation error occurred

2.9.2. Reversal statuses

Status Description

APPROVED

A reversal complete successfully

DECLINED

A reversal was declined by Mastercard, look at response code

ERROR

Something went wrong and reversal cannot be processed

CANNOT_REVERSAL

Reversal could not be processed and it is not possible

2.9.3. Clearing statuses

Status

Description

APPROVED

A clearing complete successfully

DECLINED

A clearing is declined

ERROR

Something went wrong and clearing cannot be processed

TO_CLEARING

Transaction was registered correctly and will processing soon

WAITING_FOR_SENDING_FILE_TO_MASTERCARD

Clearing was processed with success and now it is waiting for send to Mastercard

CANNOT_CLEAR

Clearing is not possible

CLEARING_TRANSACTION_NOT_FOUND

Clearing transaction is not found

TIME_IS_OVER

Time for clearing is over (7 days when manual clearing is enabled)

PENDING

Clearing is pending

PROCESSING

Clearing is processing

2.9.4. Refund statuses

Status Description

APPROVED

Refund complete successfully

DECLINED

A refund is declined by MasterCard, look at response code

REFUND_PROCESSING

An attempt to transaction refund was registered and refund is processing

REFUND_TRANSACTION_NOT_FOUND

Transaction not found

REFUND_ALREADY_APPROVED

Transaction is just correctly refund when user make request again with same requestUuid

TRANSACTION_NOT_CLEARED

Transaction in not cleared yet

CHARGEBACK_REPORTED

Transaction is chargeback reported

3. Merchants

3.1. Get merchant for uuid

GET /merchants/{uuid} Authorization: Basic Auth
Using this method, we can get a merchant with a unique uuid. We send uuid in url as a param. In response, we receive detailed information about the merchant.

3.1.1. Request

HTTP Request
GET /merchants/d3fcaa81-8765-4b5c-8640-4871a932e0d9 HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Accept: application/json
Host: ecom-staging.fenige.pl
Table 13. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 14. merchants/{uuid}
Parameter Description

uuid

Merchant’s unique uuid in system

3.1.2. Response

Response status
Status Description

200 OK

Returned when the merchant is already existing. In response are details about the merchant.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant not exist.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:10 GMT
Content-Length: 560

{
  "uuid" : "d3fcaa81-8765-4b5c-8640-4871a932e0d9",
  "name" : "merchant_name",
  "companyName" : "merchant_company_name",
  "companyBusinessName" : "merchant_company_business_name",
  "email" : "merchant_mail@example.com",
  "merchantStatus" : "ACTIVE",
  "address" : {
    "city" : "Lublin",
    "country" : "PL",
    "homeNumber" : "10",
    "street" : "Karola Olszewskiego",
    "streetNumber" : "11",
    "postalCode" : "24-110"
  },
  "accountNumber" : "11124000013372880300945921",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 15. Hateoas links
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

uuid

String

Merchant’s unique uuid in system

name

String

The merchant’s name

companyName

String

The merchant’s company name

companyBusinessName

String

The merchant’s company business name

email

String

The merchant’s email

address.city

String

The merchant’s city

address.country

String

The merchant’s country in accordance with ISO 3166-1 Alpha-2

address.homeNumber

String

The merchant’s home number

address.street

String

The merchant’s street

address.streetNumber

String

The merchant’s street number

address.postalCode

String

The merchant’s postal code

httpStatus

String

Response http status

merchantStatus

String

The merchant’s status

accountNumber

String

The merchant’s account number

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:28:10 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "3c9ef21b-098c-4baa-ab4c-4beaeefa6c1d"
}
Table 16. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:28:10 GMT
Content-Length: 135

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "ab7f8558-5efe-48e9-89a3-3d6848f9cddb"
}
Table 17. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:10 GMT
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "0a56d797-087f-4202-93fa-57992ed46f40"
}
Table 18. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:10 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "00f487b1-120d-4e0b-b6a3-e7ff23e1dbe5"
}
Table 19. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

3.2. Get merchant list

GET /merchants Authorization: Basic Auth
Using this method, we can get a list of merchants who are assigned to the authenticated PSP.

3.2.1. Request

HTTP Request
GET /merchants HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Accept: application/json
Host: ecom-staging.fenige.pl
Table 20. Request headers
Name Description

Authorization

Basic auth credentials for PSP

3.2.2. Response

Response status
Status Description

200 OK

Returned when the authorized PSP has at least one merchant. In response, he receives a list of merchants with details about each of them.

200 OK

STATUS: E0123 - Returned when merchant list is empty.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:09 GMT
Content-Length: 1173

{
  "merchants" : {
    "content" : [ {
      "uuid" : "0e4ce10c-cbf4-4e67-bed8-484c473530ef",
      "name" : "merchant_name",
      "companyName" : "merchant_company_name",
      "companyBusinessName" : "merchant_company_business_name",
      "email" : "merchant_mail@example.com",
      "merchantStatus" : "ACTIVE",
      "address" : {
        "city" : "Lublin",
        "country" : "PL",
        "homeNumber" : "10",
        "street" : "Karola Olszewskiego",
        "streetNumber" : "11",
        "postalCode" : "24-110"
      },
      "accountNumber" : "11124000013372880300945921"
    } ],
    "pageable" : {
      "sort" : {
        "sorted" : false,
        "unsorted" : true,
        "empty" : true
      },
      "pageNumber" : 0,
      "pageSize" : 20,
      "offset" : 0,
      "paged" : true,
      "unpaged" : false
    },
    "last" : true,
    "totalPages" : 1,
    "totalElements" : 1,
    "first" : true,
    "numberOfElements" : 1,
    "sort" : {
      "sorted" : false,
      "unsorted" : true,
      "empty" : true
    },
    "size" : 20,
    "number" : 0,
    "empty" : false
  },
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 21. Hateoas links
Path Type Description

merchants.content.[].name

String

The merchant’s name

merchants.content.[].companyName

String

The merchant’s company name

merchants.content.[].companyBusinessName

String

The merchant’s company business name

merchants.content.[].email

String

The merchant’s email

merchants.content.[].merchantStatus

String

The merchant’s status

merchants.content.[].uuid

String

Merchant’s unique uuid in system

merchants.content.[].address.city

String

The merchant’s city

merchants.content.[].address.country

String

The merchant’s country in accordance with ISO 3166-1 Alpha-2

merchants.content.[].address.homeNumber

String

The merchant’s home number

merchants.content.[].address.street

String

The merchant’s street

merchants.content.[].address.streetNumber

String

The merchant’s street number

merchants.content.[].address.postalCode

String

The merchant’s postal code

merchants.content.[].accountNumber

String

The merchant’s account number

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

200 OK
HTTP Response - STATUS: E0123
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:09 GMT
Content-Length: 91

{
  "status" : "E0123",
  "message" : "List of Merchant is empty.",
  "httpStatus" : "OK"
}
Table 22. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:28:09 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "a6052294-e55d-4199-8242-e531559d1997"
}
Table 23. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:28:09 GMT
Content-Length: 135

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "47d14063-ec5c-4f26-98fa-689973c69787"
}
Table 24. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:09 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "c78109fc-c258-4832-ade5-655b5a7b9632"
}
Table 25. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

4. Terminals

4.1. Get terminal for uuid

GET /merchants/{merchantUUID}/terminals/{uuid} Authorization: Basic Auth
Using this method, we can get a terminal with a unique uuid. We send merchant uuid and terminal uuid in url as a params. In response, we receive detailed information about the
terminal.

4.1.1. Request

HTTP Request
GET /merchants/db24d3f9-3b61-44cc-a974-94bd891f626f/terminals/7c21eb69-5d0c-4ac1-b4a0-c9055306a9ee HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Accept: application/json
Host: ecom-staging.fenige.pl
Table 26. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 27. merchants/{merchantUUID}/terminals/{uuid}
Parameter Description

merchantUUID

Merchant’s unique uuid in system

uuid

Terminal’s unique uuid in system

4.1.2. Response

Response status
Status Description

200 OK

Returned when the terminal is already existing. In response are details about the terminal.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0132 - Returned when terminal not exist.

404 NOT FOUND

STATUS: E0122 - Returned when merchant not exist.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:55 GMT
Content-Length: 357

{
  "uuid" : "7c21eb69-5d0c-4ac1-b4a0-c9055306a9ee",
  "name" : "terminal_name",
  "merchantUUID" : "db24d3f9-3b61-44cc-a974-94bd891f626f",
  "terminalStatus" : "ACTIVE",
  "settlementCurrency" : "PLN",
  "calculateCommissionType" : "STANDARD",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK",
  "3dsEnable" : true,
  "default" : true
}
Table 28. Hateoas links
Path Type Description

merchantUUID

String

The merchant’s identifier in the database

name

String

The terminal’s name

uuid

String

The terminal’s identifier in the database

3dsEnable

Boolean

Is 3DS enabled for transaction. Enabled if true, is not enabled if false

terminalStatus

String

The terminals’s status (NEW - terminal is waiting for activation in Fenige system, ACTIVE - terminal is active, INACTIVE - terminal is not active)

default

Boolean

Is default terminal. Default if true, is not default if false

calculateCommissionType

String

Commission type for terminal (STANDARD - percentage commission, SUMMARIZE - percentage commission and fixed amount)

settlementCurrency

String

Settlement currency for terminal (in accordance with ISO-4217)

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:54 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "4c6fd644-5591-4343-8fee-eaa98e66c6bd"
}
Table 29. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:55 GMT
Content-Length: 135

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "f05f68bb-752f-4066-b962-bf611381c668"
}
Table 30. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0132
HTTP/1.1 404 Not Found
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:55 GMT
Content-Length: 146

{
  "status" : "E0132",
  "message" : "Terminal not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "8da194f7-9ded-4b1a-9e8d-a84cc67ddb13"
}
Table 31. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0136
HTTP/1.1 404 Not Found
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:54 GMT
Content-Length: 146

{
  "status" : "E0136",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "cee9f69e-0eb8-47c2-a234-ef1ba729d2b7"
}
Table 32. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:54 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "55f325d1-6917-4f55-be94-77dae61f4910"
}
Table 33. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

4.2. Get terminals list

GET /merchants/{merchantUUID}/terminals Authorization: Basic Auth
Using this method, we can get a list of terminals who are assigned to the merchant.

4.2.1. Request

HTTP Request
GET /merchants/f726adec-178b-4eae-acdb-22e24f71ca9e/terminals HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Accept: application/json
Host: ecom-staging.fenige.pl
Table 34. Request headers
Name Description

Authorization

Basic auth credentials for PSP

4.2.2. Response

Response status
Status Description

200 OK

Returned when the merchant has at least one terminal. In response, he receives a list of terminals with details about each of them.

200 OK

STATUS: E0133 - Returned when terminal list is empty.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant not exist.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:57 GMT
Content-Length: 896

{
  "terminals" : {
    "content" : [ {
      "uuid" : "c5044a86-4204-4bb0-9d24-d45cd89f882c",
      "name" : "terminal_name",
      "merchantUUID" : "f726adec-178b-4eae-acdb-22e24f71ca9e",
      "terminalStatus" : "ACTIVE",
      "settlementCurrency" : "PLN",
      "3dsEnable" : true,
      "default" : true
    } ],
    "pageable" : {
      "sort" : {
        "sorted" : false,
        "unsorted" : true,
        "empty" : true
      },
      "pageNumber" : 0,
      "pageSize" : 20,
      "offset" : 0,
      "paged" : true,
      "unpaged" : false
    },
    "last" : true,
    "totalPages" : 1,
    "totalElements" : 1,
    "first" : true,
    "numberOfElements" : 1,
    "sort" : {
      "sorted" : false,
      "unsorted" : true,
      "empty" : true
    },
    "size" : 20,
    "number" : 0,
    "empty" : false
  },
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 35. Hateoas links
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

terminals.content.[].uuid

String

The terminal’s identifier in the database

terminals.content.[].name

String

The terminal’s name

terminals.content.[].merchantUUID

String

Merchant’s unique uuid in system

terminals.content.[].3dsEnable

Boolean

Is 3DS enabled for transaction. Enabled if true, is not enabled if false

terminals.content.[].terminalStatus

String

The terminals’s status (NEW - terminal is waiting for activation in Fenige system, ACTIVE - terminal is active, INACTIVE - terminal is not active)

terminals.content.[].default

Boolean

Is default terminal. Default if true, is not default if false

terminals.content.[].settlementCurrency

String

Settlement currency for terminal (in accordance with ISO-4217)

200 OK
HTTP Response - STATUS: E0133
HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:57 GMT
Content-Length: 150

{
  "merchantUuid" : "acc8ac52-f70b-4604-9a79-108686c269b8",
  "status" : "E0133",
  "message" : "List of Terminal is empty.",
  "httpStatus" : "OK"
}
Table 36. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

merchantUuid

String

The merchant’s identifier in the database

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:57 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "2026b532-f779-41d1-8e2f-904354831ab9"
}
Table 37. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:58 GMT
Content-Length: 135

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "c6a6b6b0-6695-4124-a84f-e311257c916c"
}
Table 38. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0136
HTTP/1.1 404 Not Found
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:57 GMT
Content-Length: 146

{
  "status" : "E0136",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "d1d49ecb-daa0-44be-a0fa-29679c020897"
}
Table 39. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:55 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "90acf0de-5622-4b00-ad47-74b17bf50e6a"
}
Table 40. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

5. Cards

5.1. Add card

POST /client/card Content Type: application/json, Authorization: Basic Auth
Using this method, we can create a new Card in Fenige Datacenter.
Cards in the Ecommerce system are stored securely and are assigned to the PSP object.
Each PSP (object you authenticate in API with) has access to store cards in separated secure database.

5.1.1. Request

HTTP Request
POST /client/card HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 149
Host: ecom-staging.fenige.pl

{
  "cardNumber" : "5453131785534417",
  "expirationDate" : "10/24",
  "firstName" : "John",
  "lastName" : "Doe",
  "email" : "john.doe@fenige.pl"
}
Table 41. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 42. Add Card request fields
Path Type Constraints Description

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expirationDate

String

@Must match the regular expression ^(0[1-9]|1[0-2])\/?([0-9]{2})$, @Must not be empty, @Must not be null

Expiration date of card mm/yy

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null, @Must not be empty

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null, @Must not be empty

Last name of cardholder

email

String

@Length must be between 1 and 128 inclusive, @Must be a well-formed email address, @Must not be blank, @Must not be null, @Must not be empty

Cardholder’s email

5.1.2. Response

Response status
Status Description

200 OK

Returned when terminal was successfully create.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

422 UNPROCESSABLE ENTITY

STATUS: E06007 - Returned when there was issue with internal Datacenter flow.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown. + STATUS: E06000 - Critical error occurred while connecting to Datacenter.

200 OK
HTTP Response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 88

{
  "cardId" : 1,
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 43. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

cardId

Number

Id numeric value of added card

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 490

{
  "errors" : {
    "lastName" : [ "length must be between 2 and 35" ],
    "firstName" : [ "length must be between 2 and 35" ],
    "email" : [ "must be a well-formed email address" ],
    "cardNumber" : [ "card number must be numeric", "card number length must be between 12 and 19", "invalid card number" ],
    "expirationDate" : [ "invalid card format expiration date" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "0ae6bc7c-322b-4fdd-b054-7696880efed1"
}
Table 44. Response fields
Path Type Description

errors.firstName

Array

First name validation error

errors.lastName

Array

Last name validation error

errors.email

Array

Email validation error

errors.cardNumber

Array

Card number validation error

errors.expirationDate

Array

Expiration date validation error

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:28:15 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "b88c5391-8410-4fc1-ae96-1953eac38644"
}
Table 45. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E06007
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 191

{
  "status" : "E06007",
  "message" : "Exception occurred while trying to add ecommerce card",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "13ec460d-8209-4b01-a6d5-0c2d1c343ab3"
}
Table 46. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "df115668-a549-4140-ac4e-1e130aeca740"
}
HTTP Response - STATUS: E06000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 197

{
  "status" : "E06000",
  "message" : "Unrecognized error occurred while connection to Datacenter",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "88abe294-77f2-471c-b619-5b8a14ecd93e"
}
Table 47. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

5.2. Get card

GET /client/card/{cardId} Content Type: application/json, Authorization: Basic Auth
This method can be use for fetch Card object by 'cardId' parameter.

5.2.1. Request

HTTP Request
GET /client/card/1 HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Host: ecom-staging.fenige.pl
Table 48. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 49. /client/card/{cardId}
Parameter Description

cardId

Id numeric value of card existing in database

5.2.2. Response

Response status
Status Description

200 OK

Returned when card was successfully fetched.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 308

{
  "cardId" : 1,
  "hiddenCardNumber" : "545313******4417",
  "firstName" : "John",
  "lastName" : "Doe",
  "email" : "john.doe@fenige.pl",
  "createdDate" : "2022-11-29T13:28:14.848Z",
  "lastModifiedDate" : "2022-11-29T13:28:14.848Z",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 50. Response fields
Path Type Description

hiddenCardNumber

String

Full cardholder’s masked card number must be between 12-digits and 19-digits

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

email

String

Cardholder’s email

createdDate

String

Card creation date

lastModifiedDate

String

Last card edit date

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

cardId

Number

Id numeric value of added card

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:28:15 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "b88c5391-8410-4fc1-ae96-1953eac38644"
}
Table 51. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

404 NOT FOUND
HTTP Response - STATUS: E06003
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 152

{
  "status" : "E06003",
  "message" : "Datacenter card not found",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "682c6ddc-ece4-42d1-9738-67b1ea29ba19"
}
Table 52. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "df115668-a549-4140-ac4e-1e130aeca740"
}
HTTP Response - STATUS: E06000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 197

{
  "status" : "E06000",
  "message" : "Unrecognized error occurred while connection to Datacenter",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "88abe294-77f2-471c-b619-5b8a14ecd93e"
}
Table 53. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

5.3. Get cards page

POST /client/card/search Content Type: application/json, Authorization: Basic Auth
This method can be use for get a paginated list of Cards object.
Notice that max size of page is equal 100.

5.3.1. Request

HTTP Request
POST /client/card/search?page=0&size=10 HTTP/1.1
Content-Type: application/json
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Length: 149
Host: ecom-staging.fenige.pl

{
  "cardNumber" : "5453131785534417",
  "expirationDate" : "10/24",
  "firstName" : "John",
  "lastName" : "Doe",
  "email" : "john.doe@fenige.pl",
  "createdDateFrom": "2021-05-06T23:24:25.694Z",
  "createdDateTo": "2021-05-06T23:24:25.694Z",
  "lastModifiedDateFrom": "2021-05-06T23:24:25.694Z",
  "lastModifiedDateTo": "2021-05-06T23:24:25.694Z"
}
Table 54. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 55. Search filter request fields
Path Type Constraints Description

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null, @Must not be empty, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expirationDate

String

@Must match the regular expression ^(0[1-9]|1[0-2])\/?([0-9]{2})$, @Must not be empty, @Must not be null

Expiration date of card mm/yy

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null, @Must not be empty, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null, @Must not be empty, @Must not be null

Last name of cardholder

email

String

@Length must be between 1 and 128 inclusive, @Must be a well-formed email address, @Must not be blank, @Must not be null, @Must not be empty, @Must not be null

Cardholder’s email

createdDateFrom

String

@Date in format: yyyy-MM-dd’T’HH:mm:ss.SSS’Z' example: 2020-11-20T13:56:27.156Z

Date of card creation. All Cards will be found that were created after this date

createdDateTo

String

@Date in format: yyyy-MM-dd’T’HH:mm:ss.SSS’Z' example: 2020-11-20T13:56:27.156Z

Date of card creation. All Cards will be found that were created before this date

lastModifiedDateFrom

String

@Date in format: yyyy-MM-dd’T’HH:mm:ss.SSS’Z' example: 2020-11-20T13:56:27.156Z

Date of card edit. All Cards will be found that were edited after this date

lastModifiedDateTo

String

@Date in format: yyyy-MM-dd’T’HH:mm:ss.SSS’Z' example: 2020-11-20T13:56:27.156Z

Date of card edit. All Cards will be found that were edited before this date

Table 56. client/card/search?page={pageNumber}&size={pageSize}
Parameter Description

pageNumber

Number of page starting from zero

pageSize

Size of page, max equal to 100

5.3.2. Response

Response status
Status Description

200 OK

Returned when page was correctly found

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

422 UNPROCESSABLE ENTITY

STATUS: E06006 - Returned when there was issue with internal Datacenter flow.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
Content-Length: 105

{
    "cards": {
        "content": [
            {
                "cardId": 1,
                "hiddenCardNumber": "545313******4417",
                "firstName": "John",
                "lastName": "Doe",
                "email": "john.doe@fenige.pl",
                "createdDate": "2021-11-19T10:55:56.836Z"
            }
        ],
        "number": 0,
        "size": 10,
        "totalElements": 1,
        "pageable": {
            "sort": {
                "sorted": false,
                "unsorted": true
            },
            "pageSize": 10,
            "pageNumber": 0,
            "offset": 0,
            "unpaged": false,
            "paged": true
        },
        "last": true,
        "totalPages": 1,
        "sort": {
            "sorted": false,
            "unsorted": true
        },
        "first": true,
        "numberOfElements": 1
    },
    "status": "S0000",
    "message": "SUCCESS",
    "httpStatus": "OK"
}
Table 57. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

cards.content[].cardId

Number

Id numeric value of added card

cards.content[].hiddenCardNumber

String

Full cardholder’s masked card number must be between 12-digits and 19-digits

cards.content[].firstName

String

First name of cardholder

cards.content[].lastName

String

Last name of cardholder

cards.content[].email

String

Cardholder’s email

cards.content[].createdDate

String

Card creation date

cards.content[].lastModifiedDate

String

Last card edit date

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:16 GMT
Connection: close
Content-Length: 586

{
  "errors" : {
    "lastName" : [ "must be null", "must match \"^[^0-9]+$\"", "length must be between 2 and 35", "must not be blank" ],
    "firstName" : [ "must not be blank", "length must be between 2 and 35", "must match \"^[^0-9]+$\"", "must be null" ],
    "email" : [ "must be null", "must be a well-formed email address" ],
    "cardNumber" : [ "must be null", "invalid card number", "card number must be numeric", "card number length must be between 12 and 19" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "7950cc23-af04-4156-bf81-3d9e71b640a4"
}
HTTP Response - STATUS: E06001
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
Content-Length: 355

{
    "status": "E06001",
    "message": "Max page size equal to 100",
    "httpStatus": "BAD_REQUEST",
    "traceId": "854dcdce-e784-487c-8a34-f578d5a1c25a"
}
HTTP Response - STATUS: E06002
HTTP/1.1 400 BAD REQUEST
Content-Type: application/json;charset=UTF-8
Content-Length: 355

{
    "status": "E06002",
    "message": "Datacenter rejected request. The parameters in the URL seems to be invalid",
    "httpStatus": "BAD_REQUEST",
    "traceId": "854dcdce-e784-487c-8a34-f578d5a1c25a"
}
Table 58. Response fields
Path Type Description

errors.firstName

Array

First name validation error

errors.lastName

Array

Last name validation error

errors.email

Array

Email validation error

errors.cardNumber

Array

Card number validation error

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:28:15 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "b88c5391-8410-4fc1-ae96-1953eac38644"
}
Table 59. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E06006
HTTP/1.1 422 UNPROCESSABLE ENTITY
Content-Type: application/json;charset=UTF-8
Content-Length: 355

{
    "status": "E06006",
    "message": "Exception occurred while trying to paginate ecommerce cards",
    "httpStatus": "UNPROCESSABLE_ENTITY",
    "traceId": "854dcdce-e784-487c-8a34-f578d5a1c25a"
}
Table 60. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "df115668-a549-4140-ac4e-1e130aeca740"
}
HTTP Response - STATUS: E06000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 197

{
  "status" : "E06000",
  "message" : "Unrecognized error occurred while connection to Datacenter",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "88abe294-77f2-471c-b619-5b8a14ecd93e"
}
Table 61. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

5.4. Update card

PUT /client/card Content Type: application/json, Authorization: Basic Auth
This method allows you to edit the details of a Card that has been added previously.
The request body requires a 'cardId' and any data set. All data is optional.

5.4.1. Request

HTTP Request
PUT /client/card HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 165
Host: ecom-staging.fenige.pl

{
  "cardId" : 1,
  "cardNumber" : "5453131785534417",
  "expirationDate" : "10/24",
  "firstName" : "John",
  "lastName" : "Doe",
  "email" : "john.doe@fenige.pl"
}
Table 62. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 63. Update Card request fields
Path Type Constraints Description

cardId

Number

@Must not be null, @Numeric value

Id numeric value of card existing in database

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expirationDate

String

@Must match the regular expression ^(0[1-9]|1[0-2])\/?([0-9]{2})$, @Must not be empty, @Must not be null

Expiration date of card mm/yy

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null, @Must not be empty

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null, @Must not be empty

Last name of cardholder

email

String

@Length must be between 1 and 128 inclusive, @Must be a well-formed email address, @Must not be blank, @Must not be null, @Must not be empty

Cardholder’s email

5.4.2. Response

Response status
Status Description

200 OK

Returned when card was successfully updated.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 88

{
  "cardId" : 1,
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 64. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

cardId

Number

Id numeric value of added card

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 684

{
  "errors" : {
    "firstName" : [ "must not be blank", "must match \"^[^0-9]+$\"", "must be null", "length must be between 2 and 35" ],
    "lastName" : [ "length must be between 2 and 35", "must not be blank", "must be null", "must match \"^[^0-9]+$\"" ],
    "cardId" : [ "must not be null" ],
    "email" : [ "must be null", "must be a well-formed email address" ],
    "cardNumber" : [ "must be null", "invalid card number", "card number must be numeric", "card number length must be between 12 and 19" ],
    "expirationDate" : [ "invalid card expiration date" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "65fae940-3598-4701-b6f8-fccaee2d155f"
}
Table 65. Response fields
Path Type Description

errors.cardId

Array

cardId validation error

errors.firstName

Array

First name validation error

errors.lastName

Array

Last name validation error

errors.email

Array

Email validation error

errors.cardNumber

Array

Card number validation error

errors.expirationDate

Array

Expiration date validation error

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:28:15 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "b88c5391-8410-4fc1-ae96-1953eac38644"
}
Table 66. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E06005
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 185

{
  "status" : "E06005",
  "message" : "Update of ecommerce card failed, card not found",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "4cdbb6ed-b364-4e82-a7bf-edaa29aabd20"
}
Table 67. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "df115668-a549-4140-ac4e-1e130aeca740"
}
HTTP Response - STATUS: E06000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 197

{
  "status" : "E06000",
  "message" : "Unrecognized error occurred while connection to Datacenter",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "88abe294-77f2-471c-b619-5b8a14ecd93e"
}
Table 68. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

5.5. Delete card

DELETE /client/card/{cardId} Content Type: application/json, Authorization: Basic Auth
This method is used to remove a card from the Datacenter database that is assigned to the PSP with which you have logged in.

5.5.1. Request

HTTP Request
DELETE /client/card/1 HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Host: ecom-staging.fenige.pl
Table 69. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 70. /client/card/{cardId}
Parameter Description

cardId

Id numeric value of card existing in database

5.5.2. Response

Response status
Status Description

200 OK

Returned when card was successfully removed.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

500 INTERNAL SERVER ERROR

STATUS: E9000 - Returned when reason is unknown.

200 OK
HTTP Response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 96

{
  "cardRemoved" : true,
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 71. Response fields
Path Type Description

cardRemoved

Boolean

Indicates is card was removed or not

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:28:15 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "b88c5391-8410-4fc1-ae96-1953eac38644"
}
Table 72. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

404 NOT FOUND
HTTP Response - STATUS: E06004
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 185

{
  "status" : "E06004",
  "message" : "Delete of ecommerce card failed, card not found",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "4d369c18-28cc-4c87-a4c4-6e57ffb64cbe"
}
Table 73. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "df115668-a549-4140-ac4e-1e130aeca740"
}
HTTP Response - STATUS: E06000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 197

{
  "status" : "E06000",
  "message" : "Unrecognized error occurred while connection to Datacenter",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "88abe294-77f2-471c-b619-5b8a14ecd93e"
}
Table 74. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

6. Payment API

6.1. Currency rate

POST /client/payments/currency-rate Content Type: application/json, Authorization: Basic Auth
This method can be used for calculate Mastercard/Visa currency rates between two values depends on terminal and provider.
Notice that `higherRate` is used to transaction processing.

6.1.1. Request

Mastercard
HTTP request
POST /client/payments/currency-rate HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 124
Host: ecom-staging.fenige.pl

{
  "terminalUuid" : "29146425-e05e-46a6-bf6f-285e75dda310",
  "provider" : "MASTERCARD",
  "from" : "USD",
  "to" : "PLN"
}
Table 75. CURRENCY RATE REQUEST FIELDS
Path Type Constraints Description

terminalUuid

String

@Must not be null

Terminal’s unique uuid in system

provider

String

@Must not be null

VISA or MASTERCARD or MAESTRO

from

String

@Must not be null

Currency code for conversion

to

String

@Must not be null

Target currency of conversion

VISA
HTTP request
POST /client/payments/currency-rate HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 118
Host: ecom-staging.fenige.pl

{
  "terminalUuid" : "29146425-e05e-46a6-bf6f-285e75dda310",
  "provider" : "VISA",
  "from" : "USD",
  "to" : "PLN"
}
Table 76. CURRENCY RATE REQUEST FIELDS
Path Type Constraints Description

terminalUuid

String

@Must not be null

Terminal’s unique uuid in system

provider

String

@Must not be null

VISA or MASTERCARD or MAESTRO

from

String

@Must not be null

Currency code for conversion

to

String

@Must not be null

Target currency of conversion

6.1.2. Response

200 OK
HTTP Response - STATUS: S0000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 129

{
  "lowerRate" : 0.88000011,
  "higherRate" : 0.89801726,
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 77. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

lowerRate

Number

Lower currency rate

higherRate

Number

Higher currency rate used for process transaction

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "264fc9a8-b8b4-4fd5-ae25-c8323d31d209"
}
Table 78. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "31ff358a-6ad8-42f8-b737-98113e735b99"
}
Table 79. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

6.2. Currency for card

POST /client/currency-for-card Content Type: application/json, Authorization: Basic Auth
Method is used to determine currencies applied for given card. If merchant has stored card in DataCenter can you use this method by cardId rather than cardNumber.

6.2.1. Request

Plain card Mastercard
Table 80. CURRENCY FOR CARD REQUEST FIELDS
Path Type Constraints Description

cardNumber

String

@Card number length must be between 12 and 19, @Luhn, @Must not be blank, @Must not be null

Card number

HTTP request
POST /client/currency-for-card HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 39
Host: ecom-staging.fenige.pl

{
  "cardNumber" : "5575168861324712"
}
Table 81. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Plain card Visa
Table 82. CURRENCY FOR CARD REQUEST FIELDS
Path Type Constraints Description

cardNumber

String

@Card number length must be between 12 and 19, @Luhn, @Must not be blank, @Must not be null

Card number

HTTP request
POST /client/currency-for-card HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 39
Host: ecom-staging.fenige.pl

{
  "cardNumber" : "4761340000000050"
}
Table 83. Request headers
Name Description

Authorization

Basic auth credentials for PSP

DataCenter card
Table 84. CURRENCY FOR CARD REQUEST FIELDS
Path Type Constraints Description

cardId

Number

@Must not be null, @Numeric

DataCenter card id.

HTTP request
POST /client/currency-for-card HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 18
Host: ecom-staging.fenige.pl

{
  "cardId" : 1
}
Table 85. Request headers
Name Description

Authorization

Basic auth credentials for PSP

6.2.2. Response

Response status
Status Description

200 OK

STATUS: S0000 Returned when SUCCESS.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

422 UNPROCESSABLE ENTITY

STATUS: E0401 - Issuer card is not supported.

500 INTERNAL SERVER ERROR

STATUS: E0400 - Returned when failed to get currency for card.

200 OK
HTTP Response - STATUS: S0000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 207

{
  "defaultCurrency" : "PLN",
  "currencyCodes" : [ "PLN", "EUR", "USD" ],
  "provider" : "MASTERCARD",
  "countryCodeNumeric" : "616",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 199

{
  "defaultCurrency" : "UNDEFINED",
  "currencyCodes" : [ "UNDEFINED" ],
  "provider" : "VISA",
  "countryCodeNumeric" : "616",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 173

{
  "defaultCurrency" : "UNDEFINED",
  "currencyCodes" : [ "UNDEFINED" ],
  "provider" : "MASTERCARD",
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK"
}
Table 86. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

currencyCodes

Array

Currencies supported by card

defaultCurrency

String

Default currency code for card

provider

String

Card’s provider: MASTERCARD, MAESTRO, VISA, UNKNOWN

countryCodeNumeric

String

Country code numeric for Mastercard/Visa:

- ISO 3166-1 Numeric

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:07 GMT
Connection: close
Content-Length: 214

{
  "errors" : {
    "cardNumber" : [ "must not be null", "must not be empty", "must not be blank" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "4beda303-5044-4ea8-87a4-12c5ff57c9ef"
}
Table 87. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "7696d013-1875-4e55-acef-81ffb2c76662"
}
Table 88. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E8002
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json;charset=UTF-8
Content-Length: 168

{
"status": "E0401",
"message": "Issuer card is not supported",
"httpStatus": "UNPROCESSABLE_ENTITY",
"traceId": "cf77afc8-f41b-425c-ab6a-de4eb9a69136",
"links" : [ ]
}
Table 89. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:07 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "b261ebb0-2825-48aa-9337-9c664feb410f"
}
Table 90. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

6.3. Card provider

POST /client/card/provider Content Type: application/json, Authorization: Basic Auth
    This method is used to check the card provider, for example: VISA or MASTERCARD. If merchant has stored card in DataCenter can you use this method by cardId rather than
cardNumber.

6.3.1. Request

Plain card
Table 91. Request fields
Path Type Constraints Description

cardNumber

String

@Card number length must be between 12 and 19, @Luhn, @Must not be blank, @Must not be null

PAN card number

HTTP request
POST /client/card/provider HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 58
Host: ecom-staging.fenige.pl

{
  "cardNumber" : "5117964247989169",
  "cardId" : null
}
Table 92. Request headers
Name Description

Authorization

Basic auth credentials for PSP

DataCenter card
Table 93. Request fields
Path Type Constraints Description

cardId

Number

@Must not be null, @Numeric

DataCenter card id.

HTTP request
POST /client/card/provider HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 43
Host: ecom-staging.fenige.pl

{
  "cardNumber" : null,
  "cardId" : 231
}
Table 94. Request headers
Name Description

Authorization

Basic auth credentials for PSP

6.3.2. Response

200 OK
HTTP Response - STATUS: S0000
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 101

{
  "status" : "S0000",
  "message" : "SUCCESS",
  "httpStatus" : "OK",
  "provider" : "MASTERCARD"
}
Table 95. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

provider

String

Card’s provider: MASTERCARD, MAESTRO, VISA, UNKNOWN

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "57531296-a4b2-42d2-902d-bc2180866a64"
}
Table 96. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "aeb198d2-2178-4dfa-a070-10602f31672a"
}
Table 97. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E90002
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 156

{
  "status" : "E9002",
  "message" : "Error mpi connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "1603e0b1-b701-4db3-8216-a69b6017f80c"
}
Table 98. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Id of trace

6.4. Payment

POST /client/payments/auth Content Type: application/json, Authorization: Basic Auth
The method is used to charge the cardholder.
Using this method, we can authorize and process entire transaction. This method supports both 3DS and without 3DS transactions. You can also use this method using the outside 3ds authorization.
How the transaction will be initiated depends on the terminal settings (look at 'is3dsEnable' field).
This endpoint is idempotent so if you execute more than one requests with the same data even at the same time, only first registered transaction will be processed further. In
response, we receive transaction status.
Merchant has the ability to make a payment for goods which causes the cardholder to be debited in the currency of purchase, terminal or card currency based on the parameters provided: currency of transaction, different currency terminals held and currencies supported by the card.
The optional terminalUuid field provided during any of the authorisation methods forces the card to be debited in the currency of the terminal specified if the purchase currency is different from the terminal currency a currency conversion will take place.
If the merchant decides the card to be allways charged in the currency of the transaction without any currency conversion, this should be specified using the noCurrencyConversion
flag in the authorisation.
The Fenige Payment API methods optionally allows merchants to store card data and sensitive personal data in order to allow performing subsequent transactions.
If merchant decides to use DataCenter transaction flow then is required to provide the card id of the card previously stored in the Fenige DataCenter, from which card the
relevant required parameters will be downloaded and used for authorization.
Card data and sensitive personal data according to the Fenige API specification are: cardNumber, expiryDate, firstName, lastName and email.
All card data are stored securely on Fenige DataCenter servers in accordance with applicable security requirements.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

Mastercard and Visa requires for intra-European Economic Area (EEA), plus United Kingdom, for which EMV 3DS must be used subsequent to a valid authorization soft decline DE39=65 (Mastercard)/1A(Visa).To perform a transaction for which the card has previously received CODE_65(Mastercard)/CODE_1A(Visa), the transaction must be processed with full EMV 3DS (3DS 2.x) and the authentication status must be 'Y'.

Correct flow:

  • 3DS 2.x → Challenge → Authentication status Y → Transaction (Recommended)

  • 3DS 2.x(Authentication status A) → Transaction → CODE_65/CODE_1A → 3DS 2.x → Challenge → Authentication status Y → Transaction (Recommended)

  • non3DS → Transaction → CODE_65/CODE_1A → 3DS 2.x → Challenge → Authentication status Y → Transaction (Available only to selected merchants)

soft decline Code 65 EMV 3DS
E-commerce payment with outside 3DS flow
ecommerce trx flow with outside3ds
E-commerce payment with DataCenter and outside 3DS flow
ecommerce datacenter trx flow
E-commerce payment flow
ecommerce trx flow
E-commerce payment with DataCenter card flow
ecommerce data center trx flow

6.4.1. Request

Request - outside 3DS 2.X
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 824
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "99e26e24-4596-4312-8fe1-76ab326e54f0",
  "requestUuid" : "ebab264c-69a2-4593-96a7-c664b52e1e36",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null,
  "countryOfResidence" : "US"
}
Table 99. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 100. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

@Size must be between 0 and 28 inclusive

Cardholder Authentication Verification Value.

outside3ds.transactionXId

String

Server transaction Id generated by DS. Required for 3DS 2.x version. The transactionXId is the field that defines the 3DS version. The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x. TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

@Length must be between 1 and 2 inclusive, @Must match the regular expression ^\d+$

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 00 or 01 or 02 or 05 or 06 or 07, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. More info.

outside3ds.authenticationStatus

String

@Must match Y or A or U, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt. U - (Technical or other problem) - No liability shift, consider whether to proceed with the transaction

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

Request - outside 3DS 2.X with forced terminal
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 883
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "99e26e24-4596-4312-8fe1-76ab326e54f0",
  "terminalUuid" : "9f4054f0-197b-4869-92a9-f60f7946a268",
  "requestUuid" : "3de7ac10-7064-4d2d-b746-2c41fd7e1d17",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null,
  "countryOfResidence" : "US"
}
Table 101. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 102. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

terminalUuid

String

Request’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

@Size must be between 0 and 28 inclusive

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

Cardholder Authentication Verification Value. The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

@Length must be between 1 and 2 inclusive, @Must match the regular expression ^\d+$

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 00 or 01 or 02 or 05 or 06 or 07, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. More info.

outside3ds.authenticationStatus

String

@Must match Y or A or U, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt. U - (Technical or other problem) - No liability shift, consider whether to proceed with the transaction

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03.

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

Request - outside 3DS 1.0
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 761
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "99e26e24-4596-4312-8fe1-76ab326e54f0",
  "requestUuid" : "da82d4e5-096f-412d-b5c6-558a09c92bd3",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null,
  "countryOfResidence" : "US"
}
Table 103. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 104. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

@Size must be between 0 and 28 inclusive

Cardholder Authentication Verification Value.

outside3ds.cavvAlgorithm

String

@Length must be between 1 and 2 inclusive, @Must match the regular expression ^\d+$

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 00 or 01 or 02 or 05 or 06 or 07, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. More info.

outside3ds.authenticationStatus

String

@Must match Y or A or U, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt. U - (Technical or other problem) - No liability shift, consider whether to proceed with the transaction

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

Request - outside 3DS 1.0 with forced terminal
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 820
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "99e26e24-4596-4312-8fe1-76ab326e54f0",
  "terminalUuid" : "9f4054f0-197b-4869-92a9-f60f7946a268",
  "requestUuid" : "ee8da140-1f15-434a-a19c-0b4af0dd011c",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null,
  "countryOfResidence" : "US"
}
Table 105. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 106. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

terminalUuid

String

Request’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

@Size must be between 0 and 28 inclusive

Cardholder Authentication Verification Value

outside3ds.cavvAlgorithm

String

@Length must be between 1 and 2 inclusive, @Must match the regular expression ^\d+$

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 00 or 01 or 02 or 05 or 06 or 07, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. More info.

outside3ds.authenticationStatus

String

@Must match Y or A or U, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt. U - (Technical or other problem) - No liability shift, consider whether to proceed with the transaction

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03.

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

Request
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 613
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "8b543950-8a50-4af8-92c4-bbb4f7db47d6",
  "requestUuid" : "b721d372-1d87-4788-a536-08964298abe9",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null,
  "countryOfResidence" : "US"
}
Table 107. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 108. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

Request - forced Terminal
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 691
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "99e26e24-4596-4312-8fe1-76ab326e54f0",
  "terminalUuid" : "bf3cb071-9f8c-4233-bfc8-eca7b4a18ba6",
  "requestUuid" : "939b9e63-2bc9-4b7b-b34a-d4ee3b86dd3b",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "cardId" : null,
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null,
  "countryOfResidence" : "US"
}
Table 109. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 110. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

terminalUuid

String

Terminals’s unique uuid in system

Request - DataCenter card
HTTP Request
POST /client/payments/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 671
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "f660bbc4-2661-4971-8ba5-39884a027e48",
  "requestUuid" : "45134a89-357a-41bf-be16-527c07848043",
  "amount" : 1000,
  "currency" : "USD",
  "cardId" : 1906455,
  "cvc2" : "123",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null
}
Table 111. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 112. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardId

Number

@Must not be null, @Numeric

DataCenter card id. Required to obtain card information data from DataCenter such as (cardNumber, expiryDate, firstName, lastName, email)

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

@Size must be between 0 and 28 inclusive

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

Cardholder Authentication Verification Value. The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

@Length must be between 1 and 2 inclusive, @Must match the regular expression ^\d+$

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. Chargeback protection applies.

outside3ds.authenticationStatus

String

@Must match Y or A, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

6.4.2. Response

Response status
Status Description

200 OK

Returned when transaction was successfully authorized.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant is not existing.

STATUS: E0132 - Returned when terminal is not existing.

STATUS: E0135 - Returned when terminal for merchant not exist or all of them are inactive.

STATUS: E0137 - Returned when there is not terminal marked as default

STATUS: E06003 - Returned when DataCenter card was not found.

422 UNPROCESSABLE ENTITY

STATUS: E0150 - Returned when transaction is rejected.

STATUS: E0151 - Returned when transaction is rejected, because currency is not supported.

STATUS: E0152 - Returned when transaction is rejected, because issuer is not supported.

STATUS: E01580 - Returned when transaction is rejected, because DataCenter card was expired.

STATUS: E01581 - Returned when transaction is rejected, because not found Card Authentication (3DS 2.X)

STATUS: E01582 - Returned when transaction is rejected, because Card Authentication not match to transaction type (3DS 2.X)

STATUS: E0159 - Returned when transaction is rejected, because restricted transaction amount has occurred

STATUS: E01594 - Returned when transaction is rejected, because transactionXId parameter had registered for another transaction

STATUS: E01596 - Returned when transaction is rejected, because terminal has blocked transaction with card issued in restricted country

STATUS: E01597 - Returned when transaction is rejected, because 3DS version of terminal are not compatible with 3DS version defined in request

STATUS: E01600 - Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request

STATUS: E01601 - Returned when transaction is rejected, because terminal is blocked for provider

STATUS: E01602 - Transaction rejected, geographic scope is not permitted for this transaction

STATUS: E10000 - Transaction rejected, terminal daily card transaction limit exceeded

STATUS: E10001 - Transaction rejected, terminal daily transaction limit exceeded

STATUS: E10002 - Transaction rejected, terminal monthly transaction limit exceeded

STATUS: E0200 - Returned when transaction is rejected, because card is blocked in Fenige System

STATUS: E0201 - Returned when transaction is rejected, because BIN is blocked in Fenige System

STATUS: E0202 - Returned when transaction is rejected, because Terminal is blocked in Fenige System

STATUS: E0204 - Returned when transaction is rejected, because user’s personal data was found on AML (sanctions) list

STATUS: E0205 - Returned when transaction is rejected, because Bank is blocked in Fenige System

STATUS: E0206 - Returned when transaction is rejected, because to many reject transactions and card is blocked

STATUS: E0207 - Returned when transaction is rejected, bacause to many attempts declined and card is blocked

STATUS: E0208 - Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

STATUS: E0209 - Returned when sender or receiver name contains fraudulent phrase

STATUS: E0210 - Returned when sender has suspicious name

500 INTERNAL SERVER ERROR

STATUS: E0153 - Returned when transaction is declined, by problem with MIP connection.

STATUS: E01599 - Transaction declined, processing timeout.

STATUS: E0142 - Returned when commission configuration is not added for terminal.

STATUS: E0190 - Returned when currency rate is invalid.

STATUS: E9000 - Returned when reason is unknown.

STATUS: E9008 - Returned when mpi received 3ds initialize failed.

503 SERVICE UNAVAILABLE

STATUS: E9001 - Returned when is error acquirer connection.

STATUS: E9002 - Returned when is error mpi connection.

STATUS: E9010 - Returned when is error DataCenter connection.

STATUS: E9011 - Returned when is error Limit connection.

200 OK
HTTP Response - transaction without 3DS and with outside3DS
{
  "requestUuid" : "0c5feb52-6dda-479c-9652-5df2e0dbc367",
  "transactionStatus" : "APPROVED",
  "responseCode" : "CODE_00",
  "status" : "S0002",
  "message" : "Success transaction",
  "httpStatus" : "OK"
}
Table 113. Response fields
Path Type Description

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

responseCode

String

Response code

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:39 GMT
Connection: close
Content-Length: 485

{
  "errors" : {
    "expiryDate" : [ "invalid card format expiration date" ],
    "firstName" : [ "must not be blank", "must not be null" ],
    "lastName" : [ "must not be null", "must not be blank" ],
    "amount" : [ "must not be null" ],
    "merchantUuid" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "currency" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "ea22adcc-5623-4732-a303-9454bc18ea58"
}
Table 114. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:39 GMT
Connection: close
Content-Length: 485

{
  "errors" : {
    "expiryDate" : [ "invalid card format expiration date" ],
    "firstName" : [ "must not be blank", "must not be null" ],
    "lastName" : [ "must not be null", "must not be blank" ],
    "amount" : [ "must not be null" ],
    "merchantUuid" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "currency" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "ea22adcc-5623-4732-a303-9454bc18ea58"
}
Table 115. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E8000 - DataCenter Bad Request
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:39 GMT
Connection: close
Content-Length: 679

{
  "errors" : {
    "expiryDate" : [ "Card id was provided, expiryDate is obtained from data center card: 1906455" ],
    "firstName" : [ "Card id was provided, firstName is obtained from data center card: 1906455" ],
    "lastName" : [ "Card id was provided, lastName is obtained from data center card: 1906455" ],
    "cardId" : [ "Please provide cardId for DATACENTER transaction or fields: cardNumber, expiryDate, firstName, lastName for PLAIN transaction" ],
    "cardNumber" : [ "Card id was provided, cardNumber is obtained from data center card: 1906455" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "c854b95e-fd51-482f-84a5-8c965ec7de38"
}
Table 116. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:39 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "50b3d117-eae8-469b-b825-801df3e5d164"
}
Table 117. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:40 GMT
Content-Length: 135

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "489039f4-50fa-4c49-a58d-2ca550f56058"
}
Table 118. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "b73e274f-3882-49a6-95b2-b750a6f084cf"
}
HTTP Response - STATUS: E0132
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0132",
  "message" : "Terminal not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "95dc4a04-b769-4029-90cc-7bdc65973e4b"
}
Table 119. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E0135
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 163

{
  "status" : "E0137",
  "message" : "Default terminal not exist",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "b245196a-2e5d-4424-a101-679ce6354688"
}
Table 120. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E0137
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 159

{
  "status" : "E0135",
  "message" : "Terminals for merchant not exists",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "08f542c1-bdfd-420d-944e-9de8ed097e32"
}
Table 121. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E06003
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 246

{
  "requestUuid" : "8d48918e-c0a1-4391-8b05-dfb380e2a5c7",
  "transactionStatus" : "REJECTED",
  "status" : "E06003",
  "message" : "Datacenter card not found",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "d4d64f18-13da-498c-921f-b0c294e61da5"
}
Table 122. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E0150
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 251

{
  "requestUuid" : "95f2dc01-c3a1-4c80-96b8-708cfe621926",
  "transactionStatus" : "REJECTED",
  "status" : "E0150",
  "message" : "Transaction rejected",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "7d475230-6437-42e6-9985-2ebbae5188e4"
}
HTTP Response - STATUS: E0151
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 275

{
  "requestUuid" : "fb64c70c-8006-49a0-8f7c-64bd206ec7ae",
  "transactionStatus" : "REJECTED",
  "status" : "E0151",
  "message" : "Transaction rejected, currency not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "ab984b89-a8b6-44e4-bc8c-6a518ed2be5e"
}
HTTP Response - STATUS: E0152
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "113ab88a-2116-492a-a546-1e7945893112",
  "transactionStatus" : "REJECTED",
  "status" : "E0152",
  "message" : "Transaction rejected, issuer card not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "62976e26-cd0a-4011-9794-10bae9184496"
}
HTTP Response - STATUS: E01580
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 282

{
  "requestUuid" : "78d94324-09aa-4b00-be03-45a291272c23",
  "transactionStatus" : "REJECTED",
  "status" : "E01580",
  "message" : "Transaction rejected. Data center card is expired.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "fcc57eed-280a-436b-9757-090f7ff6fa6f"
}
HTTP Response - STATUS: E0159
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "9b7dd401-83f0-446f-b4d3-c95897fbb45f",
  "transactionStatus" : "REJECTED",
  "status" : "E0159",
  "message" : "Transaction rejected, restricted transaction amount has occurred",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "b490e7a0-88d8-47c0-95b6-853a8f24c667"
}
HTTP Response - STATUS: E0201
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 267

{
  "requestUuid" : "0c0a6bd5-6433-41c9-95ee-35ced71c94c9",
  "transactionStatus" : "REJECTED",
  "status" : "E0201",
  "message" : "Transaction rejected, bin is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a378dbbc-34f2-42fb-bd78-82a6a49acabc"
}
HTTP Response - STATUS: E0202
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "4bd95017-50a3-4b1d-b405-b6adac7b32cf",
  "transactionStatus" : "REJECTED",
  "status" : "E0202",
  "message" : "Transaction rejected, terminal is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "aff924c3-3ada-4f5a-8f45-6355211e5f7e"
}
HTTP Response - STATUS: E0204
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "8591f673-dc6c-4499-9b55-18119bc7053a",
  "transactionStatus" : "REJECTED",
  "status" : "E0204",
  "message" : "Transaction rejected, user is on aml list",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "36d14d2f-0cd4-4f30-817b-313f41cc68a4"
}
HTTP Response - STATUS: E0205
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 268

{
  "requestUuid" : "0995019c-f257-4d3a-9591-788289c386ae",
  "transactionStatus" : "REJECTED",
  "status" : "E0205",
  "message" : "Transaction rejected, bank is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "c0a5b473-acdc-46f2-8a8b-92f38bf4ef83"
}
HTTP Response - STATUS: E0206
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 300

{
  "requestUuid" : "a2b5dcac-8b38-4af8-a2ab-7f6cf129e5a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0206",
  "message" : "Transaction rejected, to many reject transactions and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "411ef278-ddb8-4fc5-8370-fd0c0a3a56c5"
}
HTTP Response - STATUS: E0207
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 298

{
  "requestUuid" : "315a9822-1353-430c-900a-1091c8a8ef3c",
  "transactionStatus" : "REJECTED",
  "status" : "E0207",
  "message" : "Transaction rejected, to many attempts declined and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "33a24f95-3b59-4786-8c7b-69f24bc73268"
}
HTTP Response - STATUS: E0208
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "17f357e9-a4cc-4b6c-afeb-e6f6e160efee",
  "transactionStatus" : "REJECTED",
  "status" : "E0208",
  "message" : "Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "cf61360c-bb3a-4f6c-b6da-943ef29a3362"
}
HTTP Response - STATUS: E0209
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 292

{
  "requestUuid" : "5e39e53e-06aa-49c0-8a64-5449ebf7813c",
  "transactionStatus" : "REJECTED",
  "status" : "E0209",
  "message" : "Transaction rejected, sender name contains fraudulent phrase.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "1baaa90c-add5-40d0-9f83-a4a3f72dc525"
}
HTTP Response - STATUS: E0210
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 276

{
  "requestUuid" : "166cef5c-96fe-4edd-bf44-e21f81e65acd",
  "transactionStatus" : "REJECTED",
  "status" : "E0210",
  "message" : "Transaction rejected, suspicious sender name.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f51fb707-057b-40fc-8902-81fd461cfd0e"
}
HTTP Response - STATUS: E01594
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 317

{
  "requestUuid" : "af413fd6-8d71-47ee-abaa-2842862b283b",
  "transactionStatus" : "REJECTED",
  "status" : "E01594",
  "message" : "Transaction rejected, transactionXId parameter had registered for another transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2e0d546f-7dfb-48dd-84d4-525a2255a4df"
}
HTTP Response - STATUS: E01596
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "5f23b662-d85e-4725-adca-2a7f3890e60a",
  "transactionStatus" : "REJECTED",
  "status" : "E01596",
  "message" : "Transaction rejected, terminal blocks transactions with card issued in given card country",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "7cecfd5f-f33a-46cd-88bb-63535f9b5815"
}
HTTP Response - STATUS: E01597
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 369

{
  "requestUuid" : "a22a1848-61ce-4cde-a41c-24455894a10d",
  "transactionStatus" : "REJECTED",
  "status" : "E01597",
  "message" : "Transaction rejected, 3DS version of terminal are not compatible with 3DS version defined in request. Please contact the sales department",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "02ba294f-a2ac-449d-84bf-d233eea1279d"
}
HTTP Response - STATUS: E01598
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 298

{
  "requestUuid" : "035c18e9-fe45-43a3-b9d8-39f5ca802180",
  "transactionStatus" : "REJECTED",
  "status" : "E01598",
  "message" : "Transaction rejected, ECI value is not available for card provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "7507fccb-68e0-44ac-86f0-d8a23c070cd5"
}
Table 123. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E0200
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 381

{
  "requestUuid" : "da260812-9981-4169-93a5-43a6429a08b8",
  "transactionStatus" : "REJECTED",
  "cardBlockadeAdditionalData" : {
    "blockType" : "TEMP",
    "blockedUntil" : "2022-11-01T12:51:32.000"
  },
  "status" : "E0200",
  "message" : "Transaction rejected, card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a5fc975c-9c63-4a0d-ac65-cb0bd511aa9e"
}
Table 124. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

cardBlockadeAdditionalData.blockType

String

Block type. Possible values: TEMP - temporary, PERMANENT - permanent.

cardBlockadeAdditionalData.blockedUntil

String

Date until card will be blocked in yyyy-MM-ddThh-mm-ss.SSS format.

HTTP Response - STATUS: E01600
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 326

{
  "requestUuid" : "457711e5-a804-4d41-b3fe-963f4cbc8aff",
  "transactionStatus" : "REJECTED",
  "status" : "E01584",
  "message" : "Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "78c16e21-248e-465b-9969-34ef0d53dc99"
}
Table 125. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01601
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 286

{
  "requestUuid" : "e432fd44-8e10-4c6e-835e-ece8e667bf38",
  "transactionStatus" : "REJECTED",
  "status" : "E01601",
  "message" : "Transaction rejected, terminal is blocked for provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a098d899-9027-47ef-95eb-79f2c8cee271"
}
Table 126. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01602
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 308

{
  "requestUuid" : "6294bf94-f98a-43cb-942e-4be4abff97d1",
  "transactionStatus" : "REJECTED",
  "status" : "E01602",
  "message" : "Transaction rejected, geographic scope is not permitted for this transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "448a7d0c-b00b-4dd6-af8e-62022c85bcdb"
}
Table 127. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E10000
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 300

{
  "requestUuid" : "4a5815aa-25e8-4928-af0b-e0f9850a41bc",
  "transactionStatus" : "REJECTED",
  "status" : "E10000",
  "message" : "Transaction rejected, terminal daily card transaction limit exceeded",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "c6f025af-00fa-4fd3-b392-a021b4443f6a"
}
Table 128. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E10001
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "396d7651-83c7-4c70-b8e1-cfeffc95a984",
  "transactionStatus" : "REJECTED",
  "status" : "E10001",
  "message" : "Transaction rejected, terminal daily transaction limit exceeded",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "1b21d059-5081-4a66-b20e-4c79eb7a4bcc"
}
Table 129. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E10002
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 297

{
  "requestUuid" : "e29f39e7-9bbd-42a5-a323-17914baf97d5",
  "transactionStatus" : "REJECTED",
  "status" : "E10002",
  "message" : "Transaction rejected, terminal monthly transaction limit exceeded",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "900a63ee-4486-4f04-b4dc-1d0fa98a93fd"
}
Table 130. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0142
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 183

{
  "status" : "E0142",
  "message" : "Commission configuration not add for terminal",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "8f4ca115-795f-47e6-b744-cabafb903967"
}
HTTP Response - STATUS: E0153
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 280

{
  "requestUuid" : "a30c3eb5-91b8-4f3b-9da6-fd676ec0b5b4",
  "transactionStatus" : "PENDING",
  "status" : "E0153",
  "message" : "Transaction declined, problem with MIP connection",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "fc516e0f-bafd-479c-a345-466b01b6ccb5"
}
HTTP Response - STATUS: E01599
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "0e131867-dd6e-4606-96aa-3883b2a24508",
  "transactionStatus" : "DECLINED",
  "status" : "E01599",
  "message" : "Transaction declined, processing timeout",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "e87a4edf-a5fe-4001-975b-7e035f05e3bf"
}
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "5ff7712f-a029-44fd-ba95-773e15f304c0"
}
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "df115668-a549-4140-ac4e-1e130aeca740"
}
HTTP Response - STATUS: E9008
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 265

{
  "requestUuid" : "83d2d79e-4e55-4e00-b926-018d5bf65aa0",
  "transactionStatus" : "DECLINED",
  "status" : "E9008",
  "message" : "Error mpi - 3ds initialize failed",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "61c9c20a-1c4d-48ac-9b01-fad1d770abe0"
}
Table 131. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:07 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "b261ebb0-2825-48aa-9337-9c664feb410f"
}
HTTP Response - STATUS: E9002
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 250

{
  "requestUuid" : "d62ed15f-b803-4ecd-afeb-8b1cbb6ab698",
  "transactionStatus" : "DECLINED",
  "status" : "E9002",
  "message" : "Error mpi connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "af12a5fe-d779-4a58-873c-74e2e92eaaba"
}
HTTP Response - STATUS: E9010
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 258

{
  "requestUuid" : "4f01e9aa-92ea-43fd-b7f6-3dacd682e7c6",
  "transactionStatus" : "REJECTED",
  "status" : "E9010",
  "message" : "Error data center connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "5d40138e-c211-412e-9f3c-875b5b9745bf"
}
HTTP Response - STATUS: E9011
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 249

{
  "requestUuid" : "50851ad9-3ff6-4340-8643-e7f3583a33a9",
  "transactionStatus" : "ERROR",
  "status" : "E9011",
  "message" : "Error limit connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "fbde368b-5db3-4894-abfb-9aede043dd79"
}
Table 132. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

6.5. MO/TO payment

POST /client/payments/moto/auth Content Type: application/json, Authorization: Basic Auth
MO/TO is a type of transaction where the customer makes a purchase in the merchant's shop by phone or e-mail. All required transactional data are obtained through a call to
the merchant's consultant and sensitive data, e.g. by typing cvc, expiry date, card number on the phone keypad.
The MO/TO transaction has two possible types of authentication: CVC (using the card's cvc) or AVS (using the cardholder's address - postcode and address e.g. house number).
Merchant has the ability to make a payment for goods which causes the cardholder to be debited in the currency of purchase, terminal or card currency based on the parameters provided: currency of transaction, different currency terminals held and currencies supported by the card.
The optional terminalUuid field provided during any of the authorisation methods forces the card to be debited in the currency of the terminal specified if the purchase currency is different from the terminal currency a currency conversion will take place.
If the merchant decides the card to be allways charged in the currency of the transaction without any currency conversion, this should be specified using the noCurrencyConversion
flag in the authorisation.
The Fenige Payment API methods optionally allows merchants to store card data and sensitive personal data in order to allow performing subsequent transactions.
If merchant decides to use DataCenter transaction flow then is required to provide the card id of the card previously stored in the Fenige DataCenter, from which card the
relevant required parameters will be downloaded and used for authorization.
Card data and sensitive personal data according to the Fenige API specification are: cardNumber, expiryDate, firstName, lastName and email.
All card data are stored securely on Fenige DataCenter servers in accordance with applicable security requirements.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

MO/TO payment with outside 3DS flow
ecommerce moto with outside3ds trx flow
MO/TO payment with DataCenter and outside 3DS flow
ecommerce moto data center trx with outside3ds flow
MO/TO payment flow
ecommerce moto trx flow
MO/TO payment with DataCenter flow
ecommerce moto data center trx flow

6.5.1. Request

MO/TO CVC
HTTP Request
POST /client/payments/moto/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 604
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "8b543950-8a50-4af8-92c4-bbb4f7db47d6",
  "requestUuid" : "78e5b223-6be2-48ee-ab7e-61af93cab9b9",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "motoType" : "CVC",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null
}
Table 133. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 134. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

cvc2

String

@Length must be 3 characters, @Must not be null when MO/TO CVC

Cardholder’s card cvc2. Required only when moto verification type (motoType) is set to CVC value

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

motoType

String

@Must not be null

Allows to switch between CVC and AVS (Address Verification) methods of authentication

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

MO/TO CVC - forced Terminal
HTTP Request
POST /client/payments/moto/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 663
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "e1da58c7-788e-4212-8654-d9b312f10bc5",
  "terminalUuid" : "09e61902-e595-4d8c-9893-1c6a48babd67",
  "requestUuid" : "1f4ba3e4-2bd9-4b0b-9002-26b8faeffd20",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "motoType" : "CVC",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null
}
Table 135. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 136. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

terminalUuid

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Terminals’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

cvc2

String

@Length must be 3 characters, @Must not be null when MO/TO CVC

Cardholder’s card cvc2. Required only when moto verification type (motoType) is set to CVC value

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

motoType

String

@Must not be null

Allows to switch between CVC and AVS (Address Verification) methods of authentication

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

MO/TO AVS
HTTP Request
POST /client/payments/moto/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 644
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "8b543950-8a50-4af8-92c4-bbb4f7db47d6",
  "requestUuid" : "2e09c457-b790-4d0d-8129-a3a211e52210",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/22",
  "email" : "test@fenige.pl",
  "motoType" : "AVS",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "clientPostalCode" : "24-110",
  "clientAddress" : "5",
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null
}
Table 137. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 138. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

motoType

String

@Must not be null

Allows to switch between CVC and AVS (Address Verification) methods of authentication

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

clientPostalCode

String

@Length must be between 1 and 10 inclusive, @Must not be blank, @Must not be null when AVS

Client postal code required in AVS service to authorize cardholder in bank issuer during MO/TO transaction

clientAddress

String

@Must not be null when AVS

Client address (e.g. house number) required in AVS service to authorize cardholder in bank issuer during MO/TO transaction

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

MO/TO AVS - forced Terminal
HTTP Request
POST /client/payments/moto/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 703
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "e1da58c7-788e-4212-8654-d9b312f10bc5",
  "terminalUuid" : "09e61902-e595-4d8c-9893-1c6a48babd67",
  "requestUuid" : "188bd970-d3ab-4538-b5a1-13e009d4d3f0",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "cardNumber" : "5453131785534417",
  "expiryDate" : "11/22",
  "email" : "test@fenige.pl",
  "motoType" : "AVS",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "clientPostalCode" : "24-110",
  "clientAddress" : "5",
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null
}
Table 139. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 140. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

terminalUuid

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Terminals’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cardNumber

String

@Card number length must be between 12 and 19, @Must not be blank, @Must not be null

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

motoType

String

@Must not be null

Allows to switch between CVC and AVS (Address Verification) methods of authentication

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

clientPostalCode

String

@Length must be between 1 and 10 inclusive, @Must not be blank, @Must not be null when AVS

Client postal code required in AVS service to authorize cardholder in bank issuer during MO/TO transaction

clientAddress

String

@Must not be null when AVS

Client address (e.g. house number) required in AVS service to authorize cardholder in bank issuer during MO/TO transaction

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

Request - DataCenter card
HTTP Request
POST /client/payments/moto/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 482
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "8b543950-8a50-4af8-92c4-bbb4f7db47d6",
  "requestUuid" : "d0286de2-88ea-409a-ad4f-e68cdb8cefbc",
  "amount" : 1000,
  "currency" : "USD",
  "cardId" : 1906455,
  "cvc2" : "123",
  "motoType" : "CVC",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null
}
Table 141. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 142. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

cvc2

String

@Length must be 3 characters, @Must not be null when MO/TO CVC

Cardholder’s card cvc2. Required only when moto verification type (motoType) is set to CVC value

cardId

Number

@Must not be null, @Numeric

DataCenter card id. Required to obtain card information data from DataCenter such as (cardNumber, expiryDate, firstName, lastName, email)

motoType

String

@Must not be null

Allows to switch between CVC and AVS (Address Verification) methods of authentication

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

6.5.2. Response

Response status
Status Description

200 OK

Returned when transaction was successfully authorized.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant is not existing.

STATUS: E0132 - Returned when terminal is not existing.

STATUS: E0135 - Returned when terminal for merchant not exist or all of them are inactive.

STATUS: E0137 - Returned when there is not terminal marked as default

STATUS: E06003 - Returned when DataCenter card was not found.

422 UNPROCESSABLE ENTITY

STATUS: E0150 - Returned when transaction is rejected.

STATUS: E0151 - Returned when transaction is rejected, because currency is not supported.

STATUS: E0152 - Returned when transaction is rejected, because issuer is not supported.

STATUS: E01580 - Returned when transaction is rejected, because DataCenter card was expired.

STATUS: E0159 - Returned when transaction is rejected, because restricted transaction amount has occurred

STATUS: E01596 - Returned when transaction is rejected, because terminal has blocked transaction with card issued in restricted country

STATUS: E01601 - Returned when transaction is rejected, because terminal is blocked for provider

STATUS: E01602 - Transaction rejected, geographic scope is not permitted for this transaction

STATUS: E0200 - Returned when transaction is rejected, because card is blocked in Fenige System

STATUS: E0201 - Returned when transaction is rejected, because BIN is blocked in Fenige System

STATUS: E0202 - Returned when transaction is rejected, because Terminal is blocked in Fenige System

STATUS: E0204 - Returned when transaction is rejected, because user’s personal data was found on AML (sanctions) list

STATUS: E0205 - Returned when transaction is rejected, because Bank is blocked in Fenige System

STATUS: E0206 - Returned when transaction is rejected, because to many reject transactions and card is blocked

STATUS: E0207 - Returned when transaction is rejected, bacause to many attempts declined and card is blocked

STATUS: E0208 - Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

STATUS: E0209 - Returned when sender or receiver name contains fraudulent phrase

STATUS: E0210 - Returned when sender has suspicious name

500 INTERNAL SERVER ERROR

STATUS: E0153 - Returned when transaction is declined, by problem with MIP connection.

STATUS: E01599 - Transaction declined, processing timeout.

STATUS: E0142 - Returned when commission configuration is not added for terminal.

STATUS: E0190 - Returned when currency rate is invalid.

STATUS: E9000 - Returned when reason is unknown.

STATUS: E9010 - Returned when is error DataCenter connection.

503 SERVICE UNAVAILABLE

STATUS: E9001 - Returned when is error acquirer connection.

200 OK
HTTP Response - transaction
{
  "requestUuid" : "93da758e-c3e3-474c-b232-c2b4d10429e6",
  "transactionStatus" : "APPROVED",
  "responseCode" : "CODE_00",
  "status" : "S0002",
  "message" : "Success transaction",
  "httpStatus" : "OK"
}
Table 143. Response fields
Path Type Description

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

responseCode

String

Response code

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:39 GMT
Connection: close
Content-Length: 485

{
  "errors" : {
    "expiryDate" : [ "invalid card format expiration date" ],
    "firstName" : [ "must not be blank", "must not be null" ],
    "lastName" : [ "must not be null", "must not be blank" ],
    "amount" : [ "must not be null" ],
    "merchantUuid" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "currency" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "ea22adcc-5623-4732-a303-9454bc18ea58"
}
HTTP Response - transaction without specified motoType
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:28 GMT
Connection: close
Content-Length: 170

{
  "errors" : {
    "motoType" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "42ce3c68-2bc8-460e-b13b-312a43023115"
}
Table 144. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E8000 - DataCenter Bad Request
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:39 GMT
Connection: close
Content-Length: 679

{
  "errors" : {
    "expiryDate" : [ "Card id was provided, expiryDate is obtained from data center card: 1906455" ],
    "firstName" : [ "Card id was provided, firstName is obtained from data center card: 1906455" ],
    "lastName" : [ "Card id was provided, lastName is obtained from data center card: 1906455" ],
    "cardId" : [ "Please provide cardId for DATACENTER transaction or fields: cardNumber, expiryDate, firstName, lastName for PLAIN transaction" ],
    "cardNumber" : [ "Card id was provided, cardNumber is obtained from data center card: 1906455" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "c854b95e-fd51-482f-84a5-8c965ec7de38"
}
Table 145. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:39 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "50b3d117-eae8-469b-b825-801df3e5d164"
}
Table 146. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:40 GMT
Content-Length: 135

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "489039f4-50fa-4c49-a58d-2ca550f56058"
}
Table 147. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "b73e274f-3882-49a6-95b2-b750a6f084cf"
}
HTTP Response - STATUS: E0132
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0132",
  "message" : "Terminal not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "95dc4a04-b769-4029-90cc-7bdc65973e4b"
}
HTTP Response - STATUS: E0135
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 159

{
  "status" : "E0135",
  "message" : "Terminals for merchant not exists",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "08f542c1-bdfd-420d-944e-9de8ed097e32"
}
HTTP Response - STATUS: E0137
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 163

{
  "status" : "E0137",
  "message" : "Default terminal not exist",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "b245196a-2e5d-4424-a101-679ce6354688"
}
Table 148. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E06003
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 246

{
  "requestUuid" : "8d48918e-c0a1-4391-8b05-dfb380e2a5c7",
  "transactionStatus" : "REJECTED",
  "status" : "E06003",
  "message" : "Datacenter card not found",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "d4d64f18-13da-498c-921f-b0c294e61da5"
}
Table 149. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E0150
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 251

{
  "requestUuid" : "95f2dc01-c3a1-4c80-96b8-708cfe621926",
  "transactionStatus" : "REJECTED",
  "status" : "E0150",
  "message" : "Transaction rejected",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "7d475230-6437-42e6-9985-2ebbae5188e4"
}
HTTP Response - STATUS: E0151
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 275

{
  "requestUuid" : "fb64c70c-8006-49a0-8f7c-64bd206ec7ae",
  "transactionStatus" : "REJECTED",
  "status" : "E0151",
  "message" : "Transaction rejected, currency not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "ab984b89-a8b6-44e4-bc8c-6a518ed2be5e"
}
HTTP Response - STATUS: E0152
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "113ab88a-2116-492a-a546-1e7945893112",
  "transactionStatus" : "REJECTED",
  "status" : "E0152",
  "message" : "Transaction rejected, issuer card not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "62976e26-cd0a-4011-9794-10bae9184496"
}
HTTP Response - STATUS: E0159
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "9b7dd401-83f0-446f-b4d3-c95897fbb45f",
  "transactionStatus" : "REJECTED",
  "status" : "E0159",
  "message" : "Transaction rejected, restricted transaction amount has occurred",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "b490e7a0-88d8-47c0-95b6-853a8f24c667"
}
HTTP Response - STATUS: E01580
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 282

{
  "requestUuid" : "78d94324-09aa-4b00-be03-45a291272c23",
  "transactionStatus" : "REJECTED",
  "status" : "E01580",
  "message" : "Transaction rejected. Data center card is expired.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "fcc57eed-280a-436b-9757-090f7ff6fa6f"
}
HTTP Response - STATUS: E0201
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 267

{
  "requestUuid" : "0c0a6bd5-6433-41c9-95ee-35ced71c94c9",
  "transactionStatus" : "REJECTED",
  "status" : "E0201",
  "message" : "Transaction rejected, bin is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a378dbbc-34f2-42fb-bd78-82a6a49acabc"
}
HTTP Response - STATUS: E0202
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "4bd95017-50a3-4b1d-b405-b6adac7b32cf",
  "transactionStatus" : "REJECTED",
  "status" : "E0202",
  "message" : "Transaction rejected, terminal is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "aff924c3-3ada-4f5a-8f45-6355211e5f7e"
}
HTTP Response - STATUS: E0204
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "8591f673-dc6c-4499-9b55-18119bc7053a",
  "transactionStatus" : "REJECTED",
  "status" : "E0204",
  "message" : "Transaction rejected, user is on aml list",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "36d14d2f-0cd4-4f30-817b-313f41cc68a4"
}
HTTP Response - STATUS: E0205
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 268

{
  "requestUuid" : "0995019c-f257-4d3a-9591-788289c386ae",
  "transactionStatus" : "REJECTED",
  "status" : "E0205",
  "message" : "Transaction rejected, bank is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "c0a5b473-acdc-46f2-8a8b-92f38bf4ef83"
}
HTTP Response - STATUS: E0206
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 300

{
  "requestUuid" : "a2b5dcac-8b38-4af8-a2ab-7f6cf129e5a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0206",
  "message" : "Transaction rejected, to many reject transactions and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "411ef278-ddb8-4fc5-8370-fd0c0a3a56c5"
}
HTTP Response - STATUS: E0207
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 298

{
  "requestUuid" : "315a9822-1353-430c-900a-1091c8a8ef3c",
  "transactionStatus" : "REJECTED",
  "status" : "E0207",
  "message" : "Transaction rejected, to many attempts declined and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "33a24f95-3b59-4786-8c7b-69f24bc73268"
}
HTTP Response - STATUS: E0208
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "17f357e9-a4cc-4b6c-afeb-e6f6e160efee",
  "transactionStatus" : "REJECTED",
  "status" : "E0208",
  "message" : "Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "cf61360c-bb3a-4f6c-b6da-943ef29a3362"
}
HTTP Response - STATUS: E0209
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 292

{
  "requestUuid" : "5e39e53e-06aa-49c0-8a64-5449ebf7813c",
  "transactionStatus" : "REJECTED",
  "status" : "E0209",
  "message" : "Transaction rejected, sender name contains fraudulent phrase.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "1baaa90c-add5-40d0-9f83-a4a3f72dc525"
}
HTTP Response - STATUS: E0210
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 276

{
  "requestUuid" : "166cef5c-96fe-4edd-bf44-e21f81e65acd",
  "transactionStatus" : "REJECTED",
  "status" : "E0210",
  "message" : "Transaction rejected, suspicious sender name.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f51fb707-057b-40fc-8902-81fd461cfd0e"
}
HTTP Response - STATUS: E01596
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "5f23b662-d85e-4725-adca-2a7f3890e60a",
  "transactionStatus" : "REJECTED",
  "status" : "E01596",
  "message" : "Transaction rejected, terminal blocks transactions with card issued in given card country",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "7cecfd5f-f33a-46cd-88bb-63535f9b5815"
}
Table 150. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E0200
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 381

{
  "requestUuid" : "da260812-9981-4169-93a5-43a6429a08b8",
  "transactionStatus" : "REJECTED",
  "cardBlockadeAdditionalData" : {
    "blockType" : "TEMP",
    "blockedUntil" : "2022-11-01T12:51:32.000"
  },
  "status" : "E0200",
  "message" : "Transaction rejected, card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a5fc975c-9c63-4a0d-ac65-cb0bd511aa9e"
}
Table 151. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

cardBlockadeAdditionalData.blockType

String

Block type. Possible values: TEMP - temporary, PERMANENT - permanent.

cardBlockadeAdditionalData.blockedUntil

String

Date until card will be blocked in yyyy-MM-ddThh-mm-ss.SSS format.

HTTP Response - STATUS: E01601
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 286

{
  "requestUuid" : "e432fd44-8e10-4c6e-835e-ece8e667bf38",
  "transactionStatus" : "REJECTED",
  "status" : "E01601",
  "message" : "Transaction rejected, terminal is blocked for provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a098d899-9027-47ef-95eb-79f2c8cee271"
}
Table 152. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01602
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 308

{
  "requestUuid" : "6294bf94-f98a-43cb-942e-4be4abff97d1",
  "transactionStatus" : "REJECTED",
  "status" : "E01602",
  "message" : "Transaction rejected, geographic scope is not permitted for this transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "448a7d0c-b00b-4dd6-af8e-62022c85bcdb"
}
Table 153. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0142
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 183

{
  "status" : "E0142",
  "message" : "Commission configuration not add for terminal",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "8f4ca115-795f-47e6-b744-cabafb903967"
}
HTTP Response - STATUS: E0153
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 280

{
  "requestUuid" : "a30c3eb5-91b8-4f3b-9da6-fd676ec0b5b4",
  "transactionStatus" : "PENDING",
  "status" : "E0153",
  "message" : "Transaction declined, problem with MIP connection",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "fc516e0f-bafd-479c-a345-466b01b6ccb5"
}
HTTP Response - STATUS: E01599
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "0e131867-dd6e-4606-96aa-3883b2a24508",
  "transactionStatus" : "DECLINED",
  "status" : "E01599",
  "message" : "Transaction declined, processing timeout",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "e87a4edf-a5fe-4001-975b-7e035f05e3bf"
}
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "5ff7712f-a029-44fd-ba95-773e15f304c0"
}
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "df115668-a549-4140-ac4e-1e130aeca740"
}
Table 154. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:07 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "b261ebb0-2825-48aa-9337-9c664feb410f"
}
HTTP Response - STATUS: E9002
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 250

{
  "requestUuid" : "d62ed15f-b803-4ecd-afeb-8b1cbb6ab698",
  "transactionStatus" : "DECLINED",
  "status" : "E9002",
  "message" : "Error mpi connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "af12a5fe-d779-4a58-873c-74e2e92eaaba"
}
HTTP Response - STATUS: E9010
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 258

{
  "requestUuid" : "4f01e9aa-92ea-43fd-b7f6-3dacd682e7c6",
  "transactionStatus" : "REJECTED",
  "status" : "E9010",
  "message" : "Error data center connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "5d40138e-c211-412e-9f3c-875b5b9745bf"
}
Table 155. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

6.6. Token payment

POST /client/payments/token/auth Content Type: application/json, Authorization: Basic Auth
    The token payment method is a solution that allows merchant customers to make payments using mobile applications. The merchant uses a card number in the form of a token
(Apple pay) and dynamic cryptographic data to authenticate the cardholder. The merchant receives this data from the token requestor it uses.
    Then Fenige authorizes the transaction in Mastercard or VISA and depending on the result, returns the corresponding status to the merchant.
    An additional option not required is to send an additional authentication in the form of an outside3ds object containing the authentication data for the 3DS version 1.0 or 2.x
 execution confirmation.
Merchant has the ability to make a payment for goods which causes the cardholder to be debited in the currency of purchase, terminal or card currency based on the parameters provided: currency of transaction, different currency terminals held and currencies supported by the card.
The optional terminalUuid field provided during any of the authorisation methods forces the card to be debited in the currency of the terminal specified if the purchase currency is different from the terminal currency a currency conversion will take place.
If the merchant decides the card to be allways charged in the currency of the transaction without any currency conversion, this should be specified using the noCurrencyConversion
flag in the authorisation.

Google pay - payment with Google pay is a standard ecommerce payment for which you can use the 6.4. Payment method except that there is no CVC2 field

This endpoint is idempotent so if you execute more than one requests with the same data even at the same time, only first registered transaction will be processed further. In
response, we receive transaction status.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

E-commerce payment with token and outside 3DS flow
ecommerce token with outside3ds flow

6.6.1. Request

Request - with forced terminal outside 3DS 2.0
HTTP Request
POST /client/payments/token/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 957
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "7e39c535-4507-4047-90f5-692d20c9e51e",
  "terminalUuid" : "d747fde4-f26d-43ac-8909-816df99f0856",
  "requestUuid" : "eb197c90-0219-45fb-9476-4c00adac1d65",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 100,
  "currency" : "USD",
  "tokenPan" : "5127482301411937126",
  "expiryDate" : "11/22",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "terminalLocation" : "HOME",
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "paymentData" : {
    "onlinePaymentCryptogram" : "/0OL1zEABL+gk70RYJ8lMAABAAA=",
    "eciIndicator" : "02"
  },
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "receiverAmount" : 90,
  "countryOfResidence" : "PL"
}
Table 156. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 157. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

tokenPan

String

@Must be not null, @Must be not blank, @Length must be between 16 and 19

Token that is used in place of sender’s card number (PAN). Token form payment gateway or native apps from google, apple etc

terminalLocation

String

@Must not be null

Location of terminal - value must be set as HOME or PREMISES

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

paymentData

Object

Payment tokenization data object

paymentData.onlinePaymentCryptogram

String

@Must not be empty, @Size must be between 0 and 28 inclusive

Payment secure cryptogram obtained during merchant card tokenization in mobile app. Base64 encoded payment crypto value.

paymentData.eciIndicator

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Eci value returned only for tokens on the Visa card network. The value should be passed by merchant if present with payment cryptogram. Optional value

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

@Size must be between 0 and 28 inclusive

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

@Length must be between 1 and 2 inclusive, @Must match the regular expression ^\d+$

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 00 or 01 or 02 or 05 or 06 or 07, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. More info.

outside3ds.authenticationStatus

String

@Must match Y or A or U, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt. U - (Technical or other problem) - No liability shift, consider whether to proceed with the transaction

countryOfResidence

String

Country of residence is only required for merchants crypto

terminalUuid

String

Terminals’s unique uuid in system

Request - with forced terminal outside 3DS 1.0
HTTP Request
POST /client/payments/token/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 894
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "7e39c535-4507-4047-90f5-692d20c9e51e",
  "terminalUuid" : "d747fde4-f26d-43ac-8909-816df99f0856",
  "requestUuid" : "eb197c90-0219-45fb-9476-4c00adac1d65",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 100,
  "currency" : "USD",
  "tokenPan" : "5127482301411937126",
  "expiryDate" : "11/22",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "terminalLocation" : "HOME",
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "paymentData" : {
    "onlinePaymentCryptogram" : "/0OL1zEABL+gk70RYJ8lMAABAAA=",
    "eciIndicator" : "02"
  },
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y"
  },
  "receiverAmount" : 90,
  "countryOfResidence" : "PL"
}
Table 158. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 159. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

tokenPan

String

@Must be not null, @Must be not blank, @Length must be between 16 and 19

Token that is used in place of sender’s card number (PAN). Token form payment gateway or native apps from google, apple etc

terminalLocation

String

@Must not be null

Location of terminal - value must be set as HOME or PREMISES

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

paymentData

Object

Payment tokenization data object

paymentData.onlinePaymentCryptogram

String

@Must not be empty, @Size must be between 0 and 28 inclusive

Payment secure cryptogram obtained during merchant card tokenization in mobile app. Base64 encoded payment crypto value.

paymentData.eciIndicator

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Eci value returned only for tokens on the Visa card network. The value should be passed by merchant if present with payment cryptogram. Optional value

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

@Size must be between 0 and 28 inclusive

Cardholder Authentication Verification Value.

outside3ds.cavvAlgorithm

String

@Length must be between 1 and 2 inclusive, @Must match the regular expression ^\d+$

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 00 or 01 or 02 or 05 or 06 or 07, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. More info.

outside3ds.authenticationStatus

String

@Must match Y or A or U, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt. U - (Technical or other problem) - No liability shift, consider whether to proceed with the transaction

countryOfResidence

String

Country of residence is only required for merchants crypto

terminalUuid

String

Terminals’s unique uuid in system

Request
HTTP Request
POST /client/payments/token/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 687
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "4ab40ebe-c153-48f4-9d95-3f555f8c6d32",
  "requestUuid" : "eb197c90-0219-45fb-9476-4c00adac1d65",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 100,
  "currency" : "USD",
  "tokenPan" : "5127482301411937126",
  "expiryDate" : "11/22",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "terminalLocation" : "HOME",
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "paymentData" : {
    "onlinePaymentCryptogram" : "/0OL1zEABL+gk70RYJ8lMAABAAA=",
    "eciIndicator" : "02"
  },
  "receiverAmount" : 90,
  "countryOfResidence" : "PL"
}
Table 160. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 161. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

tokenPan

String

@Must be not null, @Must be not blank, @Length must be between 16 and 19

Token that is used in place of sender’s card number (PAN). Token form payment gateway or native apps from google, apple etc

terminalLocation

String

@Must not be null

Location of terminal - value must be set as HOME or PREMISES

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

paymentData

Object

Payment tokenization data object

paymentData.onlinePaymentCryptogram

String

@Must not be empty, @Size must be between 0 and 28 inclusive

Payment secure cryptogram obtained during merchant card tokenization in mobile app. Base64 encoded payment crypto value.

paymentData.eciIndicator

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Eci value returned only for tokens on the Visa card network. The value should be passed by merchant if present with payment cryptogram. Optional value.

countryOfResidence

String

Country of residence is only required for merchants crypto

Request - forced Terminal
HTTP Request
POST /client/payments/token/auth HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 746
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "7e39c535-4507-4047-90f5-692d20c9e51e",
  "terminalUuid" : "d747fde4-f26d-43ac-8909-816df99f0856",
  "requestUuid" : "eb197c90-0219-45fb-9476-4c00adac1d65",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 100,
  "currency" : "USD",
  "tokenPan" : "5127482301411937126",
  "expiryDate" : "11/22",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "terminalLocation" : "HOME",
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "paymentData" : {
    "onlinePaymentCryptogram" : "/0OL1zEABL+gk70RYJ8lMAABAAA=",
    "eciIndicator" : "02"
  },
  "receiverAmount" : 90,
  "countryOfResidence" : "PL"
}
Table 162. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 163. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

firstName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

First name of cardholder

lastName

String

@Length must be between 2 and 35, @Must match the regular expression [0-9]+$, @Must not be blank, @Must not be null

Last name of cardholder

expiryDate

String

@Must not be blank, @Must not be null

Expiration date of card mm/yy

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

tokenPan

String

@Must be not null, @Must be not blank, @Length must be between 16 and 19

Token that is used in place of sender’s card number (PAN). Token form payment gateway or native apps from google, apple etc

terminalLocation

String

@Must not be null

Location of terminal - value must be set as HOME or PREMISES

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

paymentData

Object

Payment tokenization data object

paymentData.onlinePaymentCryptogram

String

@Must not be empty, @Size must be between 0 and 28 inclusive

Payment secure cryptogram obtained during merchant card tokenization in mobile app. Base64 encoded payment crypto value.

paymentData.eciIndicator

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Eci value returned only for tokens on the Visa card network. The value should be passed by merchant if present with payment cryptogram. Optional value.

countryOfResidence

String

Country of residence is only required for merchants crypto

terminalUuid

String

Terminals’s unique uuid in system

6.6.2. Response

Response status
Status Description

200 OK

Returned when transaction was successfully authorized with Token.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when there was a problem with authorization to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorizeToken it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant is not existing.

STATUS: E0132 - Returned when terminal is not existing.

STATUS: E0135 - Returned when terminal for merchant not exist or all of them are inactive.

STATUS: E0137 - Returned when there is not terminal marked as default

422 UNPROCESSABLE ENTITY

STATUS: E0150 - Returned when transaction is rejected.

STATUS: E0151 - Returned when transaction is rejected, because currency is not supported.

STATUS: E0152 - Returned when transaction is rejected, because issuer is not supported.

STATUS: E0156 - Returned where terminal used for process transaction do not support 3DS

STATUS: E0157 - Returned where card used for process transaction do not support 3DS

STATUS: E01583 - Returned when transaction is rejected, because outside3ds object was not provided in transaction request

STATUS: E0159 - Returned when transaction is rejected, because restricted transaction amount has occurred

STATUS: E01596 - Returned when transaction is rejected, because terminal has blocked transaction with card issued in restricted country

STATUS: E01597 - Transaction rejected, 3DS version of terminal are not compatible with 3DS version defined in request. Please contact the sales department

STATUS: E01598 - Transaction rejected, ECI value is not available for card provider

STATUS: E01600 - Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request

STATUS: E01601 - Returned when transaction is rejected, because terminal is blocked for provider

STATUS: E01602 - Transaction rejected, geographic scope is not permitted for this transaction

STATUS: E0200 - Returned when transaction is rejected, because card is blocked in Fenige System

STATUS: E0201 - Returned when transaction is rejected, because BIN is blocked in Fenige System

STATUS: E0202 - Returned when transaction is rejected, because Terminal is blocked in Fenige System

STATUS: E0203 - Returned when transaction is rejected, because Token is blocked in Fenige System

STATUS: E0204 - Returned when transaction is rejected, because user’s personal data was found on AML (sanctions) list

STATUS: E0205 - Returned when transaction is rejected, because Bank is blocked in Fenige System

STATUS: E0206 - Returned when transaction is rejected, because to many reject transactions and card is blocked

STATUS: E0207 - Returned when transaction is rejected, bacause to many attempts declined and card is blocked

STATUS: E0208 - Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

STATUS: E0209 - Returned when sender or receiver name contains fraudulent phrase

STATUS: E0210 - Returned when sender has suspicious name

500 INTERNAL SERVER ERROR

STATUS: E0153 - Returned when transaction is declined, by problem with MIP connection.

STATUS: E01599 - Transaction declined, processing timeout.

STATUS: E0142 - Returned when commission configuration is not added for terminal.

STATUS: E0190 - Returned when currency rate is invalid.

STATUS: E9000 - Returned when reason is unknown.

STATUS: E9008 - Returned when mpi received 3ds initialize failed.

503 SERVICE UNAVAILABLE

STATUS: E9001 - Returned when is error acquirer connection.

STATUS: E9002 - Returned when is error mpi connection.

200 OK
HTTP Response - transaction with outside3DS
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 208

{
  "requestUuid" : "62b755a3-4bd0-41c4-abb3-9f43cca69d46",
  "transactionStatus" : "APPROVED",
  "responseCode" : "CODE_00",
  "status" : "S0002",
  "message" : "Success transaction",
  "httpStatus" : "OK"
}
Table 164. Response fields
Path Type Description

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

responseCode

String

Response code

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:09 GMT
Connection: close
Content-Length: 681

{
  "errors" : {
    "expiryDate" : [ "must not be blank", "must not be null", "invalid card format expiration date" ],
    "lastName" : [ "must not be null", "must not be blank" ],
    "tokenPan" : [ "must not be null", "must not be blank" ],
    "firstName" : [ "must not be blank", "must not be null" ],
    "amount" : [ "must not be null" ],
    "merchantUuid" : [ "must not be null" ],
    "terminalLocation" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "paymentData" : [ "must not be null" ],
    "currency" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "8aa5a264-ca62-4385-9c65-be88620fe1f2"
}
Table 165. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:09 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "b4ab6046-44b1-4072-a4c5-cce9d80f3b69"
}
Table 166. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:40 GMT
Content-Length: 135

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "489039f4-50fa-4c49-a58d-2ca550f56058"
}
Table 167. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "a434c81b-da3e-43d6-9de7-49f40c2358ca"
}
HTTP Response - STATUS: E0137
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 159

{
  "status" : "E0135",
  "message" : "Terminals for merchant not exists",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "f74dd023-efe2-4b49-bed2-abe55a97fdaf"
}
Table 168. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E0150
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 251

{
  "requestUuid" : "aabf07ca-8fb5-4613-abf7-7dea26db40b6",
  "transactionStatus" : "REJECTED",
  "status" : "E0150",
  "message" : "Transaction rejected",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "b74bfae9-c296-4f79-b70d-ab8fdef3f70b"
}
HTTP Response - STATUS: E0151
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 275

{
  "requestUuid" : "ebef86cb-559f-49cc-95a0-35ea5df8d47c",
  "transactionStatus" : "REJECTED",
  "status" : "E0151",
  "message" : "Transaction rejected, currency not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "282aa874-846d-46d3-90f7-762cb1abeb2c"
}

E01585 .HTTP Response - STATUS: E0152

HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "a3ce0b74-d671-49b6-9d0e-7ad237eb7f71",
  "transactionStatus" : "REJECTED",
  "status" : "E0152",
  "message" : "Transaction rejected, issuer card not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "e0de32c1-adb6-4a20-85dd-96fffbb1370f"
}
HTTP Response - STATUS: E0156
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 185

{
  "status" : "E0156",
  "message" : "Transaction rejected, terminal not supported 3ds",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "5b4df9d9-20eb-47c7-9217-07c84c4c2534"
}
HTTP Response - STATUS: E0157
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 181

{
  "status" : "E0157",
  "message" : "Transaction rejected, card not supported 3ds",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "d13f189a-967a-4a0d-b7f0-e6309fe4653c"
}
HTTP Response - STATUS: E0159
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "9b7dd401-83f0-446f-b4d3-c95897fbb45f",
  "transactionStatus" : "REJECTED",
  "status" : "E0159",
  "message" : "Transaction rejected, restricted transaction amount has occurred",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "b490e7a0-88d8-47c0-95b6-853a8f24c667"
}
HTTP Response - STATUS: E01599
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "75a5e9af-c86c-4189-bc16-47b7a6c1e5ba",
  "transactionStatus" : "DECLINED",
  "status" : "E01599",
  "message" : "Transaction declined, processing timeout",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "bb6f19b0-d49b-4d44-9701-47a960372859"
}
HTTP Response - STATUS: E0201
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 267

{
  "requestUuid" : "132818d2-d21c-46af-afe7-f21f6116a8f1",
  "transactionStatus" : "REJECTED",
  "status" : "E0201",
  "message" : "Transaction rejected, bin is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "0ee8b678-0b64-4b4c-ad31-fe83b5a44997"
}
HTTP Response - STATUS: E0202
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "de9c29ec-1dfb-40cd-9a0e-2f3510159ce6",
  "transactionStatus" : "REJECTED",
  "status" : "E0202",
  "message" : "Transaction rejected, terminal is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2e699109-ba69-48cf-ae54-db9efc941fd1"
}
HTTP Response - STATUS: E0203
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 269

{
  "requestUuid" : "ab3fabac-0810-4c5f-9af8-470fa5fa0af0",
  "transactionStatus" : "REJECTED",
  "status" : "E0203",
  "message" : "Transaction rejected, token is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "5060947d-8e2a-4890-b2f6-e5eff8f8b937"
}
HTTP Response - STATUS: E0204
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "e13f7eb1-8961-4bd0-a89e-0d8bdf706554",
  "transactionStatus" : "REJECTED",
  "status" : "E0204",
  "message" : "Transaction rejected, user is on aml list",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "5cfaaee1-f9f6-4bc8-a522-38e1686f9d00"
}
HTTP Response - STATUS: E0205
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 268

{
  "requestUuid" : "e31c75e1-a0f8-460b-82da-234d114e1c4c",
  "transactionStatus" : "REJECTED",
  "status" : "E0205",
  "message" : "Transaction rejected, bank is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "8bdb023b-34f7-49e1-b0bf-9442f32afdfa"
}
HTTP Response - STATUS: E0206
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 300

{
  "requestUuid" : "a2b5dcac-8b38-4af8-a2ab-7f6cf129e5a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0206",
  "message" : "Transaction rejected, to many reject transactions and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "411ef278-ddb8-4fc5-8370-fd0c0a3a56c5"
}
HTTP Response - STATUS: E0207
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 298

{
  "requestUuid" : "315a9822-1353-430c-900a-1091c8a8ef3c",
  "transactionStatus" : "REJECTED",
  "status" : "E0207",
  "message" : "Transaction rejected, to many attempts declined and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "33a24f95-3b59-4786-8c7b-69f24bc73268"
}
HTTP Response - STATUS: E0208
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "17f357e9-a4cc-4b6c-afeb-e6f6e160efee",
  "transactionStatus" : "REJECTED",
  "status" : "E0208",
  "message" : "Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "cf61360c-bb3a-4f6c-b6da-943ef29a3362"
}
HTTP Response - STATUS: E0209
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 292

{
  "requestUuid" : "5e39e53e-06aa-49c0-8a64-5449ebf7813c",
  "transactionStatus" : "REJECTED",
  "status" : "E0209",
  "message" : "Transaction rejected, sender name contains fraudulent phrase.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "1baaa90c-add5-40d0-9f83-a4a3f72dc525"
}
HTTP Response - STATUS: E0210
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 276

{
  "requestUuid" : "166cef5c-96fe-4edd-bf44-e21f81e65acd",
  "transactionStatus" : "REJECTED",
  "status" : "E0210",
  "message" : "Transaction rejected, suspicious sender name.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f51fb707-057b-40fc-8902-81fd461cfd0e"
}
HTTP Response - STATUS: E01583
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 290

{
  "requestUuid" : "05d10bb9-cecd-4c05-a006-31e4d98c32f1",
  "transactionStatus" : "REJECTED",
  "status" : "E01583",
  "message" : "Transaction rejected. Outside 3ds is required for terminal",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "89a787b2-f379-4960-a3f1-8d3af60c7b1a"
}
HTTP Response - STATUS: E01596
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "5f23b662-d85e-4725-adca-2a7f3890e60a",
  "transactionStatus" : "REJECTED",
  "status" : "E01596",
  "message" : "Transaction rejected, terminal blocks transactions with card issued in given card country",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "7cecfd5f-f33a-46cd-88bb-63535f9b5815"
}
HTTP Response - STATUS: E01597
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 369

{
  "requestUuid" : "a22a1848-61ce-4cde-a41c-24455894a10d",
  "transactionStatus" : "REJECTED",
  "status" : "E01597",
  "message" : "Transaction rejected, 3DS version of terminal are not compatible with 3DS version defined in request. Please contact the sales department",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "02ba294f-a2ac-449d-84bf-d233eea1279d"
}
HTTP Response - STATUS: E01598
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 298

{
  "requestUuid" : "035c18e9-fe45-43a3-b9d8-39f5ca802180",
  "transactionStatus" : "REJECTED",
  "status" : "E01598",
  "message" : "Transaction rejected, ECI value is not available for card provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "7507fccb-68e0-44ac-86f0-d8a23c070cd5"
}
Table 169. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E0200
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 381

{
  "requestUuid" : "451134e7-4cfb-4d91-9709-5325ce63bab3",
  "transactionStatus" : "REJECTED",
  "cardBlockadeAdditionalData" : {
    "blockType" : "TEMP",
    "blockedUntil" : "2022-11-01T12:51:32.000"
  },
  "status" : "E0200",
  "message" : "Transaction rejected, card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "28fe681b-7f4c-49a7-aac2-434b9ab0f8a5"
}
Table 170. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

cardBlockadeAdditionalData.blockType

String

Block type. Possible values: TEMP - temporary, PERMANENT - permanent.

cardBlockadeAdditionalData.blockedUntil

String

Date until card will be blocked in yyyy-MM-ddThh-mm-ss.SSS format.

HTTP Response - STATUS: E01600
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 326

{
  "requestUuid" : "457711e5-a804-4d41-b3fe-963f4cbc8aff",
  "transactionStatus" : "REJECTED",
  "status" : "E01584",
  "message" : "Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "78c16e21-248e-465b-9969-34ef0d53dc99"
}
Table 171. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01601
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 286

{
  "requestUuid" : "e432fd44-8e10-4c6e-835e-ece8e667bf38",
  "transactionStatus" : "REJECTED",
  "status" : "E01601",
  "message" : "Transaction rejected, terminal is blocked for provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a098d899-9027-47ef-95eb-79f2c8cee271"
}
Table 172. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01602
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 308

{
  "requestUuid" : "6294bf94-f98a-43cb-942e-4be4abff97d1",
  "transactionStatus" : "REJECTED",
  "status" : "E01602",
  "message" : "Transaction rejected, geographic scope is not permitted for this transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "448a7d0c-b00b-4dd6-af8e-62022c85bcdb"
}
Table 173. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0153
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 280

{
  "requestUuid" : "47f0465c-913a-4385-8b6b-d79417c78f96",
  "transactionStatus" : "PENDING",
  "status" : "E0153",
  "message" : "Transaction declined, problem with MIP connection",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "f06b0375-1e05-44d1-8256-7ab8d21a398c"
}
HTTP Response - STATUS: E0142
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 183

{
  "status" : "E0142",
  "message" : "Commission configuration not add for terminal",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "e1bb305f-3993-4ddd-92d7-d2a774026210"
}
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "75835371-8453-4943-8445-adf29a69f1d1"
}
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "df115668-a549-4140-ac4e-1e130aeca740"
}
HTTP Response - STATUS: E9008
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 265

{
  "requestUuid" : "835fa54e-3526-4f12-9bad-946d394e8117",
  "transactionStatus" : "DECLINED",
  "status" : "E9008",
  "message" : "Error mpi - 3ds initialize failed",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "7146bede-5f95-4791-a1f7-bc63e82e9ea6"
}
Table 174. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:07 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "b261ebb0-2825-48aa-9337-9c664feb410f"
}
HTTP Response - STATUS: E9002
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 250

{
  "requestUuid" : "ccf29872-9012-4f9d-968e-112dc8ef9344",
  "transactionStatus" : "DECLINED",
  "status" : "E9002",
  "message" : "Error mpi connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "b3a082c5-d482-411f-8bd7-55aefb413b15"
}
Table 175. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

6.7. CoF payment

A CoF (credential on file transaction) is a transaction where a cardholder authorizes a merchant to store account information such as (PAN and expiration date, and the
cardholder subsequently authorizes that same merchant to bill the cardholder’s stored account.
The method is used to charge the cardholder with no need to collect account data (PAN, exp date) from merchant at every transaction.
Using this method, we can authorize and process entire transaction using stored payment details. CoF supports both 3DS and without 3DS transactions. How the transaction will
be initiated depends on the terminal settings (look at 'is3dsEnable' field).
This endpoint is idempotent so if you execute more than one requests with the same data even at the same time, only first registered transaction will be processed further. In
response, we receive transaction status.
The cof transaction consists of two parts: initial and subsequent, which are discussed in detail below.
Please see detailed CoF transaction flow described on below listings.
Merchant has the ability to make a payment for goods which causes the cardholder to be debited in the currency of purchase, terminal or card currency based on the parameters provided: currency of transaction, different currency terminals held and currencies supported by the card.
The optional terminalUuid field provided during any of the authorisation methods forces the card to be debited in the currency of the terminal specified if the purchase currency is different from the terminal currency a currency conversion will take place.
If the merchant decides the card to be allways charged in the currency of the transaction without any currency conversion, this should be specified using the noCurrencyConversion
flag in the authorisation.
The Fenige Payment API methods optionally allows merchants to store card data and sensitive personal data in order to allow performing subsequent transactions.
If merchant decides to use DataCenter transaction flow then is required to provide the card id of the card previously stored in the Fenige DataCenter, from which card the
relevant required parameters will be downloaded and used for authorization.
Card data and sensitive personal data according to the Fenige API specification are: cardNumber, expiryDate, firstName, lastName and email.
All card data are stored securely on Fenige DataCenter servers in accordance with applicable security requirements.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

CoF payment flow
cof trx flow
CoF payment with outside 3DS
cof trx with outside3ds flow
CoF payment with DataCenter flow
cof trx data center flow
CoF payment with DataCenter and outside 3DS flow
cof trx data center outside3ds flow

6.7.1. CoF Initial transaction

POST /client/payments/cof/initial Content Type: application/json, Authorization: Basic Auth
The first stage is a one-time initial transaction, which is a simple e-commerce payment but contains the customer's consent to store card data for subsequent purchases. Card
 data is stored in a secure FENIGE environment. After completing the initial merchant receives the unique cofInitialUuid identifier needed to perform subsequent CoF
 transactions without having to enter card data.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

Request
Request - outside 3DS 2.X/3DS 1.0
HTTP Request
POST /client/payments/cof/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 868
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "8b543950-8a50-4af8-92c4-bbb4f7db47d6",
  "terminalUuid" : null,
  "requestUuid" : "a3f6b0e5-0895-422a-a191-fe9e221dc98d",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "noCurrencyConversion" : false,
  "cardNumber" : "5453131785534417",
  "cardId" : null,
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null,
  "countryOfResidence" : "US"
}
Table 176. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 177. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

@Size must be between 0 and 28 inclusive

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

Cardholder Authentication Verification Value. The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

@Length must be between 1 and 2 inclusive, @Must match the regular expression ^\d+$

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. Chargeback protection applies.

outside3ds.authenticationStatus

String

@Must match Y or A, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt.

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

Request
HTTP Request
POST /client/payments/cof/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 680
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "8b543950-8a50-4af8-92c4-bbb4f7db47d6",
  "terminalUuid" : null,
  "requestUuid" : "ab7e1e9a-a778-4349-a0fc-cc660687d2dd",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "noCurrencyConversion" : false,
  "cardNumber" : "5453131785534417",
  "cardId" : null,
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "outside3ds" : null,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null,
  "countryOfResidence" : "US"
}
Table 178. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 179. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

Request with forced Terminal
HTTP Request
POST /client/payments/cof/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 714
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "6018a098-62e6-4e20-b8f5-806d7137933c",
  "terminalUuid" : "4861caed-ada7-43f9-beea-5b96e358f6bd",
  "requestUuid" : "d9b97df5-31ce-4958-8000-d4ee6982f29f",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "noCurrencyConversion" : false,
  "cardNumber" : "5453131785534417",
  "cardId" : null,
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "outside3ds" : null,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null,
  "countryOfResidence" : "US"
}
Table 180. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 181. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

terminalUuid

String

Terminals’s unique uuid in system

Request with DataCenter card
HTTP Request
POST /client/payments/cof/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 671
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "a4309af0-a8c6-4e50-8e0f-b92db63dfd6e",
  "requestUuid" : "ccb8e92d-5827-4c74-9343-6e20231d2820",
  "amount" : 1000,
  "currency" : "USD",
  "cardId" : 1906455,
  "cvc2" : "123",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null
}
Table 182. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 183. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

cardId

Number

@Must not be null, @Numeric

DataCenter card id. Required to obtain card information data from DataCenter such as (cardNumber, expiryDate, firstName, lastName, email)

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

@Size must be between 0 and 28 inclusive

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

Cardholder Authentication Verification Value. The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

@Length must be between 1 and 2 inclusive, @Must match the regular expression ^\d+$

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. Chargeback protection applies.

outside3ds.authenticationStatus

String

@Must match Y or A, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt.

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

Response
Status Description

200 OK

Returned when transaction was successfully authorized.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant is not existing.

STATUS: E0132 - Returned when terminal is not existing.

STATUS: E0135 - Returned when terminal for merchant not exist or all of them are inactive.

STATUS: E0137 - Returned when there is not terminal marked as default

STATUS: E06003 - Returned when DataCenter card was not found.

422 UNPROCESSABLE ENTITY

STATUS: E0150 - Returned when transaction is rejected.

STATUS: E0151 - Returned when transaction is rejected, because currency is not supported.

STATUS: E0152 - Returned when transaction is rejected, because issuer is not supported.

STATUS: E01580 - Returned when transaction is rejected, because DataCenter card was expired.

STATUS: E0159 - Returned when transaction is rejected, because restricted transaction amount has occurred

STATUS: E01596 - Returned when transaction is rejected, because terminal has blocked transaction with card issued in restricted country

STATUS: E01601 - Returned when transaction is rejected, because terminal is blocked for provider

STATUS: E01602 - Transaction rejected, geographic scope is not permitted for this transaction

STATUS: E0200 - Returned when transaction is rejected, because card is blocked in Fenige System

STATUS: E0201 - Returned when transaction is rejected, because BIN is blocked in Fenige System

STATUS: E0202 - Returned when transaction is rejected, because Terminal is blocked in Fenige System

STATUS: E0204 - Returned when transaction is rejected, because user’s personal data was found on AML (sanctions) list

STATUS: E0205 - Returned when transaction is rejected, because Bank is blocked in Fenige System

STATUS: E0206 - Returned when transaction is rejected, because to many reject transactions and card is blocked

STATUS: E0207 - Returned when transaction is rejected, bacause to many attempts declined and card is blocked

STATUS: E0208 - Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

STATUS: E0209 - Returned when sender or receiver name contains fraudulent phrase

STATUS: E0210 - Returned when sender has suspicious name

STATUS: E01600 - Returned when transaction is declined, because 3DS 2.X flow invoked for other card number than specified in the request

500 INTERNAL SERVER ERROR

STATUS: E0142 - Returned when commission configuration is not added for terminal.

STATUS: E0153 - Returned when transaction is declined, by problem with MIP connection.

STATUS: E01599 - Transaction declined, processing timeout.

STATUS: E0190 - Returned when currency rate is invalid.

STATUS: E9000 - Returned when reason is unknown.

STATUS: E9008 - Returned when mpi received 3ds initialize failed.

503 SERVICE UNAVAILABLE

STATUS: E9001 - Returned when is error acquirer connection.

STATUS: E9002 - Returned when is error mpi connection.

STATUS: E9010 - Returned when is error DataCenter connection.

200 OK
HTTP Response - transaction without 3DS or with outside3DS
{
  "requestUuid" : "d548897f-a8d2-43a7-8d8a-99587319cd63",
  "cofInitialUuid" : "20a3844f-2ee8-455b-b1be-833f167f3c9d",
  "transactionStatus" : "APPROVED",
  "responseCode" : "CODE_00",
  "status" : "S0002",
  "message" : "Success transaction",
  "httpStatus" : "OK"
}
Table 184. Response fields
Path Type Description

requestUuid

String

Request unique uuid in system

cofInitialUuid

String

CoF transaction unique uuid in system

transactionStatus

String

Transaction status

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

responseCode

String

Response code

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:45 GMT
Connection: close
Content-Length: 485

{
  "errors" : {
    "expiryDate" : [ "invalid card format expiration date" ],
    "lastName" : [ "must not be null", "must not be blank" ],
    "firstName" : [ "must not be blank", "must not be null" ],
    "amount" : [ "must not be null" ],
    "merchantUuid" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "currency" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "9367f060-1ca8-44da-a2bb-c3554a92deea"
}
Table 185. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E8000 - DataCenter Bad Request
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:45 GMT
Connection: close
Content-Length: 679

{
  "errors" : {
    "expiryDate" : [ "Card id was provided, expiryDate is obtained from data center card: 1906455" ],
    "lastName" : [ "Card id was provided, lastName is obtained from data center card: 1906455" ],
    "firstName" : [ "Card id was provided, firstName is obtained from data center card: 1906455" ],
    "cardId" : [ "Please provide cardId for DATACENTER transaction or fields: cardNumber, expiryDate, firstName, lastName for PLAIN transaction" ],
    "cardNumber" : [ "Card id was provided, cardNumber is obtained from data center card: 1906455" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "5e93d027-c4ff-48b5-829c-6a6ec75cfb9f"
}
Table 186. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:45 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "59572aa1-8f20-475f-a7bb-7dab2ad370f7"
}
Table 187. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:46 GMT
Content-Length: 135

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "044cf2c5-1329-4264-a4f6-e034eeb2ca5e"
}
Table 188. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "1dedacb2-781c-45c6-bf03-e86290baa139"
}
HTTP Response - STATUS: E0132
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0132",
  "message" : "Terminal not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "d0eb2750-c6d0-43aa-a999-2f9bfba6b1a3"
}
Table 189. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E0135
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 163

{
  "status" : "E0137",
  "message" : "Default terminal not exist",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "1ded30eb-f0c2-4cfe-8a99-6ac47b09e1fa"
}
Table 190. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E0137
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 159

{
  "status" : "E0135",
  "message" : "Terminals for merchant not exists",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "b329ac5b-1bc8-461e-b50c-ed131bc83ab3"
}
Table 191. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

HTTP Response - STATUS: E06003
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 246

{
  "requestUuid" : "8d48918e-c0a1-4391-8b05-dfb380e2a5c7",
  "transactionStatus" : "REJECTED",
  "status" : "E06003",
  "message" : "Datacenter card not found",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "d4d64f18-13da-498c-921f-b0c294e61da5"
}
Table 192. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E0150
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 251

{
  "requestUuid" : "16bc4a6d-989d-4d7f-9fda-de87b29a8aaf",
  "transactionStatus" : "REJECTED",
  "status" : "E0150",
  "message" : "Transaction rejected",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "78551189-b88b-4b15-a259-20b76befe6a0"
}
HTTP Response - STATUS: E0151
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 275

{
  "requestUuid" : "87eda8b4-70b2-4702-bcd4-c1de7a1bb14b",
  "transactionStatus" : "REJECTED",
  "status" : "E0151",
  "message" : "Transaction rejected, currency not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "4e045e80-3ed6-484e-904d-a2aa848a4d70"
}
HTTP Response - STATUS: E0152
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "02531ab6-17cb-42d5-8974-3f66dcb59e65",
  "transactionStatus" : "REJECTED",
  "status" : "E0152",
  "message" : "Transaction rejected, issuer card not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "70b8908d-7206-49fe-bd99-c748b3028da3"
}
HTTP Response - STATUS: E01580
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 282

{
  "requestUuid" : "78d94324-09aa-4b00-be03-45a291272c23",
  "transactionStatus" : "REJECTED",
  "status" : "E01580",
  "message" : "Transaction rejected. Data center card is expired.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "fcc57eed-280a-436b-9757-090f7ff6fa6f"
}
HTTP Response - STATUS: E0159
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "9b7dd401-83f0-446f-b4d3-c95897fbb45f",
  "transactionStatus" : "REJECTED",
  "status" : "E0159",
  "message" : "Transaction rejected, restricted transaction amount has occurred",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "b490e7a0-88d8-47c0-95b6-853a8f24c667"
}
HTTP Response - STATUS: E0201
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 267

{
  "requestUuid" : "dd7883b6-615c-4333-a36d-2c014ad3799f",
  "transactionStatus" : "REJECTED",
  "status" : "E0201",
  "message" : "Transaction rejected, bin is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "27d3bbb6-ca62-47ab-8cda-c56fee81834c"
}
HTTP Response - STATUS: E0202
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "5d1d4315-c837-4ab5-8cb4-963fa335bcf1",
  "transactionStatus" : "REJECTED",
  "status" : "E0202",
  "message" : "Transaction rejected, terminal is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a08a143c-3f56-42cd-aa88-8b272a473a8a"
}
HTTP Response - STATUS: E0204
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "c0b7bb2f-3b35-4a17-85a7-06873f35929f",
  "transactionStatus" : "REJECTED",
  "status" : "E0204",
  "message" : "Transaction rejected, user is on aml list",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "cb69be49-03f6-4bec-b451-ad547d86e35d"
}
HTTP Response - STATUS: E0205
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 268

{
  "requestUuid" : "548599e8-f137-43dc-8e57-2a72fabb6cab",
  "transactionStatus" : "REJECTED",
  "status" : "E0205",
  "message" : "Transaction rejected, bank is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "1b4e0d9c-7b21-4928-9133-cc49c0d53f60"
}
HTTP Response - STATUS: E0206
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 300

{
  "requestUuid" : "a2b5dcac-8b38-4af8-a2ab-7f6cf129e5a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0206",
  "message" : "Transaction rejected, to many reject transactions and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "411ef278-ddb8-4fc5-8370-fd0c0a3a56c5"
}
HTTP Response - STATUS: E0207
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 298

{
  "requestUuid" : "315a9822-1353-430c-900a-1091c8a8ef3c",
  "transactionStatus" : "REJECTED",
  "status" : "E0207",
  "message" : "Transaction rejected, to many attempts declined and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "33a24f95-3b59-4786-8c7b-69f24bc73268"
}
HTTP Response - STATUS: E0208
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "17f357e9-a4cc-4b6c-afeb-e6f6e160efee",
  "transactionStatus" : "REJECTED",
  "status" : "E0208",
  "message" : "Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "cf61360c-bb3a-4f6c-b6da-943ef29a3362"
}
HTTP Response - STATUS: E0209
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 292

{
  "requestUuid" : "5e39e53e-06aa-49c0-8a64-5449ebf7813c",
  "transactionStatus" : "REJECTED",
  "status" : "E0209",
  "message" : "Transaction rejected, sender name contains fraudulent phrase.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "1baaa90c-add5-40d0-9f83-a4a3f72dc525"
}
HTTP Response - STATUS: E0210
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 276

{
  "requestUuid" : "166cef5c-96fe-4edd-bf44-e21f81e65acd",
  "transactionStatus" : "REJECTED",
  "status" : "E0210",
  "message" : "Transaction rejected, suspicious sender name.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f51fb707-057b-40fc-8902-81fd461cfd0e"
}
HTTP Response - STATUS: E01596
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "5f23b662-d85e-4725-adca-2a7f3890e60a",
  "transactionStatus" : "REJECTED",
  "status" : "E01596",
  "message" : "Transaction rejected, terminal blocks transactions with card issued in given card country",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "7cecfd5f-f33a-46cd-88bb-63535f9b5815"
}
HTTP Response - STATUS: E01597
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 369

{
  "requestUuid" : "a22a1848-61ce-4cde-a41c-24455894a10d",
  "transactionStatus" : "REJECTED",
  "status" : "E01597",
  "message" : "Transaction rejected, 3DS version of terminal are not compatible with 3DS version defined in request. Please contact the sales department",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "02ba294f-a2ac-449d-84bf-d233eea1279d"
}
HTTP Response - STATUS: E01598
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 298

{
  "requestUuid" : "035c18e9-fe45-43a3-b9d8-39f5ca802180",
  "transactionStatus" : "REJECTED",
  "status" : "E01598",
  "message" : "Transaction rejected, ECI value is not available for card provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "7507fccb-68e0-44ac-86f0-d8a23c070cd5"
}
Table 193. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E0200
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 381

{
  "requestUuid" : "6993a70b-219f-418b-ad80-a0a1c0d172fa",
  "transactionStatus" : "REJECTED",
  "cardBlockadeAdditionalData" : {
    "blockType" : "TEMP",
    "blockedUntil" : "2022-11-01T12:51:32.000"
  },
  "status" : "E0200",
  "message" : "Transaction rejected, card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "48ec0da8-fe3f-457e-adf7-6c484bf86c6f"
}
Table 194. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

cardBlockadeAdditionalData.blockType

String

Block type. Possible values: TEMP - temporary, PERMANENT - permanent.

cardBlockadeAdditionalData.blockedUntil

String

Date until card will be blocked in yyyy-MM-ddThh-mm-ss.SSS format.

HTTP Response - STATUS: E01600
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 326

{
  "requestUuid" : "457711e5-a804-4d41-b3fe-963f4cbc8aff",
  "transactionStatus" : "REJECTED",
  "status" : "E01584",
  "message" : "Transaction rejected, 3DS 2.X flow invoked for other card number than specified in the request",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "78c16e21-248e-465b-9969-34ef0d53dc99"
}
Table 195. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01601
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 286

{
  "requestUuid" : "e432fd44-8e10-4c6e-835e-ece8e667bf38",
  "transactionStatus" : "REJECTED",
  "status" : "E01601",
  "message" : "Transaction rejected, terminal is blocked for provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a098d899-9027-47ef-95eb-79f2c8cee271"
}
Table 196. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E01602
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 308

{
  "requestUuid" : "6294bf94-f98a-43cb-942e-4be4abff97d1",
  "transactionStatus" : "REJECTED",
  "status" : "E01602",
  "message" : "Transaction rejected, geographic scope is not permitted for this transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "448a7d0c-b00b-4dd6-af8e-62022c85bcdb"
}
Table 197. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0142
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 183

{
  "status" : "E0142",
  "message" : "Commission configuration not add for terminal",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "c8adb9ed-f9f9-49e9-aa94-73b143aa8da8"
}
HTTP Response - STATUS: E0153
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 280

{
  "requestUuid" : "f01837dd-a88a-46b8-971f-bbc4412bbd77",
  "transactionStatus" : "PENDING",
  "status" : "E0153",
  "message" : "Transaction declined, problem with MIP connection",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "f5bb3b9c-141e-446c-8b97-b022f98cabd8"
}
HTTP Response - STATUS: E01599
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "7e16352a-186c-46c3-9b56-5859ae9407cd",
  "transactionStatus" : "DECLINED",
  "status" : "E01599",
  "message" : "Transaction declined, processing timeout",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "bc52a59d-17ae-4582-be6d-7b5ae8bb9168"
}
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "957841b6-7388-4638-8dba-62cd6ce17a36"
}
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "df115668-a549-4140-ac4e-1e130aeca740"
}
Table 198. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:07 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "b261ebb0-2825-48aa-9337-9c664feb410f"
}
HTTP Response - STATUS: E9010
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 258

{
  "requestUuid" : "4f01e9aa-92ea-43fd-b7f6-3dacd682e7c6",
  "transactionStatus" : "REJECTED",
  "status" : "E9010",
  "message" : "Error data center connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "5d40138e-c211-412e-9f3c-875b5b9745bf"
}
Table 199. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

6.7.2. CoF Subsequent transaction

POST /client/payments/cof/subsequent Content Type: application/json, Authorization: Basic Auth
The second phase is the subsequent transaction, which requires a successful initial transaction containing the consent to store card data.
Merchant provides the cofInitialUuid parameter received in the initial transaction, which defines the customer's card data saved in the transaction.
Subsequent transactions are intended for multiple execution.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

Request
Simple request
HTTP Request
POST /client/payments/cof/subsequent HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 338
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "8b543950-8a50-4af8-92c4-bbb4f7db47d6",
  "requestUuid" : "b544d3c3-fbe1-4ab4-9cdf-9aaea409a06c",
  "cofInitialUuid" : "fc638998-1945-42ca-b49f-408f5fe0f423",
  "amount" : 1000,
  "currency" : "USD",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900
}
Table 200. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 201. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

cofInitialUuid

String

@Must not be null

CoF initial transaction identifier uuid

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

Request with forced Terminal
HTTP Request
POST /client/payments/cof/subsequent HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 397
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "b8001c58-12cf-4d02-8bea-42085e7162c3",
  "terminalUuid" : "bcb474d9-76f2-4ce5-b71c-7b21b355401a",
  "requestUuid" : "7d8b84de-9aff-4909-8253-21f097e991c5",
  "cofInitialUuid" : "b8001c58-12cf-4d02-8bea-42085e7162c3",
  "amount" : 1000,
  "currency" : "USD",
  "noCurrencyConversion" : false,
  "autoClear" : true,
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900
}
Table 202. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 203. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

cofInitialUuid

String

@Must not be null

CoF initial transaction identifier uuid

amount

Number

@Must be at least 100, @Must not be null

The total transfer amount (in pennies)

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

terminalUuid

String

Terminals’s unique uuid in system

Response
Status Description

200 OK

Returned when transaction was successfully authorized.

400 BAD REQUEST

STATUS: E8000 - Returned when request is incorrect, required fields are missing or the values are not valid.

401 UNAUTHORIZED

STATUS: E8002 - Returned when you are the problem with authorized to your PSP.

403 FORBIDDEN

STATUS: E8001 - Returned when server understood the request but refuses to authorize it.

404 NOT FOUND

STATUS: E0122 - Returned when merchant is not existing.

STATUS: E0132 - Returned when terminal is not existing.

STATUS: E0135 - Returned when terminal for merchant not exist or all of them are inactive.

STATUS: E0137 - Returned when there is not terminal marked as default

422 UNPROCESSABLE ENTITY

STATUS: E0150 - Returned when transaction is rejected.

STATUS: E0151 - Returned when transaction is rejected, because currency is not supported.

STATUS: E0152 - Returned when transaction is rejected, because issuer is not supported.

STATUS: E0159 - Returned when transaction is rejected, because restricted transaction amount has occurred

STATUS: E01590 - Returned when transaction is rejected, because initial CoF card not found in DC.

STATUS: E01591 - Returned when transaction is rejected, because initial CoF transaction not approved.

STATUS: E01601 - Returned when transaction is rejected, because terminal is blocked for provider

STATUS: E01602 - Transaction rejected, geographic scope is not permitted for this transaction

STATUS: E0200 - Returned when transaction is rejected, because card is blocked in Fenige System

STATUS: E0201 - Returned when transaction is rejected, because BIN is blocked in Fenige System

STATUS: E0202 - Returned when transaction is rejected, because Terminal is blocked in Fenige System

STATUS: E0204 - Returned when transaction is rejected, because user’s personal data was found on AML (sanctions) list

STATUS: E0205 - Returned when transaction is rejected, because Bank is blocked in Fenige System

STATUS: E0206 - Returned when transaction is rejected, because to many reject transactions and card is blocked

STATUS: E0207 - Returned when transaction is rejected, bacause to many attempts declined and card is blocked

STATUS: E0208 - Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days

STATUS: E0209 - Returned when sender or receiver name contains fraudulent phrase

STATUS: E0210 - Returned when sender has suspicious name

500 INTERNAL SERVER ERROR

STATUS: E0142 - Returned when commission configuration is not added for terminal.

STATUS: E0153 - Returned when transaction is declined, by problem with MIP connection.

STATUS: E01599 - Transaction declined, processing timeout.

STATUS: E0190 - Returned when currency rate is invalid.

STATUS: E9000 - Returned when reason is unknown.

STATUS: E9008 - Returned when mpi received 3ds subsequentize failed.

503 SERVICE UNAVAILABLE

STATUS: E9001 - Returned when is error acquirer connection.

STATUS: E9002 - Returned when is error mpi connection.

STATUS: E9010 - Returned when is error data center connection.

200 OK
HTTP Response - transaction
{
  "requestUuid" : "45fa659d-9cad-4189-ba58-056c1e581676",
  "cofInitialUuid" : "500a1bfe-b1ca-4e70-8029-871e3575633a",
  "transactionStatus" : "APPROVED",
  "responseCode" : "CODE_00",
  "status" : "S0002",
  "message" : "Success transaction",
  "httpStatus" : "OK"
}
Table 204. Response fields
Path Type Description

requestUuid

String

Request unique uuid in system

cofInitialUuid

String

CoF transaction unique uuid in system

transactionStatus

String

Transaction status

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

responseCode

String

Response code

400 BAD REQUEST
HTTP Response - STATUS: E8000
HTTP/1.1 400 Bad Request
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:27:42 GMT
Connection: close
Content-Length: 345

{
  "errors" : {
    "amount" : [ "must not be null" ],
    "merchantUuid" : [ "must not be null" ],
    "requestUuid" : [ "must not be null" ],
    "currency" : [ "must not be null" ],
    "cofInitialUuid" : [ "must not be null" ]
  },
  "status" : "E8000",
  "httpStatus" : "BAD_REQUEST",
  "traceId" : "24b50490-e4a8-4b8c-829d-9c1c3a8a5245"
}
Table 205. Response fields
Path Type Description

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

401 UNAUTHORIZED
HTTP Response - STATUS: E8002
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Basic realm="Realm"
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:42 GMT
Content-Length: 141

{
  "status" : "E8002",
  "message" : "Unauthorized",
  "httpStatus" : "UNAUTHORIZED",
  "traceId" : "97abfeb1-6fca-457a-90ed-e7c0de64bab4"
}
Table 206. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

403 FORBIDDEN
HTTP Response - STATUS: E8001
HTTP/1.1 403 Forbidden
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 29 Nov 2022 12:27:42 GMT
Content-Length: 135

{
  "status" : "E8001",
  "message" : "Forbidden",
  "httpStatus" : "FORBIDDEN",
  "traceId" : "95fa44c3-77a2-4374-9628-4286910a985f"
}
Table 207. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

404 NOT FOUND
HTTP Response - STATUS: E0122
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0122",
  "message" : "Merchant not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "4b944edf-bd06-4ee4-8377-3008acdc52c1"
}
HTTP Response - STATUS: E0132
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 146

{
  "status" : "E0132",
  "message" : "Terminal not exists.",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "ffe69321-8a16-4a1d-a710-793b67e116b3"
}
HTTP Response - STATUS: E0135
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 163

{
  "status" : "E0137",
  "message" : "Default terminal not exist",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "b1928477-1f4e-4d51-8bfc-358380403d10"
}
HTTP Response - STATUS: E0137
HTTP/1.1 404 Not Found
Content-Type: application/json
Content-Length: 159

{
  "status" : "E0135",
  "message" : "Terminals for merchant not exists",
  "httpStatus" : "NOT_FOUND",
  "traceId" : "eadb8c77-8ab8-45f5-bc60-cde6adddb183"
}
Table 208. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

422 UNPROCESSABLE ENTITY
HTTP Response - STATUS: E0150
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 251

{
  "requestUuid" : "6f271fba-4a47-4a87-819e-3ad26ad07cec",
  "transactionStatus" : "REJECTED",
  "status" : "E0150",
  "message" : "Transaction rejected",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "c68dee07-b93e-47d8-981b-760c413f5ca4"
}
HTTP Response - STATUS: E0151
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 275

{
  "requestUuid" : "2d5d3e97-5a51-419f-a638-7bd31893638b",
  "transactionStatus" : "REJECTED",
  "status" : "E0151",
  "message" : "Transaction rejected, currency not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "fd6d26fa-0cad-42be-ab84-42e6ac305876"
}
HTTP Response - STATUS: E0152
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "fcea830b-306c-47d1-a1cb-54befe6fa63d",
  "transactionStatus" : "REJECTED",
  "status" : "E0152",
  "message" : "Transaction rejected, issuer card not supported",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "e4cb9dda-6e23-4672-8df0-ea498047c6df"
}
HTTP Response - STATUS: E0159
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 295

{
  "requestUuid" : "9b7dd401-83f0-446f-b4d3-c95897fbb45f",
  "transactionStatus" : "REJECTED",
  "status" : "E0159",
  "message" : "Transaction rejected, restricted transaction amount has occurred",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "b490e7a0-88d8-47c0-95b6-853a8f24c667"
}
HTTP Response - STATUS: E01590
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "30060b4e-071d-4b8a-8df0-cd1165d2604c",
  "transactionStatus" : "REJECTED",
  "status" : "E01590",
  "message" : "Transaction rejected, cof card not found in db",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "ccf7d6ce-a63a-44f3-9b7b-47990e8e2fab"
}
HTTP Response - STATUS: E01591
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 278

{
  "requestUuid" : "566c70c9-e280-4e19-bf0f-bd64d8eeceed",
  "transactionStatus" : "REJECTED",
  "status" : "E01590",
  "message" : "Transaction rejected, cof card not found in db",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "c765d68d-d442-43b7-bb4f-93833a13b8e2"
}
HTTP Response - STATUS: E0200
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 381

{
  "requestUuid" : "24b99b67-f39f-46d6-a8df-d3d567052141",
  "transactionStatus" : "REJECTED",
  "cardBlockadeAdditionalData" : {
    "blockType" : "TEMP",
    "blockedUntil" : "2022-11-01T12:51:32.000"
  },
  "status" : "E0200",
  "message" : "Transaction rejected, card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "44579760-c4c6-4d99-a2ba-c242bca16310"
}
HTTP Response - STATUS: E0201
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 267

{
  "requestUuid" : "1e990275-0e49-4922-a333-8dd2d6d76a2f",
  "transactionStatus" : "REJECTED",
  "status" : "E0201",
  "message" : "Transaction rejected, bin is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "2273219d-083e-453d-b366-e72262b8ef50"
}
HTTP Response - STATUS: E0202
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "0d71ceb4-579d-4b46-b3d3-4bc2f573986d",
  "transactionStatus" : "REJECTED",
  "status" : "E0202",
  "message" : "Transaction rejected, terminal is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "db666b7a-e9c5-44a8-955c-41a4361c115c"
}
HTTP Response - STATUS: E0204
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 272

{
  "requestUuid" : "f28eaf1b-e613-4777-b3a2-1516897cadfd",
  "transactionStatus" : "REJECTED",
  "status" : "E0204",
  "message" : "Transaction rejected, user is on aml list",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "924fbc61-4d8c-41d4-b4ba-879f331bbfb6"
}
HTTP Response - STATUS: E0205
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 268

{
  "requestUuid" : "a94e9670-058f-48dd-b0ca-56c84cb62b6c",
  "transactionStatus" : "REJECTED",
  "status" : "E0205",
  "message" : "Transaction rejected, bank is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "3e34d9d7-8eac-4f0a-a7a8-c2e323413ef3"
}
Table 209. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

requestUuid

String

Request unique uuid in system

transactionStatus

String

Transaction status

HTTP Response - STATUS: E0206
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 300

{
  "requestUuid" : "a2b5dcac-8b38-4af8-a2ab-7f6cf129e5a7",
  "transactionStatus" : "REJECTED",
  "status" : "E0206",
  "message" : "Transaction rejected, to many reject transactions and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "411ef278-ddb8-4fc5-8370-fd0c0a3a56c5"
}
HTTP Response - STATUS: E0207
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 298

{
  "requestUuid" : "315a9822-1353-430c-900a-1091c8a8ef3c",
  "transactionStatus" : "REJECTED",
  "status" : "E0207",
  "message" : "Transaction rejected, to many attempts declined and card is blocked",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "33a24f95-3b59-4786-8c7b-69f24bc73268"
}
HTTP Response - STATUS: E0208
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 321

{
  "requestUuid" : "17f357e9-a4cc-4b6c-afeb-e6f6e160efee",
  "transactionStatus" : "REJECTED",
  "status" : "E0208",
  "message" : "Transaction rejected, second transaction with merchant advice code 03 or 21 within 30 days",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "cf61360c-bb3a-4f6c-b6da-943ef29a3362"
}
HTTP Response - STATUS: E0209
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 292

{
  "requestUuid" : "5e39e53e-06aa-49c0-8a64-5449ebf7813c",
  "transactionStatus" : "REJECTED",
  "status" : "E0209",
  "message" : "Transaction rejected, sender name contains fraudulent phrase.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "1baaa90c-add5-40d0-9f83-a4a3f72dc525"
}
HTTP Response - STATUS: E0210
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 276

{
  "requestUuid" : "166cef5c-96fe-4edd-bf44-e21f81e65acd",
  "transactionStatus" : "REJECTED",
  "status" : "E0210",
  "message" : "Transaction rejected, suspicious sender name.",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "f51fb707-057b-40fc-8902-81fd461cfd0e"
}
HTTP Response - STATUS: E01601
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 286

{
  "requestUuid" : "e432fd44-8e10-4c6e-835e-ece8e667bf38",
  "transactionStatus" : "REJECTED",
  "status" : "E01601",
  "message" : "Transaction rejected, terminal is blocked for provider",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "a098d899-9027-47ef-95eb-79f2c8cee271"
}
HTTP Response - STATUS: E01602
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json
Content-Length: 308

{
  "requestUuid" : "6294bf94-f98a-43cb-942e-4be4abff97d1",
  "transactionStatus" : "REJECTED",
  "status" : "E01602",
  "message" : "Transaction rejected, geographic scope is not permitted for this transaction",
  "httpStatus" : "UNPROCESSABLE_ENTITY",
  "traceId" : "448a7d0c-b00b-4dd6-af8e-62022c85bcdb"
}
500 INTERNAL SERVER ERROR
HTTP Response - STATUS: E0142
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 183

{
  "status" : "E0142",
  "message" : "Commission configuration not add for terminal",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "741f2330-1daf-49ab-9072-aecd99a0fbf4"
}
HTTP Response - STATUS: E0153
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 280

{
  "requestUuid" : "4c6d38a0-a8c8-494b-a7c7-a28a9f6e9725",
  "transactionStatus" : "PENDING",
  "status" : "E0153",
  "message" : "Transaction declined, problem with MIP connection",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "48b6ff0d-2b9f-4747-ae99-39ba2a2016f9"
}
HTTP Response - STATUS: E01599
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 273

{
  "requestUuid" : "fbef02e9-9f82-4d81-a34b-3aa47638d447",
  "transactionStatus" : "DECLINED",
  "status" : "E01599",
  "message" : "Transaction declined, processing timeout",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "e84f373b-a84b-4a5b-b972-6dca5e47aeb4"
}
HTTP Response - STATUS: E0190
HTTP/1.1 500 Internal Server Error
Content-Type: application/json
Content-Length: 166

{
  "status" : "E0190",
  "message" : "Failed to get currency rates",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "2a226a27-3870-43f1-8295-23f9552e9db4"
}
HTTP Response - STATUS: E9000
HTTP/1.1 500 Internal Server Error
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:15 GMT
Connection: close
Content-Length: 150

{
  "status" : "E9000",
  "message" : "Domain error",
  "httpStatus" : "INTERNAL_SERVER_ERROR",
  "traceId" : "df115668-a549-4140-ac4e-1e130aeca740"
}
Table 210. Response fields
Path Type Description

message

String

Message for response code from Fenige system

status

String

Response code from Fenige system

httpStatus

String

Response http status

traceId

String

UUID that helps to identify request in system

503 SERVICE UNAVAILABLE
HTTP Response - STATUS: E9001
HTTP/1.1 503 Service Unavailable
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Type: application/json
Transfer-Encoding: chunked
Date: Tue, 29 Nov 2022 12:28:07 GMT
Connection: close
Content-Length: 161

{
  "status" : "E9001",
  "message" : "Error acquirer connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "b261ebb0-2825-48aa-9337-9c664feb410f"
}
HTTP Response - STATUS: E9010
HTTP/1.1 503 Service Unavailable
Content-Type: application/json
Content-Length: 164

{
  "status" : "E9010",
  "message" : "Error data center connection",
  "httpStatus" : "SERVICE_UNAVAILABLE",
  "traceId" : "cafc060b-765e-4a86-9a4e-81b89a46077f"
}
Table 211. Response fields
Path Type Description

status

String

Response code from Fenige system

message

String

Message for response code from Fenige system

httpStatus

String

Response http status

traceId

String

Unique id for this http request register in system

6.8. Recurring payment

    A Recurring Payment is a type of the transaction performed as a result of an agreement between a cardholder and a merchant in which the cardholder authorizes
the merchant to bill the cardholder’s Mastercard account, with no specified end date. Billing may occur periodically, such as monthly, quarterly or annually.
Each payment may be for a variable or a fixed amount.
    The method is used to charge the cardholder with no need to collect account data (PAN, exp date) from merchant at every transaction. Only initial transaction requires providing
card information which are saved in secure Fenige environment according to PCI-DSS Compliance.
    This endpoint is idempotent so if you execute more than one requests with the same data even at the same time, only first registered transaction will be processed further. In
response, we receive transaction status.
The Recurring Payment consists of two parts: initial and subsequent, which are discussed in detail below.
Please see detailed Recurring Payment with 3-DS flow described on below listing.
Merchant has the ability to make a payment for goods which causes the cardholder to be debited in the currency of purchase, terminal or card currency based on the parameters provided: currency of transaction, different currency terminals held and currencies supported by the card.
The optional terminalUuid field provided during any of the authorisation methods forces the card to be debited in the currency of the terminal specified if the purchase currency is different from the terminal currency a currency conversion will take place.
If the merchant decides the card to be allways charged in the currency of the transaction without any currency conversion, this should be specified using the noCurrencyConversion
flag in the authorisation.
The Fenige Payment API methods optionally allows merchants to store card data and sensitive personal data in order to allow performing subsequent transactions.
If merchant decides to use DataCenter transaction flow then is required to provide the card id of the card previously stored in the Fenige DataCenter, from which card the
relevant required parameters will be downloaded and used for authorization.
Card data and sensitive personal data according to the Fenige API specification are: cardNumber, expiryDate, firstName, lastName and email.
All card data are stored securely on Fenige DataCenter servers in accordance with applicable security requirements.
Recurring payment with outside 3DS flow
recurring trx outside3ds flow
Recurring payment with DataCenter outside 3DS flow
recurring trx datacenter outside3ds flow

6.8.1. Recurring Initial transaction

POST /client/payments/recurring/initial Content Type: application/json, Authorization: Basic Auth
    The start phase is a one-time initial transaction, which is a simple e-commerce payment with forced 3-DS authentication, but contains the customer's consent to store card data
for recurring subsequent purchases. Card data are stored in a secure FENIGE environment.
    After completing the recurring initial merchant receives the unique recurringInitialUuid identifier needed to perform subsequent Recurring Payments transactions without
    having to enter card data in the future.

From January 2021, there is an internal functionality to restrict access for the PSP to specific method. The Fenige employee can disable access to a given endpoint, then the HTTP status 403 FORBIDDEN will be returned. The PSP will be informed about each access restriction action.

Request
Simple request
HTTP Request
POST /client/payments/recurring/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 868
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "8b543950-8a50-4af8-92c4-bbb4f7db47d6",
  "terminalUuid" : null,
  "requestUuid" : "b248787a-a9b0-4f3b-97c1-e37c1908f320",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "noCurrencyConversion" : false,
  "cardNumber" : "5453131785534417",
  "cardId" : null,
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null,
  "countryOfResidence" : "US"
}
Table 212. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 213. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

@Size must be between 0 and 28 inclusive

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

Cardholder Authentication Verification Value. The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

@Length must be between 1 and 2 inclusive, @Must match the regular expression ^\d+$

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. Chargeback protection applies.

outside3ds.authenticationStatus

String

@Must match Y or A, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt.

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

Request with forced Terminal
HTTP Request
POST /client/payments/recurring/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 902
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "4ae19564-9c32-4ba6-a36e-17dfefa66e6e",
  "terminalUuid" : "791513ed-18bd-42b9-a0b5-cfd463f18387",
  "requestUuid" : "35afa446-5f0f-476c-b1cb-ffab451295b3",
  "firstName" : "user",
  "lastName" : "testUser",
  "amount" : 1000,
  "currency" : "USD",
  "noCurrencyConversion" : false,
  "cardNumber" : "5453131785534417",
  "cardId" : null,
  "expiryDate" : "11/22",
  "cvc2" : "123",
  "email" : "test@fenige.pl",
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null,
  "countryOfResidence" : "US"
}
Table 214. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 215. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

firstName

String

First name of cardholder

lastName

String

Last name of cardholder

cardNumber

String

Full cardholder’s card number must be between 12-digits and 19-digits

expiryDate

String

Expiration date of card mm/yy

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

email

String

Optional field, @Length(min = 1, max = 128)

Cardholder’s email

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03

transactionRef

String

@Optional, @Length must be between 1 and 10, @Must not be blank, @Must match the regular expression ^[a-zA-Z0-9]*$

An additional transaction identifier defined by the merchant. This can be, for example, the document number of a sales receipt or the number of an offer or product

outside3ds

Object

There are outside 3ds data authorization that have been send to our API

outside3ds.cavv

String

@Size must be between 0 and 28 inclusive

Cardholder Authentication Verification Value

outside3ds.transactionXId

String

Cardholder Authentication Verification Value. The transactionXId is the field that defines the 3DS version.The presence of this field in the HTTP request specifies that the transaction will be processed with 3DS 2.x.TransactionXId can be obtained by executing the /authentication method.

outside3ds.cavvAlgorithm

String

@Length must be between 1 and 2 inclusive, @Must match the regular expression ^\d+$

Indicates the algorithm used to generate the AuthenticationCAVV value

0 - HMAC

1 - CVV

2 - CVV with ATN

3 - MasterCard SPA algorithm

outside3ds.eci

String

@Length must be between 1 and 2 inclusive, @Must match 01 or 02 or 05 or 06, @Must not be null

Electronic Commerce Indicator: 5 (Visa) or 2 (SecureCode) - The cardholder was successfully authenticated. 6 (Visa) or 1 (SecureCode) - Authentication was attempted, but the cardholder was not enrolled. Chargeback protection applies.

outside3ds.authenticationStatus

String

@Must match Y or A, @Must not be null

Authentication status:

Y - (Full Authentication) - The customer was successfully authenticated.

A - (Successful Attempted Authentication) - Authentication was not available, but functionality was available to generate a proof of authentication attempt.

cipherCardNumber

String

@Optional

Cipher card number. More in Payment API - JWE chapter

keysVersion

Number

@Optional

Field informs about keys version that was used to encrypt card number in cipherCardNumber field. More in Payment API - JWE chapter

countryOfResidence

String

Country of residence is only required for merchants crypto

terminalUuid

String

Terminals’s unique uuid in system

Request with DataCenter card
HTTP Request
POST /client/payments/recurring/initial HTTP/1.1
Authorization: Basic dXNlcjpwYXNzd29yZA==
Content-Type: application/json
Content-Length: 671
Host: ecom-staging.fenige.pl

{
  "merchantUuid" : "8b543950-8a50-4af8-92c4-bbb4f7db47d6",
  "requestUuid" : "cbdf0100-9d1b-44b0-99b6-5f9d5a634412",
  "cvc2" : "123",
  "cardId" : 1906455,
  "amount" : 1000,
  "currency" : "USD",
  "outside3ds" : {
    "cavv" : "jEu04WZns7pbARAApU4qgNdJTag=",
    "cavvAlgorithm" : "01",
    "eci" : "02",
    "authenticationStatus" : "Y",
    "transactionXId" : "d543820d-683e-4589-86d9-6c9e40db4b53"
  },
  "addressIp" : "192.0.0.1",
  "autoClear" : true,
  "noCurrencyConversion" : false,
  "terminalUrl" : "https://ecom-staging.fenige.pl/payments",
  "transactionRef" : "27F3250GU3",
  "receiverAmount" : 900,
  "cipherCardNumber" : null,
  "keysVersion" : null
}
Table 216. Request headers
Name Description

Authorization

Basic auth credentials for PSP

Table 217. Authorize request fields
Path Type Constraints Description

merchantUuid

String

@Must not be null

Merchant’s unique uuid in system

requestUuid

String

@Must not be null

Request’s unique uuid in system

cardId

Number

@Must not be null, @Numeric

DataCenter card id. Required to obtain card information data from DataCenter such as (cardNumber, expiryDate, firstName, lastName, email)

cvc2

String

@Optional only for Google pay, @Length must be 3 characters

Cardholder’s card cvc2

amount

Number

@Must not be null

The total transfer amount (in pennies). If the amount is equal to zero there is sent account status inquiry to validate aspects of a cardholder account.

receiverAmount

Number

@Optional field, @Must be greater or equals 0 if exists

Declared amount. Fenige Information field (in pennies)

currency

String

@Must not be null

Currency for transaction (in accordance with ISO-4217), example: USD

addressIp

String

Optional field, @Must match the regular expression ^([0-9]{1,3}.){3}[0-9]{1,3}$

The IP address of the order of transaction. Optional field, mandatory from 2021-05-03

autoClear

Boolean

Is auto clear enabled. Enabled if true, is not enabled if false. There is 7 days for execute clearing process if autoClear = false

noCurrencyConversion

Boolean

The flag allows to force that the cardholder to be charged in the currency of the transaction (purchase), without performing any currency conversion of the purchase amount to the card currency.

terminalUrl

String

@Optional

Terminal identifier such as the business website URL or reverse domain name as presented to the consumer during checkout. Optional field, mandatory from 2021-05-03