# Click to Pay source: https://developer.mastercard.com/mastercard-gateway/documentation/gateway-features/click-to-pay/index.md Click to Pay is an intelligent, password-free online checkout option that provides a quick and easy checkout experience designed to make checkout faster and easier across all devices. Click to Pay provides a single checkout button and a standardized checkout flow for all participating card schemes, including Mastercard, Visa, American Express, and Discover. Click to Pay uses EMVCo's Secure Remote Commerce (SRC) specification and replaces Masterpass, Visa Checkout, and Amex Express Checkout. The gateway supports the following integration methods: | Integration methods | Transactions | |------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--------------| | [Hosted Checkout](https://developer.mastercard.com/mastercard-gateway/documentation/integrations-types/hosted-checkout/integrate-hosted-checkout/index.md) [Hosted Session](https://developer.mastercard.com/mastercard-gateway/documentation/gateway-features/click-to-pay/c2p-flows-for-hsi/index.md) [Direct Payment](https://developer.mastercard.com/mastercard-gateway/documentation/gateway-features/click-to-pay/c-t-p-direct-api-token-pass/index.md) \*For instructions on adding Click to Pay to the Direct Payment integration, contact your payment service provider. | All | ## About the method {#about-the-method} When a payer signs up for Click to Pay, they use their email address and add their payment cards to their Click to Pay profile. During checkout on your web site: 1. The payer provides their email address. 2. The payer performs an additional verification step with a one-time passcode (OTP). 3. The system retrieves the payer's card details from their Click to Pay profile and displays them. 4. The payer can select which card to use for the payment. 5. Click to Pay displays a Digital Card Facilitator user interface (DCF) component with the payment details. The payer accepts the details and confirms the payment. To avoid the OTP verification step in the future, the payer can choose the Remember me option. This allows them to skip verification when using the same browser in a subsequent checkout. The payer can store multiple credit, debit, or prepaid cards, along with the associated billing addresses, and multiple shipping addresses in their Click to Pay profile. The gateway stores card details securely and provides additional security through network tokenization, when enabled in the payer's market. The payer selects the payment details through Click to Pay, and the Mastercard Gateway processes the payment using the acquirer configured for your merchant profile. If the payer does not have an existing Click to Pay profile, they can create one during checkout by providing their email address and card details, and selecting to proceed with Click to Pay. Click to Pay displays the DCF component, where the payer can add their contact details and create their Click to Pay profile before confirming the payment. If the payer does not want to use Click to Pay, they can enter their card details for a standard credit or debit card payment and proceed with guest checkout. Click to Pay offers the following benefits: * Intelligent payer recognition, 'embedded' into the checkout flow, to initiate faster guest checkout across all devices with no passwords to remember. * Reduction in clicks and manual card entries to increase conversion and create frictionless experiences. * Potential for higher authorization approval rates through network tokenization, assisting in the reduction of preventable declines. * Built on EMVCo SRC standards to create a consistent user experience and lower fraud rates in e-commerce guest checkout payment moments. * Secure exchange of payment data including card details, billing, and shipping address details. Warning: Click to Pay is currently only available in some countries. Check with your payment service provider for availability in your country. ## Main supported features {#main-supported-features} When using Click to Pay as a payment method, you can: * Perform payments using a single-action pay or the two-step authorization and capture transactions. * Make refunds, voids, and disbursements. * Add [supplementary data](https://developer.mastercard.com/mastercard-gateway/documentation/gateway-features/data-and-reporting/supp-data/index.md) to your requests to make the payment more user-friendly for the payer or ease its processing in the payment system. Warning: Click to Pay does not currently support [Merchant-initiated Transactions (MIT)](https://developer.mastercard.com/mastercard-gateway/documentation/gateway-features/cred-file-transc/index.md). If you want to use the same payment details after the first cardholder-initiated transaction (CIT) to handle a series of recurring or installment payments, do not offer Click to Pay as a payment method option. To provide you with flexibility and control over the Click to Pay experience, the Mastercard Gateway provides the implementation option of [Embedded flow](https://developer.mastercard.com/mastercard-gateway/documentation/gateway-features/click-to-pay/c2p-flows-for-hco/index.md) within the Hosted Checkout. ## Returned payment details {#returned-payment-details} Click to Pay returns different types of payment details based on the gateway request, your Click to Pay configuration, and the card network like Visa or Mastercard. Typically, the Click to Pay response can include: * Network token * Token expiry * Full cryptogram supported by the card scheme * Masked card details If the used card does not support network tokenization, for example, the issuer is not participating, Click to Pay returns the card details, such as card number and card expiry, instead of the network token details. Warning: If you are in the US and have indicated that you want to use your rights under the Durbin amendment, C2P provides the card details such as card number and card expiry for debit cards. The system stores the payment details provided by the payer during the Click to Pay interaction in the session and returns them in the transaction response for all API requests performed using that session: ### Network token details {#network-token-details} If the response contains network token details, the system sets the `sourceOfFunds.type` field to SCHEME_TOKEN. In addition: * The system returns the masked card details in the following fields: * `sourceOfFunds.provided.card.number` * `sourceOfFunds.provided.card.expiry.year` * `sourceOfFunds.provided.card.expiry.month` * The system returns the network token details in the following fields: * `sourceOfFunds.provided.card.deviceSpecificNumber` * `sourceOfFunds.provided.card.deviceSpecificExpiry.month` * `sourceOfFunds.provided.card.deviceSpecificExpiry.year` Warning: * American Express does not support this type of network token. * The system returns the full network token cryptogram in the UPDATE SESSION FROM WALLET response, not in any of the payment transaction responses. ### Card details {#card-details} If the system does not support network tokenization and instead returns card details, it sets the `sourceOfFunds.type` field to `CARD`. In addition, the system returns the following masked card details: * `sourceOfFunds.provided.card.number` * `sourceOfFunds.provided.card.expiry.year` * `sourceOfFunds.provided.card.expiry.month` ### Payer details {#payer-details} The customer object provides the payer's name and phone number. If you set `consumerEmailAddressRequested` to `true` in your request, the system provides the payer's email address in the `customer.email` field. ### Billing address {#billing-address} Click to Pay provides the card's billing address in the `billing.address` object fields. ### Shipping address {#shipping-address} If you set `collectShippingAddress` to true in your request, Click to Pay includes the shipping address in the `shipping.address` object fields. ## Prerequisites {#prerequisites} To use Click to Pay as a payment method: * Contact your payment service provider to ensure that Click to Pay is available to you and to enable the required privilege to use it. * Onboard to SRC and activate SRC for your merchant account in the Merchant Administration (MA). Go to Admin \> SRC Configuration and follow the instructions. ## Adding the method to your integration {#adding-the-method-to-your-integration} Follow the instructions for the integration methods that you want to use. For examples of Click to Pay \[transaction\] requests, download the [Postman collection](https://www.postman.com/mastercard/mastercard-developers/collection/4fakvrd/mastercard-gateway-api). ## Hosted Checkout {#hosted-checkout} Warning: If you are using the Hosted Checkout implementation method, The gateway supports Click to Pay for Mastercard, Visa, and American Express cards starting from API v63 and later. If your merchant profile is enabled for Click to Pay, the hosted payment page automatically displays Click to Pay as an option within the credit and debit card payment methods: * If the payer has an existing Click to Pay profile and enters their email address or you provide it in the [Initiate Checkout](https://developer.mastercard.com/mastercard-gateway/documentation/api-reference/v100/rest/api-ops/index.md#hosted-checkout) request, the payer enters an OTP, and Click to Pay then displays the cards stored in their profile for selection. * If Click to Pay recognizes the payer through cookies, it displays the cards stored in the payer's Click to Pay profile for selection. * If the payer does not have an existing Click to Pay profile, the hosted payment page allows them to create one and store card details for it. To allow the payer to use Click to Pay in your Hosted Checkout integration, implement your generic [Hosted Checkout integration](https://developer.mastercard.com/mastercard-gateway/documentation/integrations-types/hosted-checkout/integrate-hosted-checkout/index.md) with the following considerations: * Shipping address: Payers cannot select a shipping address during the Click to Pay interaction. If you need a shipping address for the order, gather those details before sending the [Initiate Checkout](https://developer.mastercard.com/mastercard-gateway/documentation/api-reference/v100/rest/api-ops/index.md#hosted-checkout) request. * Billing address: The payer always provides their billing address during the Click to Pay interaction. * EMV 3-D Secure (EMV 3-D Secure) authentication: If your setup includes EMV 3‑D Secure, the Hosted Checkout automatically performs EMV 3‑D Secure authentication after the Click to Pay interaction. * Important fields in the [Initiate Checkout](https://developer.mastercard.com/mastercard-gateway/documentation/api-reference/v100/rest/api-ops/index.md#hosted-checkout) request: Add the fields in the following table to your request, if possible. Table: Important Click to Pay fields in the [Initiate Checkout](https://developer.mastercard.com/mastercard-gateway/documentation/api-reference/v100/rest/api-ops/index.md#hosted-checkout) request | Field | Description | Required | |-----------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------| | `interaction.country` | For the DCF component, the interaction country determines country-specific content presented to the payer during the Click to Pay interaction, such as Terms and Conditions. The value you have configured against your merchant profile in the gateway is used by default. Add this field to your request to override the default value. | Optional | | `interaction.locale` | For the DCF component, the interaction locale determines the display language. By default, the payer's browser uses its configured language. If the system cannot identify or support the payer's language, it defaults to en_US. Supported languages: en_UK, es_ES, fr_CA, pt_BR, zh_HK. Add this field to override the default value. | Optional | | `merchant.url` | Provide the URL of your web site that the payer is using. The system may display the URL during the Click to Pay interaction. | Optional | | `merchant.name` | Provide your trading name, such as the name known to your payer. The system may display name during the Click to Pay interaction. | Required | | `customer.email` | The payer always provides their email address during the Click to Pay interaction. If you already know the payer's email address, add the customer.email field to your request to allow the payer to bypass entering their email address during the Click to Pay interaction. | Required | To allow the payer to use the Token Authentication Service (TAS) with Click to Pay, implement the Hosted Checkout integration with the following considerations: * Contact your service provider to enable the TAS privilege required for your merchant facility. * You can test TAS functionality in Hosted Checkout using a LIVE merchant in the MTF environment with Sandbox test cards. Alternatively, you can use TEST mode in production. * Payer browser must allow pop-ups. ## Hosted Session {#hosted-session} Warning: When you use the Hosted Session implementation method with your own payment page, the Click to Pay "Embedded Experience" works through a Click to Pay SDK and JavaScript (JS) API. The gateway supports the embedded experience from API v62 and later for Mastercard, Visa, and American Express cards. If you allow the payer to use Click to Pay in your Hosted Session integration, you must support three different payer scenarios for submitting a payment:
* New user: when a payer is using Click to Pay for the first time or wants to provide a new card. * Returning user: when the system recognizes a returning payer through a cookie. * Returning user: with email when a returning payer is recognized from their email address. The following figures illustrate the flows related to the three scenarios. For more information on how to implement them, see [Click to Pay Hosted Session Integration](https://developer.mastercard.com/mastercard-gateway/documentation/gateway-features/click-to-pay/c2p-flows-for-hsi/index.md). **Figure: New user flow** ![](https://static.developer.mastercard.com/content/mastercard-gateway/uploads/NewUser.png) **Figure: Returning user with cookie flow** ![](https://static.developer.mastercard.com/content/mastercard-gateway/uploads/Cookie.png) **Figure: Returning user with email flow** ![](https://static.developer.mastercard.com/content/mastercard-gateway/uploads/Email.png) ### Testing the method {#testing-the-method} The following tables describe the supported test setups. **Table: Supported test setups** | Environment | Merchant Profile | Card Type Used | Purpose | |-------------|------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------| | Test (MTF) | Live | [Sandbox test card from Click to Pay](https://developer.mastercard.com/unified-checkout-solutions/documentation/testing/test_cases/click_to_pay_case/) | Testing through the Click to Pay Sandbox portion of the payment flow only. | | Test (MTF) | Test | [your payment service provider provided test card](https://developer.mastercard.com/mastercard-gateway/documentation/test-cards/index.md) | Testing the merchant's integration with the gateway only, the Click to Pay part of the flow is simulated | | Production | Live | Live Cards owned by the merchant | Full end to end testing with the gateway and Click to Pay | | Production | Test | [Test cards from the gateway](https://developer.mastercard.com/mastercard-gateway/documentation/test-cards/index.md) | Testing the merchant's integration with the gateway only, the Click to Pay part of the flow is simulated | Warning: The test cards from supported test setups table do not work with [EMV 3-D Secure](https://developer.mastercard.com/mastercard-gateway/documentation/security-and-fraud/authentication/3d-secure-auth/test-3ds-int/index.md) or test the final payment processing step of the payment flow. In that case, test those features separately using the standard test instructions provided for EMV 3-D Secure or the applicable integration method. ### Static testing {#static-testing} When you have completed your integration with the gateway for Click to Pay, you can test it by using your test merchant profile, that is, your merchant ID prefixed with TEST. When using the test merchant profile, the gateway provides a simulator for the Click to Pay interaction. The Click to Pay simulator uses predefined payment details and does not allow you to modify them. Based on the predefined payment details, you can trigger and test different scenarios, as described. The second columns in the following tables indicate the last four digits of FPAN selected by the payer during the Click to Pay interaction. To trigger a scenario, select the corresponding FPAN on the simulator during the payer's Click to Pay interaction. #### Scenario 1: Click to Pay returns a network token and a full cryptogram {#scenario-1-click-to-pay-returns-a-network-token-and-a-full-cryptogram} | Scheme | Last 4 digits of FPAN | SRC Correlation ID | Response from UPDATE SESSION FROM WALLET Operation | Response from AUTHORIZE or PAY Operation | |------------|-----------------------|------------------------------------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| | Mastercard | xxx0007 | 783a935d-c6a9-4289-b19d-c3336f998b57 | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=MASTERCARD * sourceOfFunds.provided.card.brand=MASTERCARD * sourceOfFunds.provided.card.fundingMethod=DEBIT * sourceOfFunds.provided.card.number=511111xxxxxx1118-Token * sourceOfFunds.provided.card.expiry.month=10-Token Expiry * sourceOfFunds.provided.card.expiry.year=25-Token Expiry * sourceOfFunds.provided.card.devicePayment.3DSecure. onlinePaymentCryptogram=1234-Cryptogram * sourceOfFunds.provided.card.maskedFpan=222300xxxxxx0007-FPAN * sourceOfFunds.provided.card.maskedFpanExpiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.maskedFpanExpiry.year=39-FPAN Expiry **Shipping Address** * shipping.address.contact.firstName=Iggy * shipping.address.contact.lastName=Peck * shipping.address.street=2200 Mastercard Blvd * shipping.address.street2=O'Fallon, extended address * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=63368-7263 * shipping.address.country=USA **Customer Details** * customer.email=john.smith@example.com * customer.firstName=John * customer.lastName=Smith * customer.mobilePhone=+1 2128881234 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street * billing.address.street2 = Floor 14, CBD | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=MASTERCARD * sourceOfFunds.provided.card.brand=MASTERCARD * sourceOfFunds.provided.card.fundingMethod=DEBIT * sourceOfFunds.provided.card.number=222300xxxxxx0007-FPAN * sourceOfFunds.provided.card.expiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.expiry.year=39-FPAN Expiry * sourceOfFunds.provided.card.deviceSpecificNumber=511111xxxxxx1118-Token * sourceOfFunds.provided.card.deviceSpecificExpiry.month=10-Token Expiry * sourceOfFunds.provided.card.deviceSpecificExpiry.year=25-Token Expiry **Shipping Address** * shipping.address.contact.firstName=Iggy * shipping.address.contact.lastName=Peck * shipping.address.street=2200 Mastercard Blvd, O'Fallon, extended address * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=63368-7263 * shipping.address.country=USA **Customer Details** * customer.email=john.smith@example.com * customer.firstName=John * customer.lastName=Smith * customer.mobilePhone=+1 2128881234 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 300 Adelaide Street, Floor 21 | | Visa | xxx4198 | 12345671-visaTAVV-expiry1232-colShiptrue | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=VISA * sourceOfFunds.provided.card.brand=VISA * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=453224xxxxxx4198-Token * sourceOfFunds.provided.card.expiry.month=8-Token Expiry * sourceOfFunds.provided.card.expiry.year=22-Token Expiry * sourceOfFunds.provided.card.nameOnCard=Mr. John Smith * sourceOfFunds.provided.card.devicePayment.3DSecure.eciIndicator. onlinePaymentCryptogram=AgAAAAAABkwdwbyAkpPMQAAAAAA=-Cryptogram * sourceOfFunds.provided.card.devicePayment.3DSecure.eciIndicator=07 * sourceOfFunds.card.maskedFpan=444411xxxxxx3333-FPAN * sourceOfFunds.card.maskedFpanExpiry.month=1-FPAN Expiry * sourceOfFunds.card.maskedFpanExpiry.year=39-FPAN Expiry **Shipping Address** * shipping.address.contact.firstName=Tony * shipping.address.contact.lastName=Tyre * shipping.address.street=Level 42, 700 Somewhere Street * shipping.address.city=Brisbane * shipping.address.stateProvince=QLD * shipping.address.postcodeZip=4000 * shipping.address.country=AUS **Customer Details** * customer.email=emulator@tnsi.com * customer.firstName= Mr. John Smith * customer.lastName=John * customer.mobilePhone=+61 0444111222 * customer.phone=+61 0444111222 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street * billing.address.street2 = Floor 14, CBD | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=VISA * sourceOfFunds.provided.card.brand=VISA * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=444411xxxxxx3333-FPAN * sourceOfFunds.provided.card.expiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.expiry.year=39-FPAN Expiry * sourceOfFunds.provided.card.nameOnCard=Mr. John Smith * sourceOfFunds.provided.card.deviceSpecificNumber=453224xxxxxx4198-Token * sourceOfFunds.provided.card.deviceSpecificExpiry.month=8-Token Expiry * sourceOfFunds.provided.card.deviceSpecificExpiry.year=22-Token Expiry **Shipping Address** * shipping.address.contact.firstName=Tony * shipping.address.contact.lastName=Tyre * shipping.address.street=Level 42, 700 Somewhere Street * shipping.address.city=St. Brisbane * shipping.address.stateProvince=QLD * shipping.address.postcode=4000 * shipping.address.country=AUS **Customer Details** * customer.email=emulator@tnsi.com * customer.firstName=John * customer.lastName=Smith * customer.mobilePhone=+1 2128881234 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 300 Adelaide Street, Floor 21 | #### Scenario 2: Click to Pay returns a network token and a dynamic CSC {#scenario-2-click-to-pay-returns-a-network-token-and-a-dynamic-csc} | Scheme | Last 4 digits of FPAN | SRC Correlation ID | Response from UPDATE SESSION FROM WALLET Operation | Response from AUTHORIZE or PAY Operation | |------------------|-----------------------|------------------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| | Mastercard | xxx0008 | 261af700-e576-43bf-af92-bd0f6810e8fb | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=MASTERCARD * sourceOfFunds.provided.card.brand=MASTERCARD * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=520424xxxxxx5996-Token * sourceOfFunds.provided.card.expiry.month=11-Token Expiry * sourceOfFunds.provided.card.expiry.year=22-Token Expiry * sourceOfFunds.provided.card.securityCode=123-Dynamic CSC * sourceOfFunds.provided.card.maskedFpan=512345xxxxxx0008-FPAN * sourceOfFunds.provided.card.maskedFpanExpiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.maskedFpanExpiry.year=39-FPAN Expiry **Shipping Address** * shipping.address.contact.firstName=Iggy * shipping.address.contact.lastName=Peck * shipping.address.street=2200 Mastercard Blvd * shipping.address.street2=O'Fallon, extended address * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=63368-7263 * shipping.address.country=USA **Customer Details** * customer.email=john.smith@example.com * customer.firstName=John * customer.lastName=Smith * customer.mobilePhone=+1 2128881234 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street * billing.address.street2 = Floor 14, CBD | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=MASTERCARD * sourceOfFunds.provided.card.brand=MASTERCARD * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=222300xxxxxx0007-FPAN * sourceOfFunds.provided.card.expiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.expiry.year=39-FPAN Expiry * sourceOfFunds.provided.card.deviceSpecificNumber=520424xxxxxx5996-Token * sourceOfFunds.provided.card.deviceSpecificExpiry.month=11-Token Expiry * sourceOfFunds.provided.card.deviceSpecificExpiry.year=22-Token Expiry **Shipping Address** * shipping.address.contact.firstName=Iggy * shipping.address.contact.lastName=Peck * shipping.address.street=2200 Mastercard Blvd, O'Fallon, extended address * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=63368-7263 * shipping.address.country=USA **Customer Details** * customer.email=john.smith@example.com * customer.firstName=John * customer.lastName=Smith * customer.mobilePhone=+1 2128881234 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street, Floor 14, CBD | | Visa | xxx3333 | 12345671-visaDTVV-expiry1232-colShiptrue | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=VISA * sourceOfFunds.provided.card.brand=VISA * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=453224xxxxxx4198-Token * sourceOfFunds.provided.card.expiry.month=8-Token Expiry * sourceOfFunds.provided.card.expiry.year=22-Token Expiry * sourceOfFunds.provided.card.nameOnCard=Mr. John Smith * sourceOfFunds.provided.card.securityCode=123-Dynamic CSC * sourceOfFunds.provided.card.devicePayment.3DSecure.eciIndicator=07 * sourceOfFunds.card.maskedFpan=444411xxxxxx3333-FPAN * sourceOfFunds.provided.card.maskedFpanExpiry.month=12-FPAN Expiry * sourceOfFunds.provided.card.maskedFpanExpiry.year=32-FPAN Expiry **Shipping Address** * shipping.address.contact.firstName=Tony * shipping.address.contact.lastName=Tyre * shipping.address.street=Level 42 * shipping.address.street2=O'Fallon, extended address * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=4000 * shipping.address.country=AUS **Customer Details** * customer.email=emulator@tnsi.com * customer.firstName=Mr.John Smith * customer.lastName=John * customer.mobilePhone=+61 0444111222 * customer.phone=+61 0444111222 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street * billing.address.street2=Floor 21 | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=VISA * sourceOfFunds.provided.card.brand=VISA * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=444411xxxxxx3333-FPAN Expiry * sourceOfFunds.provided.card.expiry.month=12-FPAN Expiry * sourceOfFunds.provided.card.expiry.year=32-FPAN Expiry * sourceOfFunds.provoded.card.nameOnCard=Mr. John Smith * sourceOfFunds.provided.card.deviceSpecificNumber=520424xxxxxx5996-Token * sourceOfFunds.provided.card.deviceSpecificExpiry.month=8-Token Expiry * sourceOfFunds.provided.card.deviceSpecificExpiry.year=22-Token Expiry **Shipping Address** * shipping.address.contact.firstName=tony * shipping.address.contact.lastName=tyre * sshipping.address.street=Level 42, 700 Somewhere Street * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=63368-7263 * shipping.address.country=AUS **Customer Details** * customer.email=john.smith@example.com * customer.firstName=John * customer.lastName=Smith * customer.mobilePhone=+1 2128881234 * customer.phone=+61 0444111222 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street, Floor 14, CBD | | American Express | xxx0017 | 4c26bae3-0638-4766-9539-58ae12844333 | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=AMEX * sourceOfFunds.provided.card.brand=AMEX * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=453224xxxxxx4198-Token * sourceOfFunds.provided.card.expiry.month=12-Token Expiry * sourceOfFunds.provided.card.expiry.year=22-Token Expiry * sourceOfFunds.provided.card.securityCode=xxx-Dynamic CSC * sourceOfFunds.card.maskedFpan=444411xxxxxx3333-FPAN * sourceOfFunds.provided.card.maskedFpanExpiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.maskedFpanExpiry.year=39-FPAN Expiry **Shipping Address** * shipping.address.contact.firstName=loggy * shipping.address.contact.lastName=Peck * shipping.address.street=2200 Mastercard Blvd * shipping.address.street2=O'Fallon, extended address * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=4000 * shipping.address.country=USA **Customer Details** * customer.email=john.smith@example.com * customer.firstName=Mr.John Smith * customer.lastName=John * customer.mobilePhone=+61 0444111222 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street * billing.address.street2=Floor 14 | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=AMES * sourceOfFunds.provided.card.brand=AMEX * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=444411xxxxxx3333-FPAN * sourceOfFunds.provided.card.expiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.expiry.year=39-FPAN Expiry * sourceOfFunds.provided.card.deviceSpecificNumber=520424xxxxxx5996-Token * sourceOfFunds.provided.card.deviceSpecificExpiry.month=12-Token Expiry * sourceOfFunds.provided.card.deviceSpecificExpiry.year=22-Token Expiry **Shipping Address** * shipping.address.contact.firstName=laggy * shipping.address.contact.lastName=Peck * shipping.address.street=2200 Mastercard Blvd * shipping.address.street2=O'Fallon, extended address * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=63368-7263 * shipping.address.country=AUS **Customer Details** * customer.email=john.smith@example.com * customer.firstName=John * customer.lastName=Smith * customer.mobilePhone=+1 2128881234 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street, Floor 14, CBD | #### Scenario 3: Click to Pay returns the card number and expiry Date, where Network Tokenization is not supported {#scenario-3-click-to-pay-returns-the-card-number-and-expiry-date-where-network-tokenization-is-not-supported} | Scheme | Last 4 digits of FPAN | SRC Correlation ID | Response from UPDATE SESSION FROM WALLET Operation | Response from AUTHORIZE or PAY Operation | |------------------|-----------------------|--------------------------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| | Mastercard | xxx0305 | 8e455e8b-4e52-46cf-a3da-83aa3cf9a76e | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=CARD * sourceOfFunds.provided.card.scheme=MASTERCARD * sourceOfFunds.provided.card.brand=MASTERCARD * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=550690xxxxxx0305-FPAN * sourceOfFunds.provided.card.expiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.expiry.year=39-FPAN Expiry * sourceOfFunds.provided.card.nameOnCard=John Smith * sourceOfFunds.provided.card.maskedFpan=550690xxxxxx0305-FPAN * sourceOfFunds.provided.card.maskedFpanExpiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.maskedFpanExpiry.year=39-FPAN Expiry **Shipping Address** * shipping.address.contact.firstName=Iggy * shipping.address.contact.lastName=Peck * shipping.address.street=2200 Mastercard Blvd * shipping.address.street2=O'Fallon, extended address * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=63368-7263 * shipping.address.country=USA **Customer Details** * customer.email=john.smith@example.com * customer.firstName=John * customer.lastName=Smith * customer.mobilePhone=+1 2128881234 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street * billing.address.street2 = Floor 14, CBD | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=MASTERCARD * sourceOfFunds.provided.card.brand=MASTERCARD * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=550690xxxxxx0305-FPAN -FPAN * sourceOfFunds.provided.card.expiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.expiry.year=39-FPAN Expiry * sourceOfFunds.provided.card.nameOnCard=John Smith **Shipping Address** * shipping.address.contact.firstName=Iggy * shipping.address.contact.lastName=Peck * shipping.address.street=2200 Mastercard Blvd, O'Fallon, extended address * shipping.address.street2=O'Fallon, extended address * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=63368-7263 * shipping.address.country=USA **Customer Details** * customer.email=john.smith@example.com * customer.firstName=John * customer.lastName=Smith * customer.mobilePhone=+1 2128881234 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street, Floor 14, CBD | | Visa | xxx4821 | 12345671-visa1-expiry1232 | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=CARD * sourceOfFunds.provided.card.scheme=VISA * sourceOfFunds.provided.card.brand=VISA * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=400552xxxxxx4821-FPAN * sourceOfFunds.provided.card.expiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.expiry.year=39-FPAN Expiry * sourceOfFunds.provided.card.nameOnCard=Mr. John Smith * sourceOfFunds.card.maskedFpan=400552xxxxxx4821-FPAN * sourceOfFunds.provided.card.maskedFpanExpiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.maskedFpanExpiry.year=39-FPAN Expiry **Customer Details** * customer.email=emulator@tnsi.com * customer.firstName=Mr.John Smith * customer.lastName=John * customer.mobilePhone=+61 0444111222 * customer.phone=+61 0444111222 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street * billing.address.street2=Floor 21 | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=CARD * sourceOfFunds.provided.card.scheme=VISA * sourceOfFunds.provided.card.brand=VISA * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=400552xxxxxx4821-FPAN * sourceOfFunds.provided.card.expiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.expiry.year=39-FPAN Expiry * sourceOfFunds.provoded.card.nameOnCard=Mr. John Smith **Customer Details** * customer.email=john.smith@example.com * customer.firstName=John * customer.lastName=Smith * customer.mobilePhone=+1 2128881234 * customer.phone=+61 0444111222 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street=300 Adelaide Street, Floor 21 | | American Express | xxx4564 | 86584dcc-280f-4b57-8da4-49cd1067a2eb | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=CARD * sourceOfFunds.provided.card.scheme=AMEX * sourceOfFunds.provided.card.brand=AMEX * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=345678xxxxx4564-FPAN * sourceOfFunds.provided.card.expiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.expiry.year=39-FPAN Expiry * sourceOfFunds.provided.card.nameOnCard=Mr. John Smith * sourceOfFunds.provided.card.maskedFpan=345678xxxxx4564-FPAN * sourceOfFunds.provided.card.maskedFpanExpiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.maskedFpanExpiry.year=39-FPAN Expiry **Shipping Address** * shipping.address.contact.firstName=loggy * shipping.address.contact.lastName=Peck * shipping.address.street=2200 Mastercard Blvd * shipping.address.street2=O'Fallon, extended address * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=4000 * shipping.address.country=USA **Customer Details** * customer.email=john.smith@example.com * customer.firstName=Mr.John Smith * customer.lastName=John * customer.mobilePhone=+61 0444111222 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street * billing.address.street2=Floor 14 | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=CARD * sourceOfFunds.provided.card.scheme=AMEX * sourceOfFunds.provided.card.brand=AMEX * sourceOfFunds.provided.card.fundingMethod=CREDIT * sourceOfFunds.provided.card.number=345678xxxxx4564-FPAN * sourceOfFunds.provided.card.expiry.month=1-FPAN Expiry * sourceOfFunds.provided.card.expiry.year=39-FPAN Expiry **Shipping Address** * shipping.address.contact.firstName=laggy * shipping.address.contact.lastName=Peck * shipping.address.street=2200 Mastercard Blvd * shipping.address.street2=O'Fallon, extended address * shipping.address.city=St. Louis * shipping.address.stateProvince=MO * shipping.address.postcode=63368-7263 * shipping.address.country=AUS **Customer Details** * customer.email=john.smith@example.com * customer.firstName=John * customer.lastName=Smith * customer.mobilePhone=+1 2128881234 **Billing Address** * billing.address.city = Brisbane * billing.address.country = AUS * billing.address.postcodeZip = 4000 * billing.address.stateProvince = QLD * billing.address.street = 333 Ann Street, Floor 14, CBD | ### Testing SRC with EMV 3-D Secure authentication {#testing-src-with-emv-3-d-secure-authentication} If your merchant profile is enabled for [EMV 3-D Secure Authentication](https://developer.mastercard.com/mastercard-gateway/documentation/security-and-fraud/authentication/3d-secure-auth/index.md), you can use the in the following tables to trigger either a frictionless flow or a challenge flow. #### Scenario 4: 3DS2 Challenge Flow {#scenario-4-3ds2-challenge-flow} | Scheme | Last 4 digits of FPAN | SRC Correlation ID | Response from the API | |------------------|-----------------------|-------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| | Mastercard | xxx0009 | 1049624e-cc67-45f6-bd5f-c625eb4c6cc1 | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=MASTERCARD * sourceOfFunds.provided.card.brand=MASTERCARD * sourceOfFunds.provided.card.deviceSpecificNumber = 512345xxxxxx8212 * sourceOfFunds.provided.card.deviceSpecificExpiry.month = 1 * sourceOfFunds.provided.card.deviceSpecificExpiry.year = 39 * sourceOfFunds.provided.card.number = 512345xxxxxx0009 * sourceOfFunds.provided.card.expiry.month = 9 * sourceOfFunds.provided.card.expiry.year = 55 | | Visa | xxx4222 | 12345671-SRC3DSChallenge-expiry1232-colShiptrue | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type = SCHEME_TOKEN * sourceOfFunds.provided.card.scheme = VISA * sourceOfFunds.provided.card.brand= VISA * sourceOfFunds.provided.card.devicePayment.3DSecure.eciIndicator=07 * sourceOfFunds.provided.card.devicePayment.3DSecure.onlinePaymentCryptogram=AgAAAAAABkwdwbyAkpPMQAAAAAA= * sourceOfFunds.provided.card.number = 453224xxxxxx4222 * sourceOfFunds.provided.card.expiry.month = 12 * ssourceOfFunds.provided.card.expiry.year = 32 | | American Express | xxx4570 | 20e051bc-bd25-46db-a7d3-d2944fbb05cf | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type = SCHEME_TOKEN * sourceOfFunds.provided.card.scheme = AMEX * sourceOfFunds.provided.card.brand= AMEX * sourceOfFunds.provided.card.deviceSpecificNumber = 373224xxxxx9117 * sourceOfFunds.provided.card.deviceSpecificExpiry.month = 5 * sourceOfFunds.provided.card.deviceSpecificExpiry.year = 21 * sourceOfFunds.provided.card.number = 373224xxxxxx4570 * sourceOfFunds.provided.card.expiry.month = 1 * ssourceOfFunds.provided.card.expiry.year = 39 | #### Scenario 5: 3DS2 frictionless flow {#scenario-5-3ds2-frictionless-flow} | Scheme | Last 4 digits of FPAN | SRC Correlation ID | Response from the API | |------------------|-----------------------|----------------------------------------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| | Mastercard | 0010 | 16e051bc-bd25-46db-a7d3-d2944fbb05cf | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type=SCHEME_TOKEN * sourceOfFunds.provided.card.scheme=MASTERCARD * sourceOfFunds.provided.card.brand=MASTERCARD * sourceOfFunds.provided.card.deviceSpecificNumber = 512345xxxxxx8170 * sourceOfFunds.provided.card.deviceSpecificExpiry.month = 1 * sourceOfFunds.provided.card.deviceSpecificExpiry.year = 39 * sourceOfFunds.provided.card.number = 512345xxxxxx0010 * sourceOfFunds.provided.card.expiry.month = 8 * sourceOfFunds.provided.card.expiry.year = 55 | | Visa | xxx4180 | 12345671-SRC3DSFrictionless-expiry1232-colShiptrue | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type = SCHEME_TOKEN * sourceOfFunds.provided.card.scheme = VISA * sourceOfFunds.provided.card.brand= VISA * sourceOfFunds.provided.card.devicePayment.3DSecure.eciIndicator=07 * sourceOfFunds.provided.card.devicePayment.3DSecure.onlinePaymentCryptogram=AgAAAAAABkwdwbyAkpPMQAAAAAA= * sourceOfFunds.provided.card.number = 453224xxxxxx4180 * sourceOfFunds.provided.card.expiry.month = 12 * sourceOfFunds.provided.card.expiry.year = 32 | | American Express | 4571 | 17e051bc-bd25-46db-a7d3-d2944fbb05cf | * order.walletProvider=SECURE_REMOTE_COMMERCE * sourceOfFunds.type = SCHEME_TOKEN * sourceOfFunds.provided.card.scheme = AMEX * sourceOfFunds.provided.card.brand= AMEX * sourceOfFunds.provided.card.deviceSpecificNumber = 373224xxxxx9299 * sourceOfFunds.provided.card.deviceSpecificExpiry.month = 5 * sourceOfFunds.provided.card.deviceSpecificExpiry.year = 21 * sourceOfFunds.provided.card.securityCode = xxx * sourceOfFunds.provided.card.number = 373224xxxxxx4570 * sourceOfFunds.provided.card.expiry.month = 1 * sourceOfFunds.provided.card.expiry.year = 39 | ## Frequently asked questions {#frequently-asked-questions} While your payer's Click to Pay profile can contain cards for any supported card schemes, they can only use Click to Pay for those cards where: * Your merchant profile now supports the card scheme for Click to Pay. * Your merchant profile supports processing cards with this scheme and transaction currency. Click to Pay does not currently support end-to-end testing. You can use your live merchant account in the test environment (MTF) to test the process only up to the Click to Pay interaction or by using the Click to Pay Sandbox for the actual interaction process.