The Auth Only Endpoint is applicable to both EU and US Acquiring Clients.
Call Auth Only when you want to process an Authorization only, which will not settle until it's Captured. We do not allow you to Capture an Authorization after 5 business days have passed.
Calling this endpoint will authorize the card, however, it will not be settled until the Capture endpoint is called. Authorizations expire after 5 days.
3D Secure Authentication using Auth Only Endpoint
If the Merchant has integrated to ConnexPay's solution, the Auth Only parameters must be combined with the BrowserData object to initiate 3D secure authentication.
If the 3D Secure authentication process is frictionless, the auth will be processed without any further action needed.
In the event that the transaction requires a 3D secure device fingerprint, 3D secure cardholder challenge, or both, the Auth Only API must be called again once the 3DS status is complete by using the specified parameters on the GET 3DS Status API endpoint for authentication..
If a device fingerprint is required: secure authentication occurs behind the scenes so that the cardholder is not impacted. To successfully complete the device fingerprint, the webpage being used for payment must be configured to use an embedded iFrame. The iFrame is needed to complete the required redirection to the issuer's site. Use the redirectUrl and redirectUrlRequetPayload provided in the response to complete authentication. The response must occur within 10 seconds.
If a cardholder challenge is required: secure authentication must be completed by the cardholder. To successfully complete the challenge, the webpage being used for payment must be configured to use an embedded iFrame. This will be used to complete the required redirection to the issuer's site. Use the redirectUrl provided in the response to initiate the cardholder challenge.
Once a response is received, our callback API will be updated to show 3DS as complete. When the status is complete, the merchant will need to call the GET 3DS Status API route to receive the 3DS payload response. The parameter(s) included in the payload must be used to call the Auth Only route again and complete the transaction.
The new route to GET 3DS status once the auth is completed, as well as next steps including which parameters to include to complete the transaction, is located here: https://docs.connexpay.com/reference/get-3ds-status-group
For additional information about 3D Secure authentication, Click here .