Simple Order API

Recent Revisions to This Document

24.02

Added a short description of the other products in the risk management portfoio that work with payer authentication.

24.01

Updated the date that a Visa Secure 3-D Secure mandate that changes some conditionally optional fields to required fields occurs. The effective date was pushed back by six months to August 12, 2024.

23.10

Removed References to 3-D Secure 1.0
Removed the 3-D Secure 1.0 test cases section as 3-D Secure 1.0 is no longer supported. Other references to 3-D Secure 1.0 were removed from the guide.
Test Card Numbers Updated
Mastercard test card numbers for the EMV 3-D Secure test case 2.4 were corrected and a Visa test card number for test case 2.6 was corrected.
ECI Value Tables combined
For each EMV 3-D Secure 2.0 test case, the Economic Indicator (ECI) raw numeric value table and its respective character string value table were combined into one table to better indicate the relationship between the two ECI values.

23.09

This revision contains only editorial changes and no technical updates.

23.08

Editorial Content updated
While no technical content was added, the entire guide was edited and updated to remove outdated content.
Consistency issues addressed
Inconsistent content between the REST and Simple Order versions of the guide was updated to ensure that both API versions have the same information. Content alignment in table cells was addressed to enable easier reading of the table information.

23.07

Added Acquirer Information section
Added a section about the information needed from the acquirer. See Acquirer Information.
Moved Combining Services section
Moved the section about combining authentication and authorization services. This updated information now comes after the authentication steps for implementing the Direct API section. See Combining the Authentication and the Authorization Services.

23.06

Updated Implementing Direct API Section
The Implementing Direct API section was updated to include recommended practices and process flow diagrams. See Implementing Direct API for Payer Authentication.
The Cardinal Cruise Direct Connection API was renamed to Direct API.
Method URL Test Case Updated
The Method URL test case was updated. See Test Case 2.14: Require Method URL.
Fixed Tables Spacing
A spacing issue within table cells that caused random indents within the cell content making it difficult to read was addressed.

23.05

New Use Cases Chapter Added
Added new section listing use cases for payer authentication. Combined the lists of required and optional fields from the API chapter and the examples at the end of the Implementing Direct API section to create a use cases section. Removed the section that listed the API fields. See Payer Authentication Use Cases.

23.04

Introduction Chapter Rewritten
  • The Introduction chapter was rewritten. See Introduction to Payer Authentication.
  • The Hybrid integration chapter was removed as this integration is no longer installed.
  • The test cases for 3-D Secure 1.0 were moved from the Testing section to the back of the guide in preparation for removal when support for the 1.0 version is discontinued. (The 3-D Secure 1.0 test cases section was removed in November 2023.)
  • The Interpreting the Response sections for checking enrollment and validating authentication were updated with more detailed response statuses. See Interpreting the Check Enrollment Response and Interpreting the Validation Response.
Test Card Number for Exemption Test Case Corrected
There was a typo in the JCB test card number for testing unsuccessful step-up authentication that was corrected. See Test Case 2.11a: Unsuccessful Step-Up Authentication.

23.03

JCB Added to Required Card Type
The JCB card was added to the cards listed that require the
card_cardType
field.
Test Results for Exemption Test Case Updated
The reason code result for the exemption test case 2c: Cardholder Not Enrolled in Service was updated. See Test Case 2c: Cardholder Not Enrolled in Service.