Card API have different endpoints for creating, editing and updating a card via different methods.
Below in the picture is the basic flow of a card lifecycle. Note we don't restrict changes, so it is possible although not advisable e.g. to change card status from Card Lost to Card OK.
Below is a short summary of each status:
| Status name | Description | Authorisations rejected | Clearing transactions posting blocked |
|---|---|---|---|
| Card OK | Card is open and in normal status. Card has to be in this status in order for it to be renewed. | No | No |
| Card Blocked | Temporary block on the card that will prevent approval of authorisations. Can be used instead of account level temporary block if target is to block only a specific card. | Yes | No |
| Suspected Fraud | Temporary block on the card that will prevent approval of authorisations. Functionality the same as for "Card blocked", the different code allows to differentiate between the blocks. | Yes | No |
| Card No Renewal | Status set to prevent following card renewal. Does not affect card functionality in any way, only renewal. | No | No |
| Card Closed Due To Fraud | Used to close a card due to known fraud. | Yes | No |
| Card Lost | Used to close a card because it is lost. | Yes | No |
| Card Stolen | Used to close a card because it is stolen. | Yes | No |
| Card Closed | Used to close card by request from customer or bank, reason for closure is set with status update reason. Allows still clearing transaction posting. | Yes | No |
Encrypted payload for Create card with predefined card number
The payload field encryptedData in create card requests is encrypted with JWE (JSON Web Encryption). The field value must be presented using compact serialization scheme, i.e. Base64URL-encoded elements separated by a ".".
JWE should use RSA-OAEP-256 algorithm for encrypting the random symmetric key and A256GCM algorithm for encrypting the payload. Public keys used for encryption are provided in certificates below. JWE header must also contain parameter "x5t#S256" with SHA256 fingerprint of the certificate used. See RFC7516 section 4.1.10.
The payload to be encrypted must be in JSON-format and contain field "cardNumber". For example:
{ "cardNumber": "5555555555554444" }
Certificate for test environments (jwe-test-453821.pem):
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Certificate for production environments (jwe-826367.pem):
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
For any questions, contact us: