Below in the picture is the basic flow of a card lifecycle. Note we don’t restrict changes, so it is possible although not advisable e.g. to change card status from Card Lost to Card OK.
Below is a short summary of each status:
| Status name | Description | Authorisations rejected | Clearing transactions posting blocked |
|---|
| Card OK | Card is open and in normal status. Card has to be in this status in order for it to be renewed. | No | No |
| Card Blocked | Temporary block on the card that will prevent approval of authorisations. Can be used instead of account level temporary block if target is to block only a specific card. | Yes | No |
| Suspected Fraud | Temporary block on the card that will prevent approval of authorisations. Functionality the same as for “Card blocked”, the different code allows to differentiate between the blocks. | Yes | No |
| Card No Renewal | Status set to prevent following card renewal. Does not affect card functionality in any way, only renewal. | No | No |
| Card Closed Due To Fraud | Used to close a card due to known fraud. | Yes | No |
| Card Lost | Used to close a card because it is lost. | Yes | No |
| Card Stolen | Used to close a card because it is stolen. | Yes | No |
| Card Closed | Used to close card by request from customer or bank, reason for closure is set with status update reason. Allows still clearing transaction posting. | Yes | No |
Encrypted payload for Create card or Get card with a full card number
The payload field encryptedData in create card requests is encrypted with JWE (JSON Web Encryption). The field value must be presented using compact serialization scheme, i.e. Base64URL-encoded elements separated by a ”.”.
JWE should use RSA-OAEP-256 algorithm for encrypting the random symmetric key and A256GCM algorithm for encrypting the payload. Public keys used for encryption are provided in certificates below. JWE header must also contain parameter “x5t#S256” with SHA256 fingerprint of the certificate used. See RFC7516 section 4.1.10.
The payload to be encrypted must be in JSON-format and contain field “cardNumber”. For example:
{ "cardNumber": "5555555555554444" }
Certificate for test environments (jwe-test-20240530.pem):
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Certificate for production environments (jwe-20240530.pem):
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
For any questions, contact us:
