Use our APIs to accept cards with 3D Secure authentication through a redirect page. When adding card payments with redirect 3D Secure authentication to your integration, you additionally need to:
- Collect the additional parameters in your payment form.
- Provide the required 3D Secure parameters when making a payment request.
- Handle the redirect.
Before you begin
Before starting your integration:
- If building a mobile integration, contact our Support Team to make sure that 3D Secure is triggered in your app.
- Make sure that you have integrated our Card Component for Web, iOS, or Android or built your own UI for collecting shopper's card details.
- If you are using 3D Secure for PSD2 compliance, read our comprehensive PSD2 SCA guide.
Collect additional parameters in your payment form
For higher authentication rates, we strongly recommend that you collect the card holder name, the shopper billing address and email address in advance in your payment form. Deliver these parameters to your backend when making a payment as they are required by the card schemes.
Collect card holder name in your payment form
If you are using our client-side integrations, select the integration below:
If you are using our Card Component, include the following when creating an instance of the Card Component:
hasHolderName: true. This shows the input field for the card holder name.holderNameRequired: true. This makes the card holder name a required field.
const card = checkout.create("card", {
hasHolderName: true,
holderNameRequired: true
}).mount("#card-container");Make a payment
Select the channel that you are using below:
To make a card payment with 3D Secure redirect authentication on Web, proceed with the following steps:
-
From your server, make a /payments request, specifying:
Parameter name Required Description paymentMethod 
If using the Card Component for Web, pass the parameters returned by the Component. If submitting raw card data, refer to Raw card data for the fields that you need to pass. browserInfo The shopper's browser information. If using the Web Card Component, pass the state.data.browserInfoobject from theonChangeevent.returnUrl The URL where the shopper will be redirected back to after completing 3D Secure authentication. The return URL can be a maximum of 1024 characters and must not include //(double slash) after the top-level domain.
The URL should include the protocol:http://orhttps://. You can also include your own additional query parameters, for example, shopper ID or order reference number. In the response, you receive a URL that requires a POST request.billingAddress The cardholder's billing address. shopperEmail The cardholder's email address. shopperIP The shopper's IP address. To increase the likelihood of achieving a frictionless flow and higher authorisation rates, we recommend that you send additional parameters.
For
channelWeb, we recommend including these additional parameters:billingAddress,shopperEmail, andshopperIP.A sample /payments request for Web:
curl https://checkout-test.adyen.com/v68/payments \ -H "X-API-key: [Your API Key here]" \ -H "Content-Type: application/json" \ -d '{ "amount":{ "currency":"EUR", "value":1000 }, "reference":"YOUR_ORDER_NUMBER", "shopperReference":"YOUR_UNIQUE_SHOPPER_ID", "paymentMethod":{ "type":"scheme", "encryptedCardNumber":"adyenjs_0_1_18$k7s65M5V0KdPxTErhBIPoMPI8HlC..", "encryptedExpiryMonth":"adyenjs_0_1_18$p2OZxW2XmwAA8C1Avxm3G9UB6e4..", "encryptedExpiryYear":"adyenjs_0_1_18$CkCOLYZsdqpxGjrALWHj3QoGHqe+..", "encryptedSecurityCode":"adyenjs_0_1_24$XUyMJyHebrra/TpSda9fha978+..", "holderName":"S. Hopper" }, "{hint:state.data.browserInfo from onChange or onSubmit}browserInfo{/hint}":{ "userAgent":"Mozilla\/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit\/537.36 (KHTML, like Gecko) Chrome\/70.0.3538.110 Safari\/537.36", "acceptHeader":"text\/html,application\/xhtml+xml,application\/xml;q=0.9,image\/webp,image\/apng,*\/*;q=0.8", "language":"nl-NL", "colorDepth":24, "screenHeight":723, "screenWidth":1536, "timeZoneOffset":0, "javaEnabled":true }, "{hint:state.data.billingAddress from onSubmit}billingAddress{/hint}": { "street": "Infinite Loop", "houseNumberOrName": "1", "postalCode": "1011DJ", "city": "Amsterdam", "country": "NL" }, "shopperEmail":"s.hopper@example.com", "shopperIP":"192.0.2.1", "channel":"web", "returnUrl":"https://example.com/checkout?shopperOrder=12xy..", "merchantAccount":"YOUR_MERCHANT_ACCOUNT" }'# Set your X-API-KEY with the API key from the Customer Area. adyen = Adyen::Client.new adyen.env = :test adyen.api_key = "YOUR_X-API-KEY" response = adyen.checkout.payments({ :amount => { :currency => "EUR", :value => 1000 }, :reference => "YOUR_ORDER_NUMBER", :shopperReference => "YOUR_UNIQUE_SHOPPER_ID", :paymentMethod => { :type => "scheme", :encryptedCardNumber => "adyenjs_0_1_18$k7s65M5V0KdPxTErhBIPoMPI8HlC..", :encryptedExpiryMonth => "adyenjs_0_1_18$p2OZxW2XmwAA8C1Avxm3G9UB6e4..", :encryptedExpiryYear => "adyenjs_0_1_18$CkCOLYZsdqpxGjrALWHj3QoGHqe+..", :encryptedSecurityCode => "adyenjs_0_1_24$XUyMJyHebrra/TpSda9fha978+..", :holderName => "S. Hopper" }, :browserInfo => { :userAgent => "Mozilla\/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit\/537.36 (KHTML, like Gecko) Chrome\/70.0.3538.110 Safari\/537.36", :acceptHeader => "text\/html,application\/xhtml+xml,application\/xml;q=0.9,image\/webp,image\/apng,*\/*;q=0.8", :language => "nl-NL", :colorDepth => 24, :screenHeight => 723, :screenWidth => 1536, :timeZoneOffset => 0, :javaEnabled => true }, :billingAddress => { :city => "Amsterdam", :country => "NL", :houseNumberOrName => "1", :postalCode => "1011DJ", :street => "Infinite Loop" }, :shopperEmail => "s.hopper@example.com", :shopperIP => "192.0.2.1", :channel => "web", :returnUrl => "https://example.com/checkout?shopperOrder=12xy..", :merchantAccount => "YOUR_MERCHANT_ACCOUNT" }) # Check if further action is needed. if response.body.has_key(:action) # Pass the action object to your front end # response.body[:action] else # No further action needed, pass the resultCode object to your front end # response.body[:resultCode]Client client = new Client("YOUR_API_KEY", Environment.TEST); Checkout checkout = new Checkout(client); PaymentsRequest paymentsRequest = new PaymentsRequest(); paymentsRequest.setMerchantAccount("YOUR_MERCHANT_ACCOUNT"); paymentsRequest.setReference("YOUR_ORDER_REFERENCE"); DefaultPaymentMethodDetails paymentMethodDetails = new DefaultPaymentMethodDetails(); paymentMethodDetails.setType("scheme"); paymentMethodDetails.setEncryptedCardNumber("adyenjs_0_1_18$k7s65M5V0KdPxTErhBIPoMPI8HlC.."); paymentMethodDetails.setEncryptedExpiryMonth("adyenjs_0_1_18$p2OZxW2XmwAA8C1Avxm3G9UB6e4.."); paymentMethodDetails.setEncryptedExpiryYear("adyenjs_0_1_18$CkCOLYZsdqpxGjrALWHj3QoGHqe+.."); paymentMethodDetails.setEncryptedSecurityCode("adyenjs_0_1_24$XUyMJyHebrra/TpSda9fha978+.."); paymentMethodDetails.setHolderName("S. Hopper"); paymentsRequest.setPaymentMethod(paymentMethodDetails); Amount amount = new Amount(); amount.setCurrency("EUR"); amount.setValue(1000L); paymentsRequest.setAmount(amount); BrowserInfo browserInfo = new BrowserInfo(); browserInfo.setUserAgent("Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36"); browserInfo.setAcceptHeader("text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8"); browserInfo.setLanguage("nl-NL"); browserInfo.setColorDepth(24); browserInfo.setScreenHeight(723); browserInfo.setScreenWidth(1536); browserInfo.setTimeZoneOffset(0); browserInfo.setJavaEnabled(true); paymentsRequest.setBrowserInfo(browserInfo); Address billingAddress = new Address(); billingAddress.setCity("Amsterdam"); billingAddress.setCountry("NL"); billingAddress.setHouseNumberOrName("1"); billingAddress.setPostalCode("1011DJ"); billingAddress.setStreet("Infinite Loop"); paymentsRequest.setBillingAddress(billingAddress); paymentsRequest.setShopperEmail("s.hopper@example.com"); paymentsRequest.setShopperIP("192.0.2.1"); paymentsRequest.setChannel(PaymentsRequest.ChannelEnum.WEB); paymentsRequest.setReturnUrl("https://example.com/checkout?shopperOrder=12xy.."); PaymentsResponse paymentsResponse = checkout.payments(paymentsRequest);// Set your X-API-KEY with the API key from the Customer Area. $client = new \Adyen\Client(); $client->setXApiKey("YOUR_X-API-KEY"); $service = new \Adyen\Service\Checkout($client); $params = [ "amount" => [ "currency" => "EUR", "value" => 1000 ], "reference" => "YOUR_ORDER_NUMBER", "paymentMethod" => [ "type" => "scheme", "encryptedCardNumber" => "adyenjs_0_1_18$k7s65M5V0KdPxTErhBIPoMPI8HlC..", "encryptedExpiryMonth" => "adyenjs_0_1_18$p2OZxW2XmwAA8C1Avxm3G9UB6e4..", "encryptedExpiryYear" => "adyenjs_0_1_18$CkCOLYZsdqpxGjrALWHj3QoGHqe+..", "encryptedSecurityCode" => "adyenjs_0_1_24$XUyMJyHebrra/TpSda9fha978+..", "holderName" => "S. Hopper" ], "browserInfo" => [ "userAgent" => "Mozilla\/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit\/537.36 (KHTML, like Gecko) Chrome\/70.0.3538.110 Safari\/537.36", "acceptHeader" => "text\/html,application\/xhtml+xml,application\/xml;q=0.9,image\/webp,image\/apng,*\/*;q=0.8", "language" => "nl-NL", "colorDepth" => 24, "screenHeight" => 723, "screenWidth" => 1536, "timeZoneOffset" => 0, "javaEnabled" => true ], "billingAddress" => [ "city" => "Amsterdam", "country" => "NL", "houseNumberOrName" => "1", "postalCode" => "1011DJ", "street" => "Infinite Loop" ], "shopperEmail" = "s.hopper@example.com", "shopperIP" => "192.0.2.1", "channel" => "web", "returnUrl" => "https://example.com/checkout?shopperOrder=12xy..", "merchantAccount" => "YOUR_MERCHANT_ACCOUNT" ]; $result = $service->payments($params); // Check if further action is needed if (array_key_exists("action", $result)){ // Pass the action object to your front end. // $result["action"] } else { // No further action needed, pass the resultCode to your front end // $result['resultCode'] }# Set your X-API-KEY with the API key from the Customer Area. adyen = Adyen.Adyen() adyen.client.xapikey = 'YOUR_X-API-KEY' result = adyen.checkout.payments({ "amount": { "currency": "EUR", "value": 1000 }, "reference":"YOUR_ORDER_NUMBER", "paymentMethod": { "type": "scheme", "encryptedCardNumber": "adyenjs_0_1_18$k7s65M5V0KdPxTErhBIPoMPI8HlC..", "encryptedExpiryMonth": "adyenjs_0_1_18$p2OZxW2XmwAA8C1Avxm3G9UB6e4..", "encryptedExpiryYear": "adyenjs_0_1_18$CkCOLYZsdqpxGjrALWHj3QoGHqe+..", "encryptedSecurityCode": "adyenjs_0_1_24$XUyMJyHebrra/TpSda9fha978+..", "holderName": "S. Hopper" }, "browserInfo": { "userAgent": "Mozilla\/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit\/537.36 (KHTML, like Gecko) Chrome\/70.0.3538.110 Safari\/537.36", "acceptHeader": "text\/html,application\/xhtml+xml,application\/xml;q=0.9,image\/webp,image\/apng,*\/*;q=0.8", "language": "nl-NL", "colorDepth": 24, "screenHeight": 723, "screenWidth": 1536, "timeZoneOffset": 0, "javaEnabled": "true" }, "billingAddress": { "street": "Infinite Loop", "houseNumberOrName": "1", "postalCode": "1011DJ", "city": "Amsterdam", "country": "NL" }, "shopperEmail": "s.hopper@example.com", "shopperIP": "192.0.2.1", "channel": "web", "returnUrl": "https://example.com/checkout?shopperOrder=12xy..", "merchantAccount": "YOUR_MERCHANT_ACCOUNT" })// Set your X-API-KEY with the API key from the Customer Area. var client = new Client ("YOUR-X-API-KEY", Environment.Test); var checkout = new Checkout(client); var paymentRequest = new Adyen.Model.Checkout.PaymentRequest { Amount = new Model.Checkout.Amount(Currency: "EUR", Value: 1000), Reference = "YOUR_ORDER_REFERENCE", PaymentMethod = new DefaultPaymentMethodDetails { EncryptedCardNumber = "adyenjs_0_1_18$k7s65M5V0KdPxTErhBIPoMPI8HlC..", EncryptedExpiryMonth = "adyenjs_0_1_18$p2OZxW2XmwAA8C1Avxm3G9UB6e4..", EncryptedExpiryYear = "adyenjs_0_1_18$CkCOLYZsdqpxGjrALWHj3QoGHqe+..", EncryptedSecurityCode = "adyenjs_0_1_24$XUyMJyHebrra/TpSda9fha978+..", HolderName = "S. Hopper", Type = "scheme" }, BrowserInfo = new Model.Checkout.BrowserInfo { UserAgent = @"Mozilla\/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit\/537.36 (KHTML, like Gecko) Chrome\/70.0.3538.110 Safari\/537.36", AcceptHeader = @"text\/html,application\/xhtml+xml,application\/xml;q=0.9,image\/webp,image\/apng,*\/*;q=0.8", Language = "nl-NL", ColorDepth = 24, ScreenHeight = 723, ScreenWidth = 1536, TimeZoneOffset = 0, JavaEnabled = true }, BillingAddress = new Model.Checkout.Address { City = "Amsterdam", Country = "NL", HouseNumberOrName = "1", PostalCode = "1011DJ", Street = "Infinite Loop" }, ShopperEmail = "s.hopper@example.com", ShopperIP = "192.0.2.1", Channel = Model.Checkout.PaymentRequest.ChannelEnum.Web, ReturnUrl = "https://example.com/checkout?shopperOrder=12xy..", MerchantAccount = "YOUR_MERCHANT_ACCOUNT" };// Set your X-API-KEY with the API key from the Customer Area. const {Client, Config, CheckoutAPI} = require('@adyen/api-library'); const config = new Config(); // Set your X-API-KEY with the API key from the Customer Area. config.apiKey = '[API_KEY]'; config.merchantAccount = '[MERCHANT_ACCOUNT]'; const client = new Client({ config }); client.setEnvironment("TEST"); const checkout = new CheckoutAPI(client); checkout.payments({ amount:{ currency: "EUR", value: 1000 }, reference: "YOUR_ORDER_NUMBER", paymentMethod: { type: "scheme", encryptedCardNumber: "adyenjs_0_1_18$k7s65M5V0KdPxTErhBIPoMPI8HlC..", encryptedExpiryMonth: "adyenjs_0_1_18$p2OZxW2XmwAA8C1Avxm3G9UB6e4..", encryptedExpiryYear: "adyenjs_0_1_18$CkCOLYZsdqpxGjrALWHj3QoGHqe+..", encryptedSecurityCode: "adyenjs_0_1_24$XUyMJyHebrra/TpSda9fha978+..", holderName: "S. Hopper" }, browserInfo:{ userAgent: "Mozilla\/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit\/537.36 (KHTML, like Gecko) Chrome\/70.0.3538.110 Safari\/537.36", acceptHeader: "text\/html,application\/xhtml+xml,application\/xml;q=0.9,image\/webp,image\/apng,*\/*;q=0.8", language: "nl-NL", colorDepth: 24, screenHeight: 723, screenWidth: 1536, timeZoneOffset: 0, javaEnabled: true }, billingAddress: { city: "Amsterdam", country: "NL", houseNumberOrName: "1", postalCode: "1011DJ", street: "Infinite Loop" }, shopperEmail: "s.hopper@example.com", shopperIP: "192.0.2.1", channel: "web", returnUrl: "https://example.com/checkout?shopperOrder=12xy..", merchantAccount: "YOUR_MERCHANT_ACCOUNT" }).then(res => res); -
Check if the response contains an
actionobject. Your next steps depend on whether the /payments response contains anactionobject:Description Next steps No actionobjectThe transaction was either exempted or out-of-scope for 3D Secure authentication. Use the resultCodeto present the payment result to your shopper.actionobjecttype:redirectThe payment qualifies for 3D Secure. Handle the redirect.
Present the payment result
Use the resultCode from the /payments or /payments/details response to present the payment result to your shopper. You will also receive the outcome of the payment asynchronously in a notification webhook.
For card payments, you can receive the following resultCode values:
| resultCode | Description | Action to take |
|---|---|---|
| Authorised | The payment was successful. | Inform the shopper that the payment has been successful. If you are using manual capture, you also need to capture the payment. |
| Cancelled | The shopper cancelled the payment. | Ask the shopper if they want to continue with the order, or ask them to select a different payment method. |
| Error | There was an error when the payment was being processed. For more information, check the
refusalReason
field. |
Inform the shopper that there was an error processing their payment. |
| Refused | The payment was refused. For more information, check the
refusalReason
field. |
Ask the shopper to try the payment again using a different payment method. |
Test and go live
Use our test card numbers to test how your integration handles different 3D Secure authentication scenarios.