Create secure token

Use this method to create a secure token that represents a customer’s payment details.

When you create a secure token, you need to generate and provide a secureTokenId that you use to run follow-on actions:

Retrieve Secure Token – View the details of the secure token.
Delete Secure Token – Delete the secure token.
Update Secure Token – Update the details of the secure token.
Update Account Details – Update the secure token with the details from a single-use token.

Note: If you don’t generate a secureTokenId to identify the token, our gateway generates a unique identifier and returns it in the response.

If the request is successful, our gateway returns a token that the merchant can use in transactions instead of the customer’s sensitive payment details, for example, when they run a sale.

Path parameters

processingTerminalIdstringRequired>=4 characters<=50 characters

Unique identifier that we assigned to the terminal.

Request

This endpoint expects an object.

sourceobjectRequired

Object that contains information about the payment method to tokenize.

secureTokenIdstringOptional>=1 character<=200 characters

Unique identifier that the merchant created for the secure token that represents the customer's payment details. If the merchant doesn't create a secureTokenId, the gateway generates one and returns it in the response.

operatorstringOptional>=1 character<=50 characters

Operator who saved the customer's payment details.

mitAgreementenumOptional

Indicates how the merchant can use the customer’s card details, as agreed by the customer:

unscheduled - Transactions for a fixed or variable amount that are run at a certain pre-defined event.
recurring - Transactions for a fixed amount that are run at regular intervals, for example, monthly. Recurring transactions don’t have a fixed duration and run until the customer cancels the agreement.
installment - Transactions for a fixed amount that are run at regular intervals, for example, monthly. Installment transactions have a fixed duration.

Allowed values:

customerobjectOptional

Object that contains the customer's contact details and address information.

ipAddressobjectOptional

Object that contains information about the IP address of the device that sent the request.

threeDSecureobjectOptional

Object that contains information for an authentication check on the customer’s payment details using the 3-D Secure protocol.

customFieldslist of objectsOptional

Array of customField objects.

Response

Successful request. We created a secure token that represents your customer's payment details.

secureTokenIdstring>=0 characters<=200 characters

Unique identifier that the merchant created for the secure token that represents the customer's payment details.

processingTerminalIdstring>=4 characters<=50 characters

Unique identifier that we assigned to the terminal.

sourceobject

Object that contains information about the payment method that we tokenized.

tokenstring>=12 characters<=19 characters

Token that the merchant can use in future transactions to represent the customer’s payment details. The token:

Begins with the six-digit identification number 296753.
Contains up to 12 digits.
Contains a single check digit that we calculate using the Luhn algorithm.

statusenum

Outcome of a security check on the status of the customer’s payment card or bank account.

Note: Depending on the merchant’s account settings, this feature may be unavailable.

mitAgreementenum or null

Indicates how the merchant can use the customer’s card details, as agreed by the customer:

unscheduled - Transactions for a fixed or variable amount that are run at a certain pre-defined event.
recurring - Transactions for a fixed amount that are run at regular intervals, for example, monthly. Recurring transactions don’t have a fixed duration and run until the customer cancels the agreement.
installment - Transactions for a fixed amount that are run at regular intervals, for example, monthly. Installment transactions have a fixed duration.

Allowed values:

customerobject or null

Object that contains the customer's contact details and address information.

customFieldslist of objects or null

Array of customField objects.

1	import requests
2
3	url = "https://api.payroc.com/v1/processing-terminals/1234001/secure-tokens"
4
5	headers = {
6	"Idempotency-Key": "8e03978e-40d5-43e8-bc93-6894a57f9324",
7	"Authorization": "Bearer <token>",
8	"Content-Type": "application/json"
9	}
10
11	response = requests.post(url, headers=headers)
12
13	print(response.json())

1	{
2	"secureTokenId": "MREF_abc1de23-f4a5-6789-bcd0-12e345678901fa",
3	"processingTerminalId": "1234001",
4	"source": {
5	"type": "card",
6	"cardholderName": "Sarah Hazel Hopper",
7	"cardNumber": "453985******7062",
8	"expiryDate": "1225"
9	},
10	"token": "296753123456",
11	"status": "notValidated",
12	"mitAgreement": "unscheduled",
13	"customer": {
14	"firstName": "Sarah",
15	"lastName": "Hopper",
16	"dateOfBirth": "1990-07-15",
17	"referenceNumber": "Customer-12",
18	"billingAddress": {
19	"address1": "1 Example Ave.",
20	"city": "Chicago",
21	"state": "Illinois",
22	"country": "US",
23	"postalCode": "60056",
24	"address2": "Example Address Line 2",
25	"address3": "Example Address Line 3"
26	},
27	"shippingAddress": {
28	"recipientName": "Sarah Hopper",
29	"address": {
30	"address1": "1 Example Ave.",
31	"city": "Chicago",
32	"state": "Illinois",
33	"country": "US",
34	"postalCode": "60056",
35	"address2": "Example Address Line 2",
36	"address3": "Example Address Line 3"
37	}
38	},
39	"contactMethods": [
40	{
41	"type": "email",
42	"value": "[email protected]"
43	}
44	],
45	"notificationLanguage": "en"
46	},
47	"customFields": [
48	{
49	"name": "yourCustomField",
50	"value": "abc123"
51	}
52	]
53	}

Path parameters

Headers

Request

Response

Errors