This section describes the minimum set of items that should be checked before going live in case of custom integration. There are two integration options:
Redirect integration approach - using small set of Everifin API endpoints and redirecting the customer to Everifin GUI for the payment authorization and processing
Embedded integration approach - in terms of interaction with customer merchant needs to develop own GUI for payment authorization and processing (merchant’s system is using purely Everifin API)
Redirect integration approach
This section describes what needs to be implemented in redirect integration approach.
Minimum set of endpoints
The list of endpoints to be used in redirect flow integration type and their proper usage is described below.
Endpoint | Mandatory? | Purpose | Actions | Doc |
---|---|---|---|---|
Get Access Token | Mandatory | Endpoint to get access token which is required to call Everifin Paygate API. | As the token has very short validity, you need to make sure you have valid one before calling any API endpoint. It is up to merchant to choose the way of getting it:
| |
Get Banks | Optional | Endpoint to get list of banks. | List of available/supported banks can be displayed to customer so he can decide before he chooses the payment method. | |
Create Order Payment | Mandatory | Endpoint to initiate payment and get payment link | Beside all mandatory fields, populate these fields:
The response provides payment ID which needs to be stored to the purchase order in merchant’s system. | https://everifin.atlassian.net/wiki/spaces/EPAD/pages/2562228372/Payment+Orders#Order-initialization |
Get Order Payment Detail | Mandatory | Endpoint to get payment detail after redirect back to merchant (and/or after reasonable time when no redirect happens) | This endpoint needs to be called after the payer is redirected back to merchant’s page/app (thank you page or failure page in case of cancel) to get current status of the payment (merchant receives payment ID in the query parameter when redirect URL is called). The order needs to be find based on the payment ID provided in the redirect (merchant need to ensure the order related to this particular payment is being processed based on the payment result). This endpoint can be called also in some reasonable time period after the payment has been initiated in the case the payer does not come back to merchant’s site/app (e.g. when the payer closes the browser before she/he is redirected back to merchant). Response of this endpoint can be used to double check the data against the data in initial order (amount, reference etc.) | https://everifin.atlassian.net/wiki/spaces/EPAD/pages/2562228372/Payment+Orders#Order-detail |
Order Withdrawal | Optional | Endpoint to withdraw the initiated payment by the merchant | In case the merchant needs to withdraw the payment that has been already initiated (endpoint Create Order Payment called successfully), this endpoint can be called. It is possible to withdraw the payment only in case the payment authorization has not start yet. The details when the withdrawal is possible is described in the doc | https://everifin.atlassian.net/wiki/spaces/EPAD/pages/2562228372/Payment+Orders#Order-withdrawal |
Edge cases handling
Situation | Handling |
---|---|
After redirect back to merchant, the payment is still in PROCESSING status. | In some rare cases it may happen the payment is not in final status at the moment of redirection back to merchant but still in PROCESSING status (i.e. the bank has not processed the payment yet). Merchant should inform the customer the payment is still being processed and that the customer will be notified once the payment is processed successfully (via email, in the customer’s e-shop account etc.). The merchant needs to implement background process of payment status checking (polling payment detail endpoint in some intervals, or, once available, use web hooks). |
Customer interrupts the payment process and does not return to merchant’s e-shop page. | These situations will be handled by web hooks functionality once it is implemented. Until then, it is possible to cover such scenarios by implementing regular payment status checks for the orders having initiated payments and lacking any activity for longer time period (e.g. 10 minutes). |