Commonalities between the different bank API

All those credit card payment API have in common to use some kind of HMAC signature to ensure integrity on the exchanged message with the bank server. SPPlus also use DES enciphering of the HMAC key, but the ciphering key is hidden in the source code of the kit which is stupid. ATOP/SIPS seems to use the DES symetric cipher but as the source code is not available we can not tell if it used for confidentiality of the messages.

Transaction id

Transaction id is automatically generated to conform to the different API constraints (some accept 6 digits, other 20 alphanumeric characters). The transaction id is made to be unique for a given day.

Documentation des différents fournisseurs d'API

Codes pour les tests

  • paybox : 1111222233334444, date dans le futur, 123.

guide_developpeur BANQUE POPULAIRE.pdf (438 ko) Benjamin Dauvergne, 09 fév. 2016 11:05

Worldline Benelux_Sips_Technical_integration_guide_Version_1.5.pdf (1,07 Mo) Benjamin Dauvergne, 09 fév. 2016 11:06

Guide_d_implementation_formulaire_paiement_PayZen_v3.5.pdf (1,53 Mo) Benjamin Dauvergne, 09 fév. 2016 11:07

WLSIPS.310.18.A.16R1.en_UG_Sips_Office_JSON.WS.pdf (806 ko) Frédéric Péters, 17 mai 2016 11:10

Formats disponibles : PDF HTML TXT