Wiki¶
Commonalities between the different bank API¶
All those credit card payment API have in common to use some kind of HMAC signature to ensure integrity on the exchanged message with the bank server. SPPlus also use DES enciphering of the HMAC key, but the ciphering key is hidden in the source code of the kit which is stupid. ATOP/SIPS seems to use the DES symetric cipher but as the source code is not available we can not tell if it used for confidentiality of the messages.
Transaction id¶
Transaction id is automatically generated to conform to the different API constraints (some accept 6 digits, other 20 alphanumeric characters). The transaction id is made to be unique for a given day.
Documentation des différents fournisseurs d'API¶
- sips attachment:"guide_developpeur BANQUE POPULAIRE.pdf"
- sips2 Worldline Benelux_Sips_Technical_integration_guide_Version_1.5.pdf
- payzen Guide_d_implementation_formulaire_paiement_PayZen_v3.5.pdf
- ogone Intégration avec Ogone e-Commerce
- tous les codes de statut : https://epayments-support.ingenico.com/en/get-started/transaction-status-full/
- paybox La solution Paybox System et une documentation pdf
- TIPI
- https://documentation.sips.worldline.com/fr/
Codes pour les tests¶
- paybox : 1111222233334444, date dans le futur, 123.