POST
{CardRegistrationURL}

This call sends the necessary information to a PCI-DSS-compliant tokenization server without reaching Mangopay’s servers.

The URL to use for this endpoint is returned in the CardRegistrationURL parameter on the POST Create a Card Registration call.

The request must be made using the “application/x-www-form-urlencoded” content type.

Note – Do not hardcode the URL

The CardRegistrationURL is specific to each payment. You must rely on the returned URL in full (host, path, and queries) and not hardcode any part of it.

Caution – Card details must never pass via your server

For security reasons, it is strictly forbidden to send the card details to your own server. You must rely on the dedicated PCI-DSS-compliant tokenization server by using the endpoint provided.

Body parameters

accessKeyRef
string
required

The value of the AccessKey attribute returned when creating a Card Registration.

data
string
required

The value of the PreregistrationData attribute returned when creating a Card Registration.

cardNumber
string
required

The number of the card to be tokenized.

cardExpirationDate
string
required

Format: “MMYY”

The expiration date of the card.

cardCvx
string
required

The card verification code (CVC) of the card (on the back, usually 3 digits).

Responses