Tokenize the card

curl -X POST {CardRegistrationURL} \
  -H 'Content-Type: application/x-www-form-urlencoded' \
  -d '{
  "accessKeyRef": "ehvrHoPE6FpjCCAgmNvg",
  "data": "lhOJ6CFiDJPCXViyHjfcayh92nouB3AAaB5yqiLCBT6yjkLPCptmxsUdfffAc6EE4uj9AuSfmwbdfKN3BMechzUU3Gz8ectEx70TDeupudr",
  "cardNumber": "4970105181818183",
  "cardExpirationDate": "1229",
  "cardCvx": "123"
}'

data=acIcnwwLleiAvlZUea5VxYT1eCIn3MER8jyZXr-p8Bzb4Rm8GIA0MQtPs2NL7zPzPO_I7EjQm-m92V909JUL6KT-PmPzJfAQZV_8PIz6wKvjorGNaNd8Mg1rqN6eBpS5Nx0xgKTVnyDj15oG8jR875  

POST

{CardRegistrationURL}

curl -X POST {CardRegistrationURL} \
  -H 'Content-Type: application/x-www-form-urlencoded' \
  -d '{
  "accessKeyRef": "ehvrHoPE6FpjCCAgmNvg",
  "data": "lhOJ6CFiDJPCXViyHjfcayh92nouB3AAaB5yqiLCBT6yjkLPCptmxsUdfffAc6EE4uj9AuSfmwbdfKN3BMechzUU3Gz8ectEx70TDeupudr",
  "cardNumber": "4970105181818183",
  "cardExpirationDate": "1229",
  "cardCvx": "123"
}'

data=acIcnwwLleiAvlZUea5VxYT1eCIn3MER8jyZXr-p8Bzb4Rm8GIA0MQtPs2NL7zPzPO_I7EjQm-m92V909JUL6KT-PmPzJfAQZV_8PIz6wKvjorGNaNd8Mg1rqN6eBpS5Nx0xgKTVnyDj15oG8jR875  

This call sends the necessary information to a PCI-DSS-compliant tokenization server without reaching Mangopay’s servers. The URL to use for this endpoint is returned in the CardRegistrationURL parameter on the POST Create a Card Registration call. The request must be made using the “application/x-www-form-urlencoded” content type.

Note – Do not hardcode the URLThe CardRegistrationURL is specific to each payment. You must rely on the returned URL in full (host, path, and queries) and not hardcode any part of it.

Caution – Card details must never pass via your serverFor security reasons, it is strictly forbidden to send the card details to your own server. You must rely on the dedicated PCI-DSS-compliant tokenization server by using the endpoint provided.

Body parameters

accessKeyRef

string

required

The value of the AccessKey attribute returned when creating a Card Registration.

data

string

required

The value of the PreregistrationData attribute returned when creating a Card Registration.

cardNumber

string

required

The number of the card to be tokenized.

cardExpirationDate

string

required

Format: “MMYY”The expiration date of the card.

cardCvx

string

required

The card verification code (CVC) of the card (on the back, usually 3 digits).

Responses

200

The string returned by the tokenization server. This string must be sent in full as the RegistrationData on the PUT Update a Card Registration endpoint to create the Card object.

data=acIcnwwLleiAvlZUea5VxYT1eCIn3MER8jyZXr-p8Bzb4Rm8GIA0MQtPs2NL7zPzPO_I7EjQm-m92V909JUL6KT-PmPzJfAQZV_8PIz6wKvjorGNaNd8Mg1rqN6eBpS5Nx0xgKTVnyDj15oG8jR875  

curl -X POST {CardRegistrationURL} \
  -H 'Content-Type: application/x-www-form-urlencoded' \
  -d '{
  "accessKeyRef": "ehvrHoPE6FpjCCAgmNvg",
  "data": "lhOJ6CFiDJPCXViyHjfcayh92nouB3AAaB5yqiLCBT6yjkLPCptmxsUdfffAc6EE4uj9AuSfmwbdfKN3BMechzUU3Gz8ectEx70TDeupudr",
  "cardNumber": "4970105181818183",
  "cardExpirationDate": "1229",
  "cardCvx": "123"
}'

Create a Card Registration Update a Card Registration

⌘I

Overview

User management

User verification

Wallets

Cards

Card pay-ins

Banking pay-ins

APM pay-ins

Transfers

Refunds

Disputes

Payouts

FX conversions

Transactions

Echo

Helpers

Platform account

Body parameters

Responses

Overview

User management

User verification

Wallets

Cards

Card pay-ins

Banking pay-ins

APM pay-ins

Transfers

Refunds

Disputes

Payouts

FX conversions

Transactions

Echo

Helpers

Platform account

​Body parameters

​Responses

Body parameters

Responses