> ## Documentation Index > Fetch the complete documentation index at: https://docs.mangopay.com/llms.txt > Use this file to discover all available pages before exploring further. # Checkout Web integration This guide helps you get started with the Checkout SDK on web browsers. **Prerequisite** * A Mangopay ClientId and API key (get a Sandbox API key for free) * A User and their associated Wallet to complete the pay-in * A card to register or payment method setup (see [Testing - Payment methods](/testing/payment-methods) for testing information) **Supported browsers:** Chrome 117, Firefox 118, Safari 16, or higher {/* To support you with your integration, be sure to make use of our example app on GitHub, which has a deployed demo. */} ## Installation You can install the Mangopay Checkout SDK using [npm](https://www.npmjs.com/package/@mangopay/checkout-sdk) or yarn. Install with npm: ```shell theme={null} npm install --save @mangopay/checkout-sdk ``` Install with yarn: ```shell theme={null} yarn add @mangopay/checkout-sdk ``` #### Install via CDN If you are using script tags to load files, include the Mangopay SDK script in your HTML: ```html theme={null} ``` **Warning – Load script from Mangopay Checkout domain** To maintain PCI compliance, the script must be loaded directly from the Mangopay Checkout domain: > http://checkout.mangopay.com The script must not be bundled or hosted on other domains. You must reference it directly from our domain. ### Content Security Policy (CSP) **Caution - Allow policies if using CSP** If your web page is using the Content-Security-Policy response header, you need to allow the policies below.
Policy URLs
script-src \*.google.com
connect-src api.mangopay.com api.sandbox.mangopay.com \*.payline.com
## Initialization Initialize the SDK and specify the configuration options. ```javascript Example - Initialization theme={null} import { CheckoutSdk } from '@mangopay/checkout-sdk'; const mangopaySdk = await CheckoutSdk.loadCheckoutSdk(elementOrSelector, options); ``` ### Initialization parameters
Property Type Description
`elementOrSelector` HTMLElement | String **REQUIRED** The container element or the selector of the container element.
`options` Object \ **REQUIRED** The options of the Checkout SDK configuration.
### options The child parameters of the `options` object parameter:
Property Type Description
`clientId` String **REQUIRED** The unique identifier associated with the Mangopay API key, giving access to the Mangopay API.
`environment` String The Mangopay environment. \ **Allowed values:** SANDBOX, PRODUCTION\ **Default values:** SANDBOX
`profilingMerchantId` String **REQUIRED** The unique identifier associated with your fraud protection package. Contact Mangopay to obtain this value.
`amount` String **REQUIRED** Information about the debited funds. The currency (ISO\_4217 format) and value (expressed in minor units) of the debited funds.
`paymentMethods` Array **REQUIRED** The payment methods presented to the user. Array of objects detailing the `type` and configuration `options` for specific payment methods. Each payment method includes configuration options tailored to its specific requirements.
`respectPaymentMethodsOrder` Boolean Controls how payment methods are ordered and which one is initially active. When `true`, the SDK renders methods in the order provided by `paymentMethods` and the first item in that array becomes the initial selection. When `false` (default), `card` is rendered first and used as the initial selection; other methods are rendered in an order determined by the SDK. **Default value:** `false`
`branding` Object The custom branding of the payment page (see Customization section below).
`locale` String | Object The language for the payment page. Specify one of the built-in languages (`en`, `fr`) or send an object with custom messages (see Customization section below).
`tenantId` String The Mangopay tenant being used by the platform. Platforms that have contracted with Mangopay’s UK entity must set the value to `UK`. **Allowed values:** `EU`, `UK` **Default value:** `EU`
`clientToken` String A token used to authenticate and enable specific SDK features. Today, only [PayPal One-Click](#configuring-paypal-one-click-payments) requires a `clientToken` (PayPal without One-Click and other payment methods do not require it). Obtain the `clientToken` from your server before initializing the SDK - see the [PayPal One-Click](#configuring-paypal-one-click-payments) section for details.
## Configuration Configure the MangopayCheckout parameters and delegates. ### Example - Vanilla JS ```html HTML theme={null}
``` ```javascript JavaScript theme={null} window.addEventListener('load', async () => { const mangopaySdk = await CheckoutSdk.loadCheckoutSdk('#container', options); if (!mangopaySdk) { throw new Error('Failed to load MangopayCheckoutSdk'); } mangopaySdk.on('error', (event: CustomEvent) => console.error(event.detail)); mangopaySdk.on('tokenizationComplete', (event: CustomEvent) => { // handle tokenization complete }); mangopaySdk.on('paymentComplete', (event: CustomEvent) => { // handle payment complete }); }); ``` ### Example - ReactJS ```javascript JavaScript theme={null} import { MangopayCheckout } from '@mangopay/checkout-sdk-react'; const CheckoutComponent = () => { const sdkRef = useRef(null); const onTokenizationComplete = () => { /* Handle Card/GooglePay/ApplePay token here e.g charge customer card using CardId */ }; const onPaymentComplete = () => { /* Handle Card/PayPal payment complete */ }; const onCancel = () => { /* Handle cancellation of payment */ }; return ( ) } ``` ### MangopayCheckout parameters
Property Type Description
`ref` React.RefObject\ React reference object: `import { MangopayCheckoutForwardedRef } from '@mangopay/checkout-sdk-react';`
`onPaymentComplete` Function(event) Triggered when the transaction is completed, whatever the outcome (whether successful or failed).
`options` Object Checkout SDK configuration options
`disabled` Boolean Applies a disabled state to the Checkout component such that user input is not accepted.
`onError` Function(event) Triggered when an internal SDK error has occurred.
`onLoaded` Function(event) Triggered when the Checkout SDK is loaded.
`onChange` Function(event) Triggered when data exposed by the Checkout SDK is changed.
`onTokenizationComplete` Function(event) Triggered when: * A card tokenization is completed and a `CardId` is returned. * The user authorizes a Google Pay or Apple Pay payment.
`onPaymentComplete` Function(event) Triggered when the transaction is completed, whatever the outcome (whether successful or failed).
`onCancel` Function() Triggered when the payment process is canceled by the user. This can occur when the 3D Secure authentication window or PayPal, Google Pay, or Apple Pay popup is closed before completion.
## Updating options After the SDK has been initialized you can update the options without needing to fully reinitialize again by using the `updateOptions` method. Make sure you pass a complete updated `options` object as specified in the Configuration section. ```js theme={null} import { CheckoutSdk } from '@mangopay/checkout-sdk'; const mangopaySdk = await CheckoutSdk.loadCheckoutSdk('#container', options); // update options mangopaySdk.updateOptions({...options, amount: {...options.amount, value: updatedValue}); ``` ## Handling redirection **Warning – Use Mangopay Checkout domain as return URL** When making the pay-in request from your backend, use the Mangopay Checkout URL as the `SecureModeReturnURL` or `ReturnURL` (depending on the payment method): > http://checkout.mangopay.com The user must be returned to this URL after redirection. Some payment methods (card, Google Pay, PayPal) require or may require the user to be redirected to authorize or complete a transaction. The Checkout SDK allows you to manage the entire payment flow seamlessly while retaining control over transaction logic in your backend. Once a payment method is selected and payment details are provided, use the `options.onCreatePayment` function to request the transaction from your backend. Subsequently, and when necessary for the transaction type, the Checkout SDK seamlessly manages additional redirect actions for 3DS authorization or otherwise validating the payment. To manage transaction redirects effectively with the SDK: In your `paymentMethods` configurations, define an `options.onCreatePayment` attribute as a function. * Request a transaction from your server and subsequently, Mangopay. * Return the unaltered transaction response object to the SDK. * Redirects the user to the payment authentication page when necessary. * Manages payment provider redirects back to the SDK. * Triggers the `onPaymentComplete` event with the ID and status of the transaction. * Confirms the redirect result on your server by invoking the corresponding GET API of the transaction. * Presents the payment result to the user. ```js theme={null} paymentMethods: [ { type: 'card | paypal | googlepay', onCreatePayment: function (event) { // 1. implement server-side call to request a transaction. // 2. return the card transaction object. } } ] ``` ## Configuring card payments To configure the card payment method, specify `card` as the `type` of the `paymentMethods` object. For the `options`, use the following configuration parameters. ### options
Property Type Description
`options.supportedCardBrands` Array **REQUIRED** The card brands supported.\ **Allowed values:** VISA, MASTERCARD, AMEX, MAESTRO, CB
`options.onCreateCardRegistration` Function **REQUIRED** Use this attribute to request and return a Card Registration.
`options.onCreatePayment` Function **REQUIRED** To handle 3DS redirects for card payments, use this attribute to request and return a pay-in.
`options.enableSaveCard` Boolean If set to `true`, a ***Save Card*** checkbox will appear in the UI. When checked, `SaveCard: true` will be returned in the `CreatePaymentData` object, and you can forward this flag to your backend for further handling (read more about [managing saved cards](#managing-saved-cards)).
`options.savedCards` Array of `SavedCard` A list of cards previously saved by the user. If provided, a button will appear within the card number input field that opens a dropdown of saved cards to select from.
`options.onDeactivateSavedCard` Function A callback that is triggered when the user chooses to deactivate a saved card. Receives an object containing `{ cardId: string }`. You can use this ID to inform your backend which card should be deactivated.
### Card configuration example ```typescript TypeScript theme={null} export interface CreatePaymentData { Id: string; Tag: string; CreationDate: string; UserId: string; CardId: string; CardType: string; Currency: string; PreferredCardNetwork?: 'VISA' | 'MASTERCARD' | 'CB' | 'MAESTRO'; ProfilingAttemptReference: string; SaveCard: boolean; } export interface SavedCard { Id: string; ExpirationDate: string; CreationDate: number; Alias: string; Tag?: string; CardProvider: CardBrand; CardType: string; Country: string; Product: string; BankCode: string; Active: boolean; Currency: string; Validity: string; UserId: string; CardHolderName: string; Fingerprint: string; PreferredCardNetwork?: CardBrand; } const options = { clientId: 'MANGOPAY_CLIENT_ID', environment: 'SANDBOX | PRODUCTION', amount: { value: 1000, currency: "EUR" }, paymentMethods: [ { type: 'card', enableSaveCard: true, // show the “Save Card” checkbox savedCards: [ { Id: '12345', ExpirationDate: '1026', CreationDate: 1692817000, Alias: 'XXXX XXXX XXXX 1234', CardProvider: 'MASTERCARD', CardType: 'CB_VISA_MASTERCARD', Country: 'FR', Product: 'Debit', BankCode: '01234', Active: true, Currency: 'EUR', Validity: 'VALID', UserId: '67890', CardHolderName: 'John Doe', Fingerprint: 'fing3rpr1nt' } ], onDeactivateSavedCard: function({ cardId }) { // 1. Call your server to remove card and deactivate in Mangopay API }, onCreateCardRegistration: function (cardType: 'CB_VISA_MASTERCARD' | 'AMEX' | 'MAESTRO') { // 1. Implement server-side call to create a card registration. // 2. Return the card registration. }, onCreatePayment: function (event: CreatePaymentData) { // 1. Implement server-side call to request a card transaction. // 2. Return the card transaction object. // 3. The SDK handles 3DS redirect for you. } } ] }; const mangopaySdk = await CheckoutSdk.loadCheckoutSdk(elementOrSelector, options); ``` ### Card tokenization In the `options` for the card payment method, create a function to handle creation of Card Registration event handler in the `paymentMethods` object: * Your `onCreateCardRegistration` function calls your server, and passes it the card brand of the user. * Your server makes a request to [Create a Card Registration](/api-reference/card-registrations/create-card-registration). * In response, your server receives a Card Registration object. * In your `onCreateCardRegistration` function, return the unmodified Card Registration object to the SDK. * The SDK [tokenizes the card](/api-reference/card-registrations/tokenize-card) and [updates the Card Registration](/api-reference/card-registrations/update-card-registration) object to create the `CardId` which is used for payment. ```typescript TypeScript theme={null} // Vanilla JS mangopaySdk.on('tokenizationComplete', (event: CustomEvent) => { // handle tokenization complete }); mangopaySdk.on('paymentComplete', (event: CustomEvent) => { // handle payment complete }); // React.js const onTokenizationComplete = () => { // handle tokenization complete }; const onPaymentComplete = () => { // handle payment complete }; ``` ### tokenizationComplete output ```json REST theme={null} { "Id": "cardreg_m_01HQ0J6GB3JFZ1NC5EGCJBE4PB", "Tag": null, "CreationDate": 1708342329, "UserId": "user_m_01HP6ZG0XXZ89V34GRZEY9HQCE", "AccessKey": "1X0m87dmM2LiwFgxPLBJ", "PreregistrationData": "YkgVxL1yNY4ZOfKtqEew_Zj34Eg4_H3r-UyvrLWB_MHYF1OqkWAtDMwDMZ0pSZfliRF4hvSrtJCvT7-9XAi0Xsj7Q1OS-vT4lpHzEztZoLs", "RegistrationData": "data=iN_eoipU7i2AEuTss7wuoPRZYTuNVHlTvhc4dEXHczhSWquUg8N2vrbXU91rCDepo0Fw6rcqxRBK8KMWk8xhHGOBEuIr9_d-Xo64K6cr5w-lY2yXbTUOs7e-S6CpTShm", "CardId": "card_m_01HQ0J6H02QXH3HATEYW0FMJKP", "CardType": "CB_VISA_MASTERCARD", "CardRegistrationURL": "https://pci.sandbox.mangopay.com/api/mangopay/vault/tokenize/eyJjbGllbnQiOiJjbGllbnRJZCIsInRva2VuIjoidW5xaXVlVG9rZW4ifQ==", "ResultCode": "000000", "ResultMessage": "Success", "Currency": "EUR", "Status": "VALIDATED", "ProfilingAttemptReference": "25e5c450-7f00-4805-af04-4330e4dc0cee" } ``` ### Requesting card pay-ins You can use a registered card (`CardId`) for requests with the following API objects: * [The Card Validation object](/api-reference/card-validations/card-validation-object), to validate a card without debit * [The Direct Card PayIn object](/api-reference/direct-card-payins/direct-card-payin-object), for one-shot card payments * [The Recurring PayIn Registration object](/api-reference/recurring-payin-registrations/recurring-payin-registration-object), for recurring card payments * [The Preauthorization object](/api-reference/preauthorizations/preauthorization-object), for 7-day preauthorized card payments * [The Deposit Preauthorization object](/api-reference/deposit-preauthorizations/deposit-preauthorization-object), for 30-day preauthorized card payments In your requests: * Ensure that the `SecureModeReturnURL` parameter is set to `https://checkout.mangopay.com` * Submit the `PreferredCardNetwork` value if it was received by `onCreatePayment` ### Managing saved cards The Checkout SDK can allow the user to save their card for a future payment. To enable saving cards, set `enableSaveCard` to `true` to present a ***Save card*** checkbox on the user interface. If the user doesn’t check the box, then the `CreatePaymentData` object returns `SaveCard : false`. In this case, you must systematically call [PUT Deactivate or edit a Card](/api-reference/cards/deactivate-edit-card) to deactivate it in the Mangopay API. If the user checks the box, the `SaveCard` flag is set to `true` and passed to your `onCreatePayment` handler. You can then store the card object in your system. To present the user's saved cards in the next payment session, send an array of card objects in the `savedCards` array in the payment method configuration. If sent, then a dropdown appears in the interface in the card number input field. When a saved card is selected, the SDK uses it for the payment process. In the dropdown, there is an option for the user to remove a saved card. In this case, the `onDeactivateSavedCard` is triggered and you must: * Remove the card in your system * Call [PUT Deactivate or edit a Card](/api-reference/cards/deactivate-edit-card) to deactivate it in the Mangopay API **Caution - Deactivate card systematically unless user saves it** Under no circumstances should card information be kept without the end user's approval. If `CreatePaymentData` returns `SaveCard : false`, indicating the user doesn't wish to save it, then you must call [PUT Deactivate or edit a Card](/api-reference/cards/deactivate-edit-card) to deactivate it in the Mangopay API. The same is true if the `onDeactivateSavedCard` is triggered, indicating that the user wishes to remove the card. ### Diagram - Saved cards The following diagram shows the flow of managing saved cards: