Card

The Card method enables payments using encrypted, single use network payment tokens and dynamic data provided by a card network for machine-initiated transactions. Payment tokens, such as those provided by Visa Intelligent Commerce, settle through existing card infrastructure, and the client and server can each use independent payment providers rather than sharing a single platform.

The mpp-card SDK implements the card method with the charge intent. The protocol is defined in the Card Network Charge Intent specification.

Installation

How it works

1. Client requests a resource from the server.
2. Server responds with 402 and a Challenge containing the amount, currency, accepted card networks, and an RSA public key (encryptionJwk).
3. Client sends the card identifier and challenge context to a credential issuer.
4. Credential Issuer provisions a network token, generates a cryptogram, and encrypts both as a JWE using the server's public key. The encrypted token is returned to the client.
5. Client retries the original request with an Authorization: Payment header containing the encrypted credential.
6. Server decrypts the token using its private key and forwards it to the payment gateway for authorization through the card network.
7. Server returns the resource with a Payment-Receipt header confirming the charge.

Intents