SCA
Event | Description | Applicable Methods |
---|---|---|
| Emitted when 3DS validation completes successfully. The liability shifts from merchant to the card issuer. Please note: The edge case is when the enrolled field (ver) comes back as 'N' (3DS success - Not Enrolled), which means "No, Bank is not participating in 3-D Secure protocol". If the Enrolled value is equal to N, then the Consumer is NOT eligible for Authentication (No liability shift). Most merchants choose to continue with these transactions, because otherwise in many cases it would be stopping customers from making legitimate transactions. | |
| Emitted when 3DS enrolment or validation failed. The payment attempt is deemed risky and merchant shall not proceed with the payment. |
fz.sca.success Data Payload
Attribute | Type | Description |
---|---|---|
| string | Account Authentication Value. Unique 32-character transaction token for a 3D Secure transaction. For Mastercard Identity Check, the AAV is named the UCAF. For Visa Secure, the AAV is named the CAVV. |
| string | Cardholder Authentication Verification Value. A Base64-encoded string sent back with Visa Secure-enrolled cards that specifically identifies the transaction with the issuing bank and Visa. Standard for collecting and sending AAV data for Visa Secure transactions. |
| string | Payer Authentication Response. Compressed, Base64-encoded response from the card-issuing bank |
| string | The Security Level Indicator for 3DS transactions |
| string | String used by both Visa and Mastercard which identifies a specific transaction on the Directory Servers. This string value should remain consistent throughout a transaction’s history. |
| string | Universal Cardholder Authentication Field. Mastercard only. |
| string | 3DS enrolment status. |
| string | Directory server transaction Id |
| string | 3DS version used for verifying the intended payment. |
{
message: "xxx",
data: {
aav: "xxx",
cavv: "xxx",
par: "xxx",
sli: "xxx",
xid: "xxx",
ucaf: "xxx",
ver: "xxx",
directoryServerTxnId: "xxx",
threedsVersion: "xxx",
}
}
fz.sca.error Data Payload
Attribute | Type | Description |
---|---|---|
| string | Error code for specific 3DS/SCA failure scenario. errorCode will be not be present in the event of request timeout or server error See below for error code mapping. |
// Request timeout, server error, etc. Prompt user to retry.
{
errors: ["xxx"],
data: null
}
// 3DS2 authentication failed. The card is deemed risky by issuer.
{
errors: ["xxx"],
data: {
errorCode: "xxx"
}
}
3DS/SCA Error Code Mapping
Error Code | Description |
---|---|
| Bypassed authentication |
| Authentication not available on lookup |
| Unavailable frictionless authentication |
| Unsuccessful frictionless authentication |
| Rejected frictionless authentication -- |
| Unsuccessful step-up authentication |
| Unavailable step-up authentication |
Updated 7 days ago