Skip to main content

HF Process with Encrypted Data

Process a payment using fully encrypted card data including card number, cardholder name, expiry date, and CVV.

Endpoint Information

Name: Hosted Fields Process with Encrypted Card Data and Customer Token
Method: POST
URL: {{BASE_URL}}/api/v1/payment/hf-process-transaction

Authentication

Type: Basic Auth

  • Username: App Key
  • Password: Secret Key

Request Body

Content-Type: application/json

{
    "customerToken": "2e7dcfb6fb2d84d1c7740bc5fef2e3aa",
    "currency": "EUR",
    "amount": "1000",
    "webhookUrl": "https://example.com/transaction-result/webhook?operatorId=100643&locale=en",
    "solutionUniqueId": ["6a9b09ea-3313-4577-a6de-f9be9d04caf1"],
    "merchantAccountId": "100643",
    "card_name": "gcBqQaEykuq/kIBl5dfa+MzuT0rx5eN6PiB+Tr+6LwqI8NlWiRxGbTCyivJbLf1+MYfUpKjy7CIOBwEuDvpJbJV0FLhVxbbV07U6bf0oK+QqoXNWfMwyAoXwETcdG4tGUdDgL+Swbs9lbvkRonEx3ucNE33pB7oPGivZvzFz26uCmomC+/pagTP379Yp5MebjIKwlUygi90lX9BIafbWIjeQ09a4qENmrGEwPmJpby7FcB7mIeSoKIeRW8VtJQPUOyq4YeaxFEWgDK0BPYp+CpxSKHpQ68a2DP5bIWGE6aEF1QUgj1msOPuxM9W1ZcEXCq9VjzP/rIN6AO4HdhSptA==",
    "card": "MhQnymw22QorvinVObtaFsQgWuOwYKMY9eJgg+l3UD1KNCRaD1KFuXVQQ7ySuHrQFSiVpCZLlrBEHrLeJJiyRn/O2fOH9QI3UhavAnxFZHzdKNHfpa+XD7zmYwlEiHGvnGELUPaVS5coLM61R6cbeMA9dj2gS8MZFwJcKqOMohhw8BQOLmqrJayfkfARaiEAl6r8c1+X7B4+n8oAgK4ZbEU1asEChd4iDhY5E87LXzlHLMHLu8SQGhJj9z2JUnZrRKOOkh+j0qSfhAKOoF8P1qOf8Vtf8KLL9fgv7rMQJ7NqJqtmFeR2bltjPb2NR7qpmdG5sFGdnhbhOgr56GKC4Q==",
    "secret": "hJttJGsNkYQOP+VnIonwIRhPJI7icZcrRCUoqqhBveeSZ/FOEn1Wxlgaaz17Jsme5SNunPeDlac+IpYLYeUClDKCDlU1BpVE6KFNUJBCHY6PNwo9sjVpfcCoCtqrst5D53AMxK7LCop0STpMuQEBza59DVKdiyYPt4t+RNBmjONQrlN3PvnVcXKarApRlwXtOnbjfm2qDgOEjJCmFjJYUGhIfELs1xb+0yup/6+OCP4mpsV0udXc4kQEqpbUuqQ5zYQkM+69/Kzw3nR7o63yNsHVpk30hS41u3pNtUZkglPECdrSuWqBazZHZJuYP+zjfozpDb63YZPZv8q7T1fyKQ==",
    "expiry_date": "QKDjud9HT3tA8EmrZNuYz5CXyqXWF6xC4OrhS/csSMTmAQvzg7HXPd2RBsqA1wHRut8NUtpk2V+6tPoj53G8dap73QpSifkqy9jQj6msxQW+Xv5uua0SOOiJYHc/QDLlmBXCL5wasRgihrAnQQp2Mud04/1tMWx2r4V6sVXEaswiCGHNyHtpzs15JDFE7X26gczUG+B64QjwSUPxKhbYSxA/QEoZB/NILebQAF8BhFMfV48SvbV7AW5B2VTgH3HVVTlTjXB9csVRYRgVWy7qCSw9+fZvrZhDbjtIt3OjX70u4rvkK/TaGuDQsx7vohE6zPZOr+I38ekaRCTxAwC4vw==",
    "customerBrowserUserAgent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36",
    "customerIP": "103.213.242.81",
    "is_hosted_fields_encrypted": true // Required - must be true
}
warning

Important: All card data fields (card_name, card, expiry_date, secret) must be encrypted using the Paymid Hosted Fields encryption library before sending to the API.

{
    "success": true,
    "message": "Payment processed successfully",
    "data": {
        "reference": "auto_generated_ref_123",
        "status": "Accepted",
        "transactionId": "txn_encrypted_789xyz",
        "amount": "1000.00",
        "currency": "EUR",
        "processorReference": "PROC_ENC_456789",
        "cardBrand": "Visa",
        "lastFourDigits": "4242",
        "createdAt": "2025-12-28 12:45:20"
    }
}
warning

Note: This method provides maximum security as card data is encrypted on the client side before transmission. The encryption library can be obtained from your Paymid account dashboard. All encrypted fields are Base64-encoded encrypted strings.