Links

Vault

Server-to-Server API to create tokens for PAN, CVV codes or custom values.
The Vault API allows you to directly interact with the PCI Proxy tokenisation vault. Simply pass your data directly from your server to the Vault endpoint to replace them with tokens. The API supports single as well as bulk tokenisation for credit card numbers, cvv codes and custom values.
Please consider the following constraints when using the Vault API:
  • For bulk tokenisation the maximum number of requests per batch is 100
  • For custom values we do not apply any form of validation
  • Please also consider the PCI DSS requirements below
Only PCI DSS compliant merchants are allowed to use the Vault API as it consumes plain text card data. Exemptions can be granted for a limited period of time if there is a valid business reason such as for instance initial card-to-token migrations or collection of non-sensitive data. For any sensitive data collected through client based apps, please use the Secure Fields or the Mobile SDKs integration.

Implementation

Learn below how to build the request. You can find as well an example request and response.

Endpoints

1. Request access

Due to increased security risk, the Vault API needs to be activated for your merchantId. Please get in touch with our team to activate it for you.

2. Tokenisation Request

post
https://api.sandbox.datatrans.com
/v1/aliases/tokenize
Vault API

Example

Request
Response
curl -L -X POST 'https://api.sandbox.datatrans.com/v1/aliases/tokenize' \
-H 'Authorization: {merchantId}:{password}' \
-H 'Content-Type: application/json' \
--data-raw '{
"requests": [
{
"type": "CARD",
"pan": "4242424242424242",
"expiryMonth": "05",
"expiryYear": "21"
},
{
"type": "CVV",
"cvv": "123"
},
{
"type": "CUSTOM",
"custom": "John Doe"
}
]
}'
{
"overview": {
"total": 3,
"successful": 3,
"failed": 0
},
"responses": [
{
"type": "CARD",
"alias": "AGhFLt-mj0BfI3XN",
"maskedCC": "424242xxxxxx4242",
"fingerprint": "F-dV5V8dE0SZLoTurWbq2HZp"
},
{
"type": "CVV",
"alias": "Il2ob3L2QgqoxvkqCi0UcJw5",
"expiryDate": "2024-06-02T09:52:08Z"
},
{
"type": "CUSTOM",
"alias": "3_FtAG15RdCcRb-gC8tBwg=="
}
]
}

Detokenisation

Please refer to the reverse Vault API if you need to convert sensitive data back to clear text values.