Authorize.net API Documentation - Mobile In-App Transactions

Search Developer Site

Mobile In-App Transactions

The Authorize.net Accept Mobile SDKs for Apple Pay and Google Pay enable mobile developers to integrate credit card payment functionality into their mobile applications without passing sensitive card data back to their application servers. For example, you can accept credit card data directly, or use the Apple Pay or Google Pay services on your customer's phone.

For information about in-person payments using a mobile point-of-sale application, see the In-Person SDK.

Resources

Accept Mobile SDK

Obtaining a Public Client Key

Use a public client key to secure payment data sent to Authorize.net.

To obtain a public client key:

Step 1. Log in to the Authorize.net Merchant Interface using an administrator account.

Step 2. Navigate to Account > Settings > Security Settings > General Settings > Manage Public Client Key.

Step 3. In the section Create New Public Client Key, click Submit. Request and verify a PIN to complete the public client key process. The client key appears as a string.

Securing the Payment Data

Use the Accept Mobile SDK to dispatch the payment data and receive a secure payment nonce (one-time-use token). For sample code, see our GitHub page for either iOS or Android.

Using the Secure Payment Nonce

The secure payment nonce can be used anywhere in the Authorize.net API in place of credit card data. See our API Reference for an example of a payment transaction.

Apple Pay

To use Apple Pay to submit payment transactions, follow the processes below.

Create an Apple Merchant ID

You must create an Apple merchant ID before you can generate the Certificate Signing Request (CSR) that Apple Pay requires. See Apple's documentation on setting up Apple Pay requirements for details.

Signing Up for the Service

Apple Pay uses payment network tokenization. If your processor does not support payment network tokenization, or if Authorize.net does not support your payment processor's tokenization interface, you cannot sign up for Apple Pay through Authorize.net.

To sign up for Apple Pay:

Step 1. In the Authorize.net Merchant Interface, navigate to Account > Settings > Digital Payment Solutions. The available digital payment solutions appear.

Step 2. In the Apple Pay section, click Sign Up.

Step 3. Enter your Apple Merchant ID and click Generate Apple CSR. The Apple CSR appears.

Generating the CSR

You must submit a Certificate Signing Request (CSR) to Apple in order to receive a payment processing certificate. The certificate enables Authorize.net to decrypt the payment data in your Apple Pay requests.

To generate the CSR:

Step 1. Log in to the Authorize.net Merchant Interface.

Step 2. Navigate to Tools > Digital Payments Solutions > Apple Pay.

Step 3. Enter your Apple Merchant ID in the Apple Merchant ID field.

Step 4. Click Generate Apple CSR.

Submitting the CSR File to Apple

See Apple's documentation on setting up Apple Pay requirements for details. Use the CSR that you created in Authorize.net instead of creating a new CSR.

Apple Pay Transactions

To process an Apple Pay transaction, use the createTransactionRequest API call with the opaqueData field instead of payment information such as a credit card, bank account, or customer profile. For more information on submitting the payment request, see the Apple Pay section of the API Reference Guide.

Important: Keep the following points in mind when submitting Apple Pay transactions:

Specify both opaque parameters.
You cannot include a card number or expiration date.
You cannot include track data.
The transaction must be an e-commerce transaction. To submit card-not-present transactions through the Authorize.net API, set marketType=0 in the createTransactonRequest API call. If you do not submit the marketType field, the payment gateway will use its default transaction type setting.
Set the transactionType to authCaptureTransaction or authOnlyTransaction.
You cannot include 3D Secure data.
You must submit data that can be successfully decrypted.
Decrypted data must belong to the merchant submitting the request.
The submitted data must be Base64-encoded.

Identifying Apple Pay Transactions in the Merchant Interface

You can identify Apple Pay transactions in the Transaction Detail view of the Authorize.net Merchant Interface.

To identify an Apple Pay transaction:

Step 1. Log in to the Authorize.net Merchant Interface and navigate to Reports > Transaction Detail.

Step 2. Choose an item type and a date from their respective drop-down menus and click Run Report.

Step 3. Choose a transaction by clicking its transaction ID.

The Transaction Details lightbox appears. Apple Pay information appears in the Tokenization Information section.

Google Pay™

The Google Pay API enables merchants to accept payments from Google Pay users without entering payment information manually.

Google Pay supports transactions paid through American Express, Discover, JCB, Mastercard, and Visa payment cards. For authorizations, Google Pay also supports the following authorization methods:

PAN_ONLY for receiving personal account numbers (PAN) from Google Pay
CRYPTOGRAM_3DS for receiving network tokens and cryptograms from Google Pay

Merchants using Google Pay can pass billing information with their transactions for AVS checks. Contact your Merchant Service Provider to confirm the minimum billing address requirements that they set.

Web Integration in JavaScript

The integration steps for the Google Pay SDK are based on the steps listed in the Google Pay integration tutorial. The details below explain how to use your Authorize.net account to request and use Google Pay payment network tokens.

Choosing a Payment Tokenization Method

Google Pay uses the Authorize.net account's payment gateway ID to identify the merchant. See What is My Payment Gateway ID? for instructions on finding the payment gateway ID.

In the Google Pay integration tutorial, Step 2 explains how to set the payment tokenization method. For the parameters object, set the gateway field to authorizenet, and set the gatewayMerchantId field to your Authorize.net account's payment gateway ID.

See below for an example of how the fields would appear in the JavaScript code.

tokenizationType: 'PAYMENT_GATEWAY',
	parameters: {
	    gateway: 'authorizenet',
    	gatewayMerchantId: '[your Authorize.net payment gateway ID]'
			}

Using the Payment Network Token

After obtaining a payment network token from Google Pay, encode the token's blob using Base64:

let token = paymentData.paymentMethodToken.token;
var enc = window.btoa(token);

Submit a createTransactionRequest API call. Set the dataDescriptor field to COMMON.GOOGLE.INAPP.PAYMENT, and set the dataValue field to the Base64-encoded blob.

See the Google Pay section of the API Reference for a sample API request.

Phone Application Integration in Java