INTRODUCTION
Paygate REST API enables you to process and manage payments using a variety of payment methods. The API accepts and returns JSON in the HTTP body, and returns standard HTTP response codes. The API is built based on REST principles, ensuring that it is a well defined, easy to understand and predictable API.
SECURITY
Paygate REST API is maximally secure while being easy to implement. API is not duplicating equivalent safety measures and not sending sensitive information when it’s not required. End-to-end safety on the transport level is guaranteed by the HTTPS-requirement, so there is no need to encrypt the data itself again.
Paygate REST API only supports TLS 1.2 (or higher). Connection is not possible when using a lower version.HTTPS mitigates packet sniffing and timing & replay attacks. Thanks to HTTPS, data exchanged is protected and guaranteed to be authentic.HTTPS implements hashed signatures, nonces and other tried and tested cryptographic safeties.
When using Paygate payment forms, all sensitive payment information is entered into our PCI DSS certified platform.
AUTHENTICATION
Paygate REST API offers two ways of Authentication
1. HTTP Basic Authentication
Paygate REST API uses HTTP Basic Authentication as authentication method. Your merchantId serves as "username" and your API key as "password". Both values will be shared with you during you Merchant account creation. Your system sends HTTP requests with the Authorization header that contains the word Basic word followed by a space and a base64-encoded string username:password.
2. OAuth 2
Paygate REST API supports the Client Credentials Flow, which involves an application exchanging its application credentials, such as client ID (your merchantd) and client secret (your API key), for an access token. Tokens are requested towards Token URL: https://test.computop-paygate.com/authorization/oauth/token (for Test system) or https://www.computop-paygate.com/authorization/oauth (for Production system) using standardized framework: https://auth0.com/docs/get-started/authentication-and-authorization-flow/call-your-api-using-the-client-credentials-flow
Contact the developer
Please find out REST API here: https://app.swaggerhub.com/apis-docs/Computop/Paygate_REST_API/0.3