...
The following table describes how you can generate the Hash values to validate | Multiexcerpt include |
|---|
| SpaceWithExcerpt | EN |
|---|
| MultiExcerptName | Platform-Name |
|---|
| PageWithExcerpt | Wording |
|---|
|
response that you received:
Computop Support | Multiexcerpt include |
|---|
| SpaceWithExcerpt | EN |
|---|
| MultiExcerptName | Helpdesk-Name |
|---|
| PageWithExcerpt | Wording |
|---|
|
, which supplies you with the Hash password. |
2 | The HMAC value is calculated with the aid of the password and several parameter values. For the calculation, the parameters PayID, TransID, MerchantID, Status and Code are used and separated with asterisks: PayID*TransID*MerchantID*Status*Code
|
PayId PayIdPayId PayID returned by | Multiexcerpt include |
|---|
| SpaceWithExcerpt | EN |
|---|
| MultiExcerptName | Platform-Name |
|---|
| PageWithExcerpt | Wording |
|---|
|
|
|
TransId| TransID | Your transactionId to reference / identify your request | Your own reference to identify each request / payment process. |
|
MerchantId MerchantId | MerchantID assigned to you by |
|
Computop | Multiexcerpt include |
|---|
| SpaceWithExcerpt | EN |
|---|
| MultiExcerptName | Partner-Name |
|---|
| PageWithExcerpt | Wording |
|---|
|
| Your |
|
MerchantId | MerchantID identifiying this request. | | Status | Status in response | Status of response, e.g. AUTHORIZED, FAILED, OK, ... | | Code | Code in response | Code of response, e.g. 00000000, 22720040, ... | | YourHmacPasswort | Your MAC-password assigned to you by |
|
Computop | Multiexcerpt include |
|---|
| SpaceWithExcerpt | EN |
|---|
| MultiExcerptName | Partner-Name |
|---|
| PageWithExcerpt | Wording |
|---|
|
| Your MAC-password assigned to a specific MID; if you have different MIDs you will have different MAC passwords, too. |
| Samples for MAC calculation | Formula | Result |
|---|
| Authorized payment | sha256("7bbb448155234d8cbee323778952ce28*TID-12033175321270170232*yourMerchantId*AUTHORIZED*00000000", "mySecret") | 4CDCB4DE587AC210F21DE0591689B920CF56D89B38D4C7B1B7F8867BFC93E02C | | Failed payment | sha256("7bbb448155234d8cbee323778952ce28*TID-12033175321270170232*yourMerchantId*FAILED*22720040", "mySecret") | 0061D6AD2951C46A5507C3CA6B6236A32FD14ABA285722E87AF2A329FBDEFACD |
|
3 | Use the MAC SHA-256 algorithm, which nearly all programming languages support, in order to calculate the Hash value with the password and the parameter values. |
4 | Verify - the MAC-value from
| Multiexcerpt include |
|---|
| SpaceWithExcerpt | EN |
|---|
| MultiExcerptName | Platform-Name |
|---|
| PageWithExcerpt | Wording |
|---|
|
response that you received - with the MAC value that you calculated yourself
to ensure that the message you have received is authentic. |
| Info |
|---|
| title | Check your implementation |
|---|
|
You can find an easy application to check the implementation of your MAC calculation here: https://computop.com/paygate-test The application also allows to play with our | Multiexcerpt include |
|---|
| SpaceWithExcerpt | EN |
|---|
| MultiExcerptName | Platform-Kurz |
|---|
| PageWithExcerpt | Wording |
|---|
|
API - just use your MerchantID and Blowfish-Password that you already have received. |
The MAC parameter is only returned to the Success URLSuccess or Failure URL URLFailure and for Notifys.Important: Passwords may never be send via email, because in this case immediately the security of encrypted Requests/Responses is no longer assured. If accidentally passwords were sent via email, new passwords must be deposited at the merchant's expense with a single process or during next standard release. | Multiexcerpt include |
|---|
| SpaceWithExcerpt | EN |
|---|
| MultiExcerptName | Partner-Name |
|---|
| PageWithExcerpt | Wording |
|---|
|
explicitly point on the risikrisk of further using such compromised MIDs. If a merchant nevertheless continues such a compromised MID, he bears the liability risk for possible losses due to the compromised passwords on his own.
