Pay with tokenized CVV

Last updated: December 6, 2023

Our Frames Mobile SDKs for Android and iOS allow you to tokenize a Card Verification Value (CVV), so that you can process transactions with stored card details. With this tokenization process, you do not have to store any sensitive information.

Note

You must be SAQ-A compliant to use this feature.
Some regions require you to send a security code when you perform a payment with a stored card. To remain at PCI compliance level SAQ-A, you can use the SDK's security code component to securely tokenize a security code.

To perform a payment with the tokenized CVV, pass the value into the request's source.cvv field. The token ID is prefixed with tok_.

post

https://api.checkout.com/payments


1{
2  "source": {
3    "type": "instrumentid",
4    "id": "src_6pbkv36rtojuxosxczx34fes4u",
5    "cvv": "tok_ubfj2q76miwundwlk72vxt2i7q"
6  },
7  "amount": 5000,
8  "currency": "USD",
9  "payment_type": "Regular"
10}


1{
2  "id": "src_6pbkv36rtojuxosxczx34fes4u",
3  "action_id": "act_mbabizu24mvu3mela5njyhpit4",
4  "amount": 5000,
5  "currency": "USD",
6  "approved": true,
7  "status": "Authorized",
8  "auth_code": "770687",
9  "response_code": "10000",
10  "response_summary": "Approved",
11  "risk": {
12    "flagged": false,
13    "score": 0
14  },
15  "source": {
16    "id": "src_6pbkv36rtojuxosxczx34fes4u",
17    "type": "card",
18    "last4": "4242",
19    "fingerprint": "F31828E2BDABAE63EB694903825CDD36041CC6ED461440B81415895855502832",
20    "bin": "424242"
21  },
22  "processed_on": "2024-09-10T10:11:12Z",
23  "reference": "ORD-5023-4E89",
24  "scheme_id": "489341065491658",
25  "links": {
26    "self": {
27      "href": "https://api.checkout.com/payments/pay_mbabizu24mvu3mela5njyhpit4"
28    },
29    "action": {
30      "href": "https://api.checkout.com/payments/pay_mbabizu24mvu3mela5njyhpit4/actions"
31    },
32    "void": {
33      "href": "https://api.checkout.com/payments/pay_mbabizu24mvu3mela5njyhpit4/captures"
34    },
35    "capture": {
36      "href": "https://api.checkout.com/payments/pay_mbabizu24mvu3mela5njyhpit4/voids"
37    }
38  }
39}

If the payment failed due to an issue with the CVV token, you'll receive a 422 response with one of the following error messages:

cvv_token_invalid
cvv_token_used
cvv_token_expired

Pay with tokenized CVV

Note

Request a payment with a stored CVV

Request example

Response example