Firstoken API Docs
  • ⚙️API Reference
    • Firstoken API
      • Tokenization As A Service
        • Simple Tokenization
        • Simple Detokenization
        • Inspect Token
        • Delete Tokens
      • Transactions
        • Create a Transaction
        • Retrieve a Transaction
        • Inspect a Transaction
        • Delete a Transaction
        • Tokenize a Transaction
      • Proxy
        • Allowed Headers
        • Actions
        • Methods
          • POST - Proxy
          • GET - Proxy
          • PUT - Proxy
          • PATCH - Proxy
          • DELETE - Proxy
        • Get Payload Hash
        • Proxy JOSE
        • Proxy WSSEC
      • Inbound Routes
        • Create an Inbound - POST
      • Payments
        • Attributes of the Request
        • Common response
        • Endpoints
          • Authorizations
          • Reversals
          • Capture
            • Capture Refunds
            • Capture Void
          • Payments
            • Payment Refunds
            • Payment Void
          • Refunds void
          • Credit
            • Credit Void
          • Get Transaction Details
        • Decision Manager
          • How it works
          • Create decision
          • Update Decision
        • Risk Payer Authentication
          • How to use it
          • 3-D Secure Flows
            • Successful Frictionless Authentication
            • Unsuccessful Frictionless Authentication
            • Attempts Processing Frictionless Authentication
            • Unavailable Frictionless Authentication
            • Rejected Frictionless Authentication
            • Authentication not available on Lookup
            • Enrollment check error
            • Time-out
            • Bypassed Authentication
            • Successful Step-Up Authentication
            • Unsuccessful Step-Up Authentication
            • Unavailable Step-Up Authentication
            • Require Method URL
        • Point of Sale Payments
          • Authorization
          • Capture
          • Payment
          • Credit
  • 📖Guides
    • Firstoken Captures Hosted Iframe
      • How Firstoken Captures works
      • Generating a JSON Web Token
      • JSON form Schema
      • Iframe Communication
    • De-scoping Components
      • How Firstoken De-scoping Components works
      • Inbound Routes Module
        • Create an Inbound Route
        • Edit an Inbound Route
        • Delete an Inbound Route
      • Webhook Module
        • Create a Webhook
        • Edit a Webhook
        • Delete a Webhook
        • Webhook events
        • How to sign Webhooks data
      • Proxy Module
        • Create a Proxy
        • Edit a Proxy
        • Delete a Proxy
    • Firstoken Captures SDK JS
      • Getting Started
      • Functions
      • Type of Elements
      • Elements Options
      • CSS Object
      • Full Example of Usage
      • SDK versions
Powered by GitBook
On this page

Was this helpful?

  1. API Reference
  2. Firstoken API
  3. Proxy
  4. Methods

PUT - Proxy

You can use this method to send a request that use sensitive data in the body with the replaced values of the token.

PUT /
curl -X PUT https://api.firstoken.co/proxy/
-H 'ft-access-key: YOUR_ACCESS_KEY'
-H "Content-Type: application/json"

  • ft-url-destiny: string

    URL which proxy API will send the request

    Required: true

  • ft-access-key: string This headers contains the Firstoken API Key Required: true

  • ft-headers: JSON

    This JSON contains the headers that proxy have to add to the request.

    Example: "{Authorization" : "Basic VHR4NnBmRGd6OEJLdDNaQTNVR3pzUGR0WnpJOjRReEdONDRRQWVSRXB5d2lsOGR2NEFIY1ZSNWZ2SUJkbm9PTmNqRDE0NHc0V21sUzFJRktaeUduNGJOSkI2TFU=}"

    Required: false

  • ft-encryption: JSON

    This JSON contains the properties required to apply an encryption in the selected values.

    Must contain the following properties:

    • Key: string

      Is the RSA key,

    • Type: string

      The type of the encryption algorithm.

    • is_partial: Boolean

      Explains if the encryption is partial or not.

    Example: {"key": "{{your-encryption-key}}", "type": "RSA", "is_partial": true}

    Required: false

In the Proxy body, only a valid token (permanent or temporary) is necessary to extract sensitive data with the actions and filters explained in "Actions".

Example body of a Proxy PUT request
{
    "chd": {
        "card": " {{ca3a512d-f358-4c20-8057-aafa6ae5b45c:transaction | extract:card}}",
        "name": " {{ca3a512d-f358-4c20-8057-aafa6ae5b45c:transaction | extract:name}}",
        "exp": " {{ca3a512d-f358-4c20-8057-aafa6ae5b45c:transaction| extract:expiration | date:MM}}/ {{4242428XsEs24242:detokenize | extract:expiration | date:YY}}",
        "cvv": " {{ca3a512d-f358-4c20-8057-aafa6ae5b45c:transaction | extract:cvv | encrypt}}"
    },
    "order": {
        "order_id": "1243092185268",
        "transaction_id": "838CF75C85374DDE88FBF95859D5067E",
        "payment_id": "1E48107A6DAF47C393BA4A40F8BB64EC",
        "reference": "503423",
        "shopper_interaction": "ecommerce",
        "total": "22.33",
        "currency": “USD”,
        "payment_method": "Visa",
        "installments": 2
    }
}

Proxy response body

The Proxy response body will contain the status codes of the call and inside the data object, the response sent by the destination url designated in the header.

PreviousGET - ProxyNextPATCH - Proxy

Last updated 3 months ago

Was this helpful?

⚙️