Validate
Validates the authentication results after the user completes the 3D Secure challenge.
Endpoint Details
Method: POST
URL: /v1/risk/authentication/validate
Purpose: Validate authentication results after user challenge completion
When to Use
This endpoint is only used when the Check Enrollment response has:
Status:
Pending_authenticationMessage: "Check enroll successful, authentication pending"
Headers
Content-Type: application/json
x-api-key: <YOUR_API_KEY>Request Body
{
"transaction_info": {
"type": "validate_result",
"reference_code": "123456789"
},
"card": {
"number": "{{token_id : detokenize}}",
"expiration_date": "{{token_id : detokenize}}"
},
"order_info": {
"amount_details": {
"total_amount": "1000",
"currency": "MXN"
}
},
"bill_to": {
"first_name": "John",
"last_name": "Doe",
"country": "US",
"address_1": "1 Market St",
"address_2": "Suite 200",
"city": "san francisco",
"state": "CA",
"phone_number": "4158880000",
"email": "accept@gmsectec.com",
"postal_code": "94105"
},
"authentication": {
"transaction_id": "DKjne4MBXRSsa1fryRE0"
}
}Parameters
transaction_info.type
string
Yes
Must be "validate_result".
transaction_info.reference_code
string
Yes
Original transaction reference code.
card
object
Yes
Same card information as check_enroll.
order_info
object
Yes
Same order information as check_enroll.
bill_to
object
Yes
Same billing information as check_enroll.
authentication.transaction_id
string
Yes
Authentication transaction ID from check
Critical Parameter
authentication.transaction_id
This field must be the exact value from:
From the Check Enrollment response.
Example: If Check Enrollment returned:
Then use in Validate:
Response Structure
The API returns a standardized response:
status: string - "success", "fail" or "error"
message: string - Short description about the status
data: object - Authentication information and transaction details
Response Examples
Response Fields
transaction_info
Type
"validate_result_response"
Reference Code
Your original reference code
Request ID
Unique request identifier
Status
"Authentication_successful" or "Authentication_failed"
Created At
ISO 8601 timestamp of validation
card
bin
Bank Identification Number (first 6 digits)
type
Card network (VISA, MASTERCARD, AMEX)
consumer_auth_info
Success Response Fields
eci_raw
Electronic Commerce Indicator (01/02 for Mastercard, 05/06 for VISA/AMEX)
token
Final authentication token
pares_status
Y=Successfully authenticated
acs_transaction_id
Access Control Server transaction ID
specificationVersion
3D Secure version used
tree_dss_server_transaction_id
3DS Server transaction ID
directory_server_transaction_id
Directory Server transaction ID
Mastercard Specific Fields
ucaf_authentication_data
Universal Cardholder Authentication Field - use in payment authorization
ucaf_collection_indicator
Indicator for UCAF collection method
VISA/AMEX Specific Fields
eci
Electronic Commerce Indicator (same as eci_raw)
cavv
Cardholder Authentication Verification Value - use in payment authorization
xid
Transaction identifier
Failed Response Fields
eci_raw
Failure ECI code (00 for Mastercard, 07 for VISA/AMEX)
pares_status
N=Authentication failed
acs_transaction_id
Access Control Server transaction ID
specificationVersion
3D Secure version used
tree_dss_server_transaction_id
3DS Server transaction ID
directory_server_transaction_id
Directory Server
Payment Authorization Data
Fields to Include in Payment Request
For Mastercard
For VISA/AMEX
Usage Example
cURL
Last updated
Was this helpful?