API Services

Online Debit

Version 1.0
 
1. Create BNI Debit Online
Hostname [host]
Port [port]
HTTP Method POST
Path /mastercard/create
HTTP Headers
Name Format Mandatory Description
Content-Type application/json Yes
X-API-Key String Yes API Key
Query string parameters
Name Format Mandatory Description
access_token String Yes Token provided from gettoken request
Format JSON
Authentication OAuth 2.0 Authentication
Request Definition
Field Data Type Mandatory Description
signature String Yes Key combination : Digital Signature
clientId String (30) Yes
accountNum String (17) Yes
amount Number (38, 2) Yes
userId String (50) Yes
requestId String (16) Yes See ID
isVA String No “Y” or “N”, default is Y
cardNum String (20) No If is Va = mandatory, if is not VA = null
maxTrx Number Yes
validityTime Number Yes In ms e.g. 20000
adminFee String (5) No Default null
Response Definition
Name Type Description
Response (error) See Response Code

Sample HTTP Raw Request

POST /mastercard/create?access_token=SrxPqj5egyU4
NvOU5AVVqCsrcuwPN6SbFkJ5SZSdsnFUqAAnstj1nt HTTP/1.1
Host: [host]:[port]
Accept: */*
x-api-key: 714f7940-65c8-43d0-ae82-988a75158ef1
Content-Type: application/json
{
  "request": {
    "header": {
      "signature": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJyZXF1ZXN0Ijp7ImhlYWRlciI6eyJjbGllbnRJZCI6IlNBTkRCT1gifSwiYWNjb3VudE51bSI6IjEwMDAwMDg1ODEiLCJhbW91bnQiOiIxMDAwMSIsInVzZXJJZCI6IjUyNjQyMjI1OTA0NjY1MTIiLCJyZXF1ZXN0SWQiOiJFOEM2RTAwMjdGNkEwMDFBIiwiaXNWQSI6IiIsImNhcmROdW0iOiI1MjY0MjMyNTkwMDAyMDAxIiwibWF4VHJ4IjoiNyIsInZhbGlkaXR5VGltZSI6IjIwMDAwIiwiYWRtaW5GZWUiOiIyMDAwIn19.frUe-fh2EcMrQ8Gkxl4LNxr7Nvilj2QS19vma8qMPY",
      "clientId": "SANDBOX"
    },
    "accountNum": "1000008581",
    "amount": "10001",
    "userId": "5264222590466512",
    "requestId": "E8C6E0027F6A001A",
    "isVA": "",
    "cardNum": "5264232590002001",
    "maxTrx": "7",
    "validityTime": "20000",
    "adminFee": "2000"
  }
}

Exp full url

https://[host]:[port]/mastercard/create?access_token=[access_token]

Sample HTTP Raw Response

HTTP/1.1 200 OK
Max-Forwards: 20
Via: 1.1 FW_VCN, 1.0 APIDEV ()
Connection: close
X-CorrelationID: Id-9c0ead5f1e99e58d6ff03f32 0
Date: Thu, 12 Nov 2020 10:29:51 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Warning: 199 Debug mode means sensitive data might be visible,214 FW_VCN DataPower
Transformation Applied
X-Powered-By: Servlet/3.0
Content-Type: application/json
{
  "output": {
    "vcn": "5264150715924349",
    "expiry": "1117",
    "cvc": "204",
    "validUntil": "2020-11-12T17:29:48.369+07:00",
    "referenceId": "E8C6E0027F6A001A",
    "responseId": "00000000",
    "amountLimit": "10001",
    "debitCard": "5264232590002001"
  }
}
 
2. Inquiry BNI Debit Online
Hostname [host]
Port [port]
HTTP Method POST
Path /mastercard/inquiry
HTTP Headers
Name Format Mandatory Description
Content-Type application/json Yes
X-API-Key String Yes API Key
Query string parameters
Name Format Mandatory Description
access_token String Yes Token provided from gettoken request
Format JSON
Authentication OAuth 2.0 Authentication
Request Definition
Field Data Type Mandatory Description
signature String Yes Key combination : Digital Signature
cifNumber String (17) Yes
clientId String (30) Yes
vcn String (17) Yes
status String (10) No “ACTIVE” or “DELETED”
Response Definition
Name Type Description
Response (error) See Response Code

Sample HTTP Raw Request

POST /mastercard/inquiry?access_token=SrxPqj5egyU4NvOU5
AVVqCsrcuwPN6SbFkJ5SZSdsnFUqAAnstj1nt HTTP/1.1
Host: [host]:[port]
Accept: */*
x-api-key: 714f7940-65c8-43d0-ae82-988a75158ef1
Content-Type: application/json
{
  "request": {
    "header": {
      "signature": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJyZXF1ZXN0Ijp7ImhlYWRlciI6eyJjbGllbnRJZCI6IlNBTkRCT1gifSwiY2lmTnVtIjoiOTE0NDc4MTg5MSIsInZjbiI6IiIsInN0YXR1cyI6IiJ9fQ.4ZoROJ7eV7R8IFYEwxTAq5kAJXFw7BnXIqIrAxHjQxU",
      "clientId": "SANDBOX"
    },
    "cifNum": "9144781891",
    "vcn": "",
    "status": ""
  }
}

Exp full url

https://[host]:[port]/mastercard/inquiry?access_token=[access_token]

Sample HTTP Raw Response

HTTP/1.1 200 OK
Max-Forwards: 20
Via: 1.1 FW_VCN, 1.0 APIDEV ()
Connection: close
X-CorrelationID: Id-8711ad5f58a004c99d1bb76a 0
Date: Thu, 12 Nov 2020 10:42:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Warning: 199 Debug mode means sensitive data might be visible,214 FW_VCN DataPower
Transformation Applied
X-Powered-By: Servlet/3.0
Content-Type: application/json
{
  "output": {
    "channelId": "API",
    "clientId": "SANDBOX",
    "trxDate": "2020-11-08",
    "trxTime": "21:39:13",
    "vcn": "5264150715924334",
    "name": "asasddds",
    "cvc": "Mzk3MDAx",
    "status": "DELETED",
    "accountNum": "8696000000000125",
    "amount": "10001",
    "validityPeriod": "604800000",
    "maxTrx": "1",
    "validThru": "2020-11-03 15:16:31.513"
  }
}
 
3. Delete BNI Debit Online
Hostname [host]
Port [port]
HTTP Method POST
Path /mastercard/blokir
HTTP Headers
Name Format Mandatory Description
Content-Type application/json Yes
X-API-Key String Yes API Key
Query string parameters
Name Format Mandatory Description
access_token String Yes Token provided from gettoken request
Format JSON
Authentication OAuth 2.0 Authentication
Request Definition
Field Data Type Mandatory Description
signature String Yes Key combination : Digital Signature
clientId String (30) Yes
vcn String (17) Yes
Response Definition
Name Type Description
Response (error) See Response Code

Sample HTTP Raw Request

POST /mastercard/blokir?access_token=9Mbk2s4vao3syfYrZ
MSYKfSuFAlSAnGEgNHtIh20u7AxiAti1oJqF5 HTTP/1.1
Host: [host]:[port]
Accept: */*
x-api-key: 714f7940-65c8-43d0-ae82-988a75158ef1
Content-Type: application/json
{
  "request": {
    "header": {
      "signature": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJyZXF1ZXN0Ijp7ImhlYWRlciI6eyJjbGllbnRJZCI6IlNBTkRCT1gifSwidmNuIjoiNTI2NDE1MDcxNTkyNDM0OSJ9fQ.wMAhuuAgoSNeAaU8J-_qF5mBXd7T4ccqROmSfXK7Vmw",
      "clientId": "SANDBOX"
    },
    "vcn": "5264150715924349"
  }
}

Exp full url

https://[host]:[port]/mastercard/blokir?access_token=[access_token]

Sample HTTP Raw Response

HTTP/1.1 200 OK
Max-Forwards: 20
Via: 1.1 FW_VCN, 1.0 APIDEV ()
Connection: close
X-CorrelationID: Id-6c06aa5ff7aee8360f4711d6 0
Date: Tue, 10 Nov 2020 03:18:06 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Warning: 199 Debug mode means sensitive data might be visible,214 FW_VCN DataPower
Transformation Applied
X-Powered-By: Servlet/3.0
Content-Type: application/json
{
  "output": {
    "vcn": "5264150715924349",
    "status": "D"
  }
}