Server-to-Server Network Tokens

Server-to-Server Network Tokens

Last updated:October 15, 2024

This Server-to-Server guide describes how you can store the data, provision a network token with the involvement of the card network and then subsequently use the network token authorization data for a payment.

To better understand what network tokens are, please read Tokenization guide.
To know which acquirers do support network tokenization, please reach out to your Customer Success Manager.
To collect card data, you must be PCI-DSS compliant. To minimize your compliance requirements, please use COPYandPAY Network Tokens.

Use cases

Tokenization during payment

The merchant collects card data from shopper and initiates tokenization along an account verification (zero amount auth) or initial purchase. A registration token is synchronously provisioned and returned to the merchant once the payment is complete. The registration token can then be used in subsequent payments. In the background, a network token is being provisioned by the card network with Issuer involved in the token approval process. The payment is authorized with real card data or with the network token if available and active.

How it works

Create the token during payment

Send the payment request with the collected card data asking for the card to be tokenized once the payment ends successfully.

Transactions:
RG
RG
TK
TK
DB
DB
TF
TF

1. Create the token during payment

To create a token during payment, perform a server-to-server POST request with createRegistration=true and all required payment and customer data, including payment type, amount, and currency. A successful request will return a registrationId that should be stored and used in subsequent payments.

Tokenization response

The response will include a token transaction history, indicating that the network token provisioning process has started with the card network. Due to a simulated 2-second delay in the test environment, the network token provisioning request will be in flight, and the payment will continue using the original PAN. The network token fetching is attempted, but the response will indicate that the provisioning request is still in progress.

When the network token is fetched, the response will also provide the original PAN BIN. This information will be exposed in the payment response as part of the card.bin parameter. It’s important to note that the network token BIN is different from the original PAN BIN. This distinction is crucial for post-authorization issuer BIN management, ensuring that you have the necessary details to handle the transaction accurately.

Sample request:


See also