Preview sensitive card details
POST/card/v1/sensitive-card-details
Retrieves encrypted sensitive card details (PAN and CVC) using a short-lived card token obtained from the Get sensitive card details token endpoint.
This is the second step in the two-step sensitive card details flow. The card token (passed via the Authorization header) contains claims that identify the card. The response contains encrypted card details that must be decrypted using the session encryption key.
Flow:
- Call Get sensitive card details token to obtain a one-time token
- Call this endpoint with the token and your session encryption key
- Decrypt the response using AES with the returned IV and your session key
Request
Responses
- 200
- 400
- 403
- 404
Successfully retrieved encrypted card details. Decrypt using AES with the IV and your session encryption key.