Professional Documents
Culture Documents
Confidentiality
All the information in the current document is considered confidential. Using it outside the
context of this consultation or disclosing it to exterior persons is subject to prior approval by
EDPS S.A..
Revision : 3.1 [2022/03/14] - EDPS Confidential
Table of Contents
1 Introduction.............................................................................................................................................3
1.1 Typical Transaction Flow............................................................................................................3
1.2 Setup Requirements....................................................................................................................5
1.3 Service endpoints........................................................................................................................5
2. Functionality..........................................................................................................................................6
2.1 Information posted for the login request....................................................................................6
2.2 Information posted to the EDPS Secure form............................................................................7
2.3 Information returned to the merchant.........................................................................................8
Appendix..................................................................................................................................................10
Table 1 : BID Descriptions.............................................................................................................10
Table 2 : Typical Transaction Response Codes..............................................................................10
Table 3 : Typical System Error Codes............................................................................................11
A1: HTTP POST to login/session example....................................................................................11
A2: HTTP POST to form example.................................................................................................12
A3: Test Cards................................................................................................................................12
Page 2 of 12
Revision : 3.1 [2022/03/14] - EDPS Confidential
1 Introduction
This is a functional description of the EDPS secure e-commerce platform for
merchants. It provides the necessary steps needed for setting up the EDPS e-
Commerce platform on the merchant's side and describes the information that
needs to be communicated between the merchant and EDPS in the process of
performing a credit card transaction using the EDPS e-Commerce platform.
In order to make communications secure, all exchanges are encrypted via
the HTTPS protocol. Moreover, a signature mechanism has been set up to validate
and authenticate the data exchange. This a a unique signature that represents
the user and transaction and is based on information received by both the user
and the merchant.
The redirection to the secure form is performed through an HTTPS POST. The
form includes some fields described hereafter, as well as a one time unique
signature based partly on the submitted fields.
The result of the transaction is returned to the merchant via an HTTPS POST. The
returned form fields will also be described hereafter.
Page 3 of 12
Revision : 3.1 [2022/03/14] - EDPS Confidential
Page 4 of 12
Revision : 3.1 [2022/03/14] - EDPS Confidential
Page 5 of 12
Revision : 3.1 [2022/03/14] - EDPS Confidential
2. Functionality
Field Description
mid The merchant ID provided by EDPS to identify the merchant.
txnid An alphanumeric transaction id, min len 6, max len 40. Used to
identify the transaction. It is strongly advised that this number
is different for each transaction attempt (* see notes 2.1.1).
uid A per-login created id to uniquely identify the customer to be
redirected.
amount The transaction amount without dots or commas. for example an
amount of 16,50 would be sent as 1650. A transaction with amount
= 0 will be rejected. The same will happen if the transaction
amount is greater than 999999 (€9999,99).
mode Transaction mode (0: PRODUCTION, 1: TEST)
txnType Optional Field. Send ‘S’ for Sale, ‘P’ for Preauth or nothing for the
default value set in the creation of the profile.
date The transaction date (dd-MM-yyyy).
userdata Optional user data submitted by merchant. It will be returned to
the merchant in the transaction response.
installments Installments for the transaction. 2 numeric digits (01-99).
Notes
2.1.1 Please note that the merchant is strongly advised to save the transaction id,
user id date and amount for each transaction. In addition to the above, the
merchant should also save the unique id for this transaction which can be
obtained from calling the function getUid(), that resides in the keygen include file.
2.1.2 If a transaction has been approved by the bank and the merchant requests a
new transaction with the same txnid and uid of a previous one, a new transaction
will not be created. The merchant will receive the original response that was
Page 6 of 12
Revision : 3.1 [2022/03/14] - EDPS Confidential
produced by the first transaction. This helps prevent double charges of clients in
cases where the merchant does not receive a transaction response. However it is
strongly advised that the merchant uses a different txnid for each attempt.
Field Description
txnid An alphanumeric transaction id, up to 40 digits in length, that the
merchant can use to identify the transaction.
mid The merchant ID provided by EDPS to identify the merchant.
embedded Used in the case of an iframe, in order to disable the “back to
shopping cart” link on the merchant's form. A value of 1 will hide
the link. Default value is 0.
rid The unique id for the stored card. The customer will only have to
add the CVV of the card in order to proceed with the transaction.
Omission of the field leads to saving the card again.
backurl A URL that the user will return to if he decides not to proceed with
the transaction after the redirect to the EDPS form, usually a URL
that will take him back to his/her shopping cart. It will be the result
of the “back to shopping cart” link that appears in the EDPS secure
form.
amount The transaction amount without dots or commas. for example an
amount of 16,50 would be sent as 1650. A transaction with amount
= 0 will be rejected. The same will happen if the transaction
amount is greater than 999999 (€9999,99).
date The transaction date (dd-MM-yyyy).
mode Transaction mode (0: PRODUCTION, 1: TEST)
billingAddr* This is an mandatory 3D Secure field indicating the billing address
of the cardholder.
Page 7 of 12
Revision : 3.1 [2022/03/14] - EDPS Confidential
https://en.wikipedia.org/wiki/ISO_3166-1_numeric),
* See relevant xls file for Greek ISO 3166-2 codes (included in the documentation
package)
Field Description
aa A transaction id that can be used to identify the transaction across
EDPS systems.
amount The transaction amount.
installments Installments for the transaction. 2 numeric digits (01-99).
postdating Postdating for the transaction. 2 numeric digits (01-99).
auth A six-digit transaction approval code, if the transaction was
successful.
bid A three-digit code that identifies the bank that processed the
transaction. *
Page 8 of 12
Revision : 3.1 [2022/03/14] - EDPS Confidential
The merchant is strongly advised to check the uid signature, txnid and amount in
order to find a match in his/her own list of pending transactions. The values of
these fields must match the ones the merchant had before initiating a new
transaction.
Page 9 of 12
Revision : 3.1 [2022/03/14] - EDPS Confidential
Appendix
Response Description
Code
00 Transaction was completed successfully.
05 Generic negative response.
15 Card not supported. This card is not supported by the bank. This
usually occurs for cards that have not been issued by banks in
Greece.
26 Transaction not found
27 Amount error
51 Insufficient funds in cardholder's account
76 Original transaction not found
88 Bank is not responding and transaction attempts result in time-
outs.
91 Service temporarily unavailable.
D* Not authenticated (3DSecure).
Response codes that start with ‘D’.
Page 10 of 12
Revision : 3.1 [2022/03/14] - EDPS Confidential
Page 11 of 12
Revision : 3.1 [2022/03/14] - EDPS Confidential
Page 12 of 12