3.31. /api/mfo/v2/scoring-form

Introduction

Card scoring form is initiated through HTTPS POST request by using URLs and the parameters specified below. Use OAuth HMAC-SHA1 for authentication. See Statuses. {clientOrderId} in request URL is generated by Connecting Party. {endpointId} in request URL is provided by Payment Gateway.

Form API URLs

Integration

Production

https://sandbox.sbctech.ru/paynet/api/mfo/v2/scoring-form/{endpointId}/{clientOrderId}

https://gate.sbctech.ru/paynet/api/mfo/v2/scoring-form/{endpointId}/{clientOrderId}

Request parameters

Parameter name

Description

Value

redirectUrl

URL the customer will be redirected to upon completion of the card scoring request

Type: String
Length: 128

Response parameters

Parameter name

Description

Format

error

Error description (if error occurs).

Type: String

orderId

Order id on payment gateway.

Type: String

redirectUrl

URL the customer will be redirected to fill the card scoring request data.

Type: String

Request example

POST /paynet/api/mfo/v2/scoring-form/3772/123 HTTP/2
Host: sandbox.sbctech.ru
User-Agent: curl/7.88.1
Accept: */*
Authorization: OAuth realm="",oauth_version="1.0",oauth_consumer_key="test_merch",oauth_timestamp="1709030996",oauth_nonce="RrB6HIwPqtg",oauth_signature_method="HMAC-SHA1",oauth_signature="kQsRHApN8f%2FKfM42TjPGHHUK3xE%3D"
Content-Length: 52
Content-Type: application/x-www-form-urlencoded

redirectUrl=http%3A%2F%2Fconnectingparty.com2Fexample2Fredirect2F

Success Response Example

HTTP/2 200 OK
Date: Mon, 01 Dec 2020 11:47:18 GMT
Content-Type: application/json;charset=UTF-8

{"orderId":2793619,"redirectUrl":"https://sandbox.sbctech.ru/paynet/form/mfo-scoring/init/BB474B5A46346173433239614477534F576533495256794B523362374F65756C73677A5162376C6E365933493D"}

Fail Response Example

HTTP/2 403 Forbidden
Date: Mon, 01 Dec 2020 11:47:18 GMT
Content-Type: application;charset=UTF-8

type=error
&serial-number=00000000-0000-0000-0000-000003d94fed
&error-message=Forbidden
&error-code=-1

Request Builder

HTTP method
endpoint
clientorderId
url
redirectUrl
version
consumer key
consumer secret
timestamp

nonce

signature method

normalized parameters
signature base string
signature
authorization header