Card SDK
In a Card SDK, OTP (One-Time Password) verification is used to securely display card data — adding an extra layer of security on top of the standard authentication flow.
When a user requests access to sensitive information (PAN, CVV, expiry), an OTP is generated between the partner's host and the SDK. The user supplies the OTP back to the SDK; once it is verified, the SDK grants access to the card details for the duration of that session.
The endpoint below requests a one-time password from Paynetics for a given card / session.
Request OTP
Generate a one-time password for the requested card / session. The OTP is delivered through the configured channel and must be returned to the SDK to unlock access to card details.
POST
/v2/sdk/otp
Operation
sdk_otpRequest body
| Field | Type | Description |
|---|---|---|
card
|
string (0,any) | |
device_
|
string (0,any) |
Example request
{
"card": "string",
"device_id": "string"
}Response
| Field | Type | Description |
|---|---|---|
code
|
integer (0,any) |
Example response
{
"code": 0,
"data": {
"otp": "0ba5e81d-c43b-4008-b2d6-0d390f6f8c08"
}
}