Strong Customer Authentication
Overview
Strong Customer Authentication (SCA) adds an extra layer of security for online payments by verifying the end customer through a third party, such as a bank. It is available in Sweden, Norway, Denmark, Finland, and the Netherlands. You will find an overview of the eID methods used per country in the image below:
Process Flow
- The customer selects Riverty in the checkout and clicks ‘Pay’.
- Merchant sends an Authorize payment request to Buckaroo.
- Riverty API decides if SCA is required and sends a response with
“outcome”: “Pending processing”. - Buckaroo returns a redirect URL for further instructions to complete verification.
- After verification, the end customer is redirected back to the Merchant’s webpage.
- The Merchant receives an updated status push message: either ‘success’ or ‘rejected’.
- If the order status is accepted, the order is finalized
- If the order status is cancelled, expired or pending - the order is not finalized. After 15 minutes the pending order times out, so a new try with a new order number is required.
Example of a Pending Processing Status
{
"Key": "6B39EAFD858949EAAA5************",
"Status": {
"Code": {
"Code": 791,
"Description": "Pending processing"
},
"SubCode": null,
"DateTime": "2023-12-20T15:16:13"
},
"RequiredAction": {
"RedirectURL": https://checkout.buckaroo.nl/html/redirect.ashx?r=8DE0DE55F7C24DF0BBC7C***********,
"RequestedInformation": null,
"PayRemainderDetails": null,
"Name": "Redirect",
"TypeDeprecated": 0
},
"Services": null,
"CustomParameters": null,
"AdditionalParameters": null,
"RequestErrors": null,
"Invoice": "BMSWH6TK1***********",
"ServiceCode": "afterpay",
"IsTest": true,
"Currency": "EUR",
"AmountDebit": 501.0,
"TransactionType": "I038",
"MutationType": 3,
"RelatedTransactions": null,
"ConsumerMessage": null,
"Order": null,
"IssuingCountry": "NL",
"StartRecurrent": false,
"Recurring": false,
"CustomerName": "John Doe",
"PayerHash": null,
"PaymentKey": null
}
}
Updated 24 days ago