Step 2: Initiate Challenge Request

PayerMax need to send the base64EncodedCReq value under the creq key to the acsURL, using the Content-Type: application/x-www-form-urlencoded header

"htmlCreq": "
<form action=\'https://acs.com.creq\' method=\'post\'>
<input type=\'hidden\' name=\'creq\' value=\'
eyJ0aHJlZURTU2VydmVyVHJhbnNJRCI6IjhhODgwZGMwLWQyZDItNDA2Ny1iY2IxLWIwOGQxNjkwYjI2ZSIsCSJhY3NUcmFuc0lEIjoiZDdjMWVlOTktOTQ3OC00NGE2LWIxZjItMzkxZTI5YzZiMzQwIiwidGhyZWVEU1JlcXVlc3RvclVybCI6Imh0dHBzOi8vbWVyY2hhbnQuY29tL3VybCIsIm1lc3NhZ2VUeXBlIjoiQ1JlcSIsIm1lc3NhZ2VWZXJzaW9uIjoiMi4zLjAifQ' />

<input type=\'hidden\' name=\'threeDSSessionData\'
value=\'bWVyY2hhbnQuY29tLUlELWFkYWMyNDM0LWRmNzgtNGJmYS1iY2Q5LTExY2E0Y2NkNWRjYQ\' />

</form>"

 

Step 3: Simulate ACS

After posting the Creq, the ACS page will be rendered in the browser. You need to enter the OTP value 1234 and click on Submit.

Step 4: CRes response submission

Upon successful authentication, the CRes will be posted to the threeDSRequestorURL specified in the Payer Authentication Request

```html


<!DOCTYPE html>
<html lang="en">
<body>

<form action="https://agu1-3ds2-tester.fimeconnect.com/3dss/notification" method="post">

<input
name="cres"
value="eyJ0aHJlZURTU2VydmVyVHJhbnNJRCI6ImZhODUxYmRjLWNkZGEtNDExNy1iYjdiLTE0MzZhNzJmNjc0MSIsImFjc1RyYW5zSUQiOiJiYWMyYTQ5OC00M2Y4LTQwMWMtOTA2MS1lNjRhMDJhYjhiOGQiLCJtZXNzYWdlVHlwZSI6IkNSZXMiLCJtZXNzYWdlVmVyc2lvbiI6IjIuMi4wIiwidHJhbnNTdGF0dXMiOiJZIn0">

<input
name="threeDSSessionData"
value="VGhpcyBpcyBteSBzZXNzaW9uIGRhdGEgMTIzNDU2Nzg5MA">

</form>

</body>
</html>

```

 

Step 6: CRes Decryption

From the above response, extract the CRes data and decode it from Base64 to retrieve the final details as shown below.

{
"threeDSServerTransID": "fa851bdc-cdda-4117-bb7b-1436a72f6741",
"acsTransID": "bac2a498-43f8-401c-9061-e64a02ab8b8d",
"messageType": "CRes",
"messageVersion": "2.2.0",
"transStatus": "Y"
}