Skip to main content

Release Notes

The debiX API follows semantic versioning. If a release version is not listed, it does not include any changes to the interface definitions.

2.25.0

  • Upgraded to OAS 3.1.0.
  • Enhanced description of cardBlockReason in:
    • For V2: PUT/cards/status.
    • For CardToken V2: PUT /cards/{cardToken}/status.
  • Enhanced description of BlockedCardReplacement in:
    • For V2: PUT/cards/status and POST /cards/details.
    • For CardToken V2: PUT /cards/{cardToken}/status and POST /cards/{cardToken}.
  • Added endpoint to order a PIN datamailer:
    • For V2: POST /cards/pin-datamailer
    • For CardToken V2: POST /cards/{cardToken}/pin-datamailer
  • Added pinDatamailerDelivery, pinDatamailerExpressCode to CardOrderData in:
    • For V2: POST /cards
    • For CardToken V2: POST /cards

2.24.0

  • Added endpoint for OTRC datamailer orders:
    • For V2: POST /cards/otrc-datamailer
    • For CardToken V2: POST /cards/{cardToken}/otrc-datamailer
  • Add endpoint for ClickToPay provisioning (Beta):
    • For V2: POST /cards/clicktopay/mastercard/provisioning
    • For CardToken V2: POST /cards/{cardToken}/clicktopay/mastercard/provisioning
  • Changed GooglePay and SamsungPay push provisioning endpoints (Beta):
    • Changed names for push provisioning request and response objects.
    • Added new required fields.

2.23.1

  • Naming correction for push provisioning (beta).
  • In endpoints POST /cards/details and POST /cards/{cardToken}:
    • Added aliasId, customerId, onlineLimits to CardDetailsResponse.
    • Added cardOrderDateTime, markedAsDelayedDelete to CommonCardInformation.
    • Added contactlessActivationStatus to FeatureToggles.

2.22.0

  • A new endpoint has been introduced to allow the mutation/update of a card and its fields:
    • For V2: PUT /cards
    • For CardToken V2: PUT /cards/{cardToken}
  • Added new endpoints for push provisioning (Mastercard) as Beta version:
    • POST /cards/apple-pay/provisioning-data
    • POST /cards/google-pay/provisioning-data
    • POST /cards/samsung-pay/provisioning-data

2.21.0

  • Added new values to UpdateCardStatusAction in endpoint /cards/status to allow the deletion of a card:
    • DELETE_IMMEDIATELY
      This will trigger an immediate delete.
      In the response of the endpoint /cards/details, the CardStatus may show the new value DELETE_PENDING until deletion has been confirmed; DELETE_PENDING is only shown, when /cards/status is called with DELETE_IMMEDIATELY.
    • DELETE_AT_END_OF_NEXT_MONTH
      This will schedule a deletion for the end of next month. The current card status is not mutated.
      For now, this delayed deletion is not reflected in the card details but will be in the future.

2.20.0

  • Added information that only authorizations and presentments of the last 120 days can be returned.

2.19.3

  • Introduced a new specification variant cardtoken/v2 with the same functionality as v2, but where cardToken is used instead of cardId or shortCardId.
  • Removed Beta tag from Click to Pay endpoints.
  • Removed card expiration in Visa Alias Directory endpoints in Beta version.

2.18.1

  • Added endpoints for Visa Alias Directory in Beta version.

2.17.0

  • Renamed VisaC2PBillingAddress.country to VisaC2PBillingAddress.countryCode in Beta version.

2.16.0

  • Corrected CardCredentialsResponse example (cvv).
  • Changes on field lengths and description for Click to Pay in Beta version: VisaC2PCustomerPhone, VisaC2PCard.nameOnCard.
  • Corrected description and example of CardholderDataTrack.

2.15.2

  • Changes on field lengths for Click to Pay in Beta version: VisaC2PDigitalCard.tokenReferenceId, VisaC2PDigitalCard.tokenRequestorId, VisaC2PEnrolledCard.paymentAccountReference.
  • Removed expiration from request body of Click to Pay Beta endpoint POST /click-to-pay/visa/customers/{customerId}/cards/delete.
  • Added error code 4467 (3DS passwordset for non-PSD2 issuer) to endpoint POST /cards/3ds.
  • Changed sample code to save generated certificates and keys to the filesystem and load them from there again.
  • Standardized examples.
  • Improved Java sample code.

2.14.0

  • Fixed phoneNumberCountryCode pattern for /cards/encrypt-card-data/click-to-pay.
  • Aligned SubCardType description to debol docs.
  • Fix endpoints for Click to Pay in Beta version.
    • POST /click-to-pay/visa/customers/{customerId}/delete is now DELETE /click-to-pay/visa/customers/{customerId}/cards.
    • DELETE /click-to-pay/visa/customers/{customerId}/cards is now POST /click-to-pay/visa/customers/{customerId}/cards/delete.
    • Change response of GET /click-to-pay/visa/status/{requestTraceId}.
    • Add error code 4506 C2P_NOT_SUPPORTED_BY_ISSUER to all endpoints.

2.13.0

  • Added new endpoints for Click to Pay as Beta version:
    • POST /click-to-pay/visa/customers
    • GET /click-to-pay/visa/customers/{customerId}
    • PUT /click-to-pay/visa/customers/{customerId}
    • POST /click-to-pay/visa/customers/{customerId}/delete
    • POST /click-to-pay/visa/customers/{customerId}/cards
    • PUT /click-to-pay/visa/customers/{customerId}/cards
    • DELETE /click-to-pay/visa/customers/{customerId}/cards
    • GET /click-to-pay/visa/status/{requestTraceId}

2.12.0

  • Added capability to order physical cards via /cards POST endpoint.
  • Removed error codes 4441 and 4459 as Set/Get PIN are now allowed for virtual cards as well.
  • Renamed reason in the list of required fields to digitalCardStatusUpdateReason used in DigitalCardsStatusUpdateRequest and DigitalCardStatusUpdateRequest.
  • Switch to latest certificate: debix-to-issuer-jws-signing-key signing with thumbprint f1ecc61a6f3aeaed65268fde15eab2161de60dad.

2.11.0

  • Added password to 3DS registration for issuers with PSD2 regulations.

2.10.0

  • Added endpoint POST /cards/pin to get the PIN of a card.
  • Added new error codes for /encrypt-card-data/click-to-pay endpoint.

2.9.0

  • Bugfix: Added missing CardBlockReason enums.

2.8.0

Added

  • Added endpoint POST /cards/card-token.
  • Added endpoint POST /3ds/details.
  • Added JTI containing a UUID to the claims in the authorization-code.
  • Added riskShieldListing in the FraudConfiguration.

Updated

  • Thales authorization-code is valid for 20 seconds now.

2.6.1

Added

  • Added new error code in case WalletType is invalid.
  • Added cardSeqNumber and cardExpiry as optional search parameters for Presentments.
  • Added publicKeyId in the CardEncryptionResponse.
  • Added SIX_FRAUD_BY_DEBIX as CardBlockOrigin enum.
  • Added schemeTransactionId and approvalCode to /transactions/search and /digitalcards/{dpan}/transactions response.
  • Added /cards/otrc to retrieve an OTRC.
  • Added /cards/click-to-pay/status endpoint.

Updated

  • Updated parameter ImageVersionHeader: Changed type from number to string.
  • Updated schema Image: Changed type of property version from integer to string.
  • Renamed Transaction to Authorization, including URL-resources, filters, and response objects.
  • Corrected response content-type for requests /credentials and /start-set-pin.
  • Corrected parameter names:
    • PresentmentSearchRequestFilter -> PresentmentsSearchRequestFilter
    • DigitalCardSearchRequestFilter -> DigitalCardsSearchRequestFilter
    • proceessingType -> processingType
    • accountAuthority -> accountAuthorities
    • statusUpdateReason -> cardStatusUpdateReason
    • reason -> digitalCardStatusUpdateReason
  • Changed Authorization to contain WalletType instead of WalletProvider.
  • Converted Dpan to a string.
  • Made DigitalCard/tokenRequestor and Presentment/transactionDataDetails optional.
  • Grouped card block information in blockInformation.
  • Changed region name RUSSIA to EASTERN_EUROPE_AND_CENTRAL_ASIA.

Removed

  • Removed deprecated Parameters moneySendReceiveAccepted, moneySendReceiveAccepted, emCertId and allowedMerchantCategoryCodes.
  • Removed unneeded header X-Request-ID in requests /credentials, /start-set-pin, and /set-pin.
  • Removed contactlessActivationStatus.
  • Removed OnlineLimits from /cards/details response.