Search

OUR API

API Developer Guides API Reference Sample Code [on GitHub]
SDKs [on GitHub] API Change Log System Change Log
Upgrade Guide

Hello World

Get Started Common Setup Questions How Payments Work
Testing Guide Go-Live Checklist

Support

Get Support News and Announcements Forums
Authorize.net on GitHub Authorize.net on Stack Overflow Developer Blog
Response (Error) Codes FAQs Knowledge Base

Sign In

Sandbox Affiliate

Search Developer Site

Integration and Testing

Authorize.Net API questions and help with your payment integration.

Reply
Member
willimus
Posts: 3
Registered: ‎01-30-2017
Accepted Solution

Accept.js - proper method for AVS support

‎05-08-2017 07:34 AM

How is an integrator supposed to enable AVS support with Accept.js?  It is our understanding that it is not advisable to pass data collected in the Accept.js form to the payment details in the 'authCaptureTransaction' message. We see that the zip code is required to create the nonce token in the Accept.js form, so we assumed the AVS portion would occur when the nonce was generated. In our testing in sandbox and live accounts, we see now that AVS only works if the zip code is sent in the 'authCaptureTransaction' message. Can you confirm that this is the recommended approach, or do customers using the Accept.js method need to understand that Authorize.net's AVS service will no longer work?

Message 1 of 2 (30,377 Views)
Reply
0 Kudos

Accepted Solutions
Solution
Accepted by topic author willimus
‎05-16-2017 06:12 AM
All Star
Aaron
Posts: 699
Registered: ‎11-03-2016

Re: Accept.js - proper method for AVS support

‎05-09-2017 09:25 AM

Hi @willimus,

 

You actually have a couple of options with Accept.js. When you create the single-use token, none of the information sent is checked against the bank (like authorizing the card or doing an AVS check). The only thing that happens at that time is that a token is created containing all of the information passed.

 

When you process a transaction using the token, the system will run an AVS check using the ZIP specified in the <billTo> element in the transaction request. If that <billTo> element doesn't exist, then the system will look for a ZIP code embedded in the token. So, if the ZIP code exists both in the <billTo> element and the token, the one in the <billTo> element takes precedence.

 

There's two main use cases here:

 

Use case 1. You're collecting the customer's address because you need it to ship product or for some other reason. You have the address anyway, so send it with the transaction and get the benefit of AVS checking. No need to send the zip code in the token request.

 

Use case 2. You have no reason to collect the address, but still want AVS checking. Easiest thing to do there is to embed the ZIP into the token so you get AVS checking when the transaction is run without having to structure any of the address elements in the transaction request.

View solution in original post

Message 2 of 2 (44,793 Views)
Reply

All Replies
Solution
Accepted by topic author willimus
‎05-16-2017 06:12 AM
All Star
Aaron
Posts: 699
Registered: ‎11-03-2016

Re: Accept.js - proper method for AVS support

‎05-09-2017 09:25 AM

Hi @willimus,

 

You actually have a couple of options with Accept.js. When you create the single-use token, none of the information sent is checked against the bank (like authorizing the card or doing an AVS check). The only thing that happens at that time is that a token is created containing all of the information passed.

 

When you process a transaction using the token, the system will run an AVS check using the ZIP specified in the <billTo> element in the transaction request. If that <billTo> element doesn't exist, then the system will look for a ZIP code embedded in the token. So, if the ZIP code exists both in the <billTo> element and the token, the one in the <billTo> element takes precedence.

 

There's two main use cases here:

 

Use case 1. You're collecting the customer's address because you need it to ship product or for some other reason. You have the address anyway, so send it with the transaction and get the benefit of AVS checking. No need to send the zip code in the token request.

 

Use case 2. You have no reason to collect the address, but still want AVS checking. Easiest thing to do there is to embed the ZIP into the token so you get AVS checking when the transaction is run without having to structure any of the address elements in the transaction request.

Message 2 of 2 (44,794 Views)
Reply