Saving the end user’s payment information for future use is a flow used to increase future payment success rates. This flow is often used by merchants who wants to manage a wallet or set of payment methods for the end user independent of payment collection.
In this article, we will walk through a basic integration with our payments API for saving payment information with /payment_tokens endpoint. Before you start, be sure to complete your integration environment set up.
Integration Flow
How to integrate
Create a page to display possible payment channel for saving.
On your application, prepare a page for the end user to select and agree with saving payment information for their desired channel. The end user will pick their desired payment channel here.
Xendit recommends that you curate the list of payment channels based on preferred payment channels by the end user group that you are targeting. Other considerations might include average balance/ available credits in chosen payment methods or payment amount limits.Collect required data for the chosen payment channel
Once the end user picks a channel, collect the data required to save the payment information. See routing payment channels for full list of required information.Create a payment token request
Construct an API request body with information required by your selected channel.Request - POST /payment_tokens { "reference_id": "90392f42-d98a-49ef-a7f3-abcezas123", "customer_id": "cust-90392f42-d98a-49ef-a7f3-abcezas123", "country": "ID", "currency": "IDR", "channel_code": "OVO", "channel_properties": { "failure_return_url": "https://xendit.co/failure", "success_return_url": "https://xendit.co/success" }, "description": "Description examples", "metadata": { "metametadata": "metametametadata" } }Response - POST /payment_tokens { "business_id": "5f27a14a9bf05c73dd040bc8", "reference_id": "90392f42-d98a-49ef-a7f3-abcezas123", "payment_token_id": "pt-90392f42-d98a-49ef-a7f3-abcezas123", "customer_id": "cust-90392f42-d98a-49ef-a7f3-abcezas123", "country": "ID", "currency": "IDR", "channel_code": "OVO", "channel_properties": { "failure_return_url": "https://xendit.co/failure", "success_return_url": "https://xendit.co/success" }, "actions": [ { "type": "REDIRECT_CUSTOMER", "descriptor": "WEB_URL", "value": "https://ewallet-mock-connector.xendit.co/v1/ewallet_connector/checkouts?token=ciqv4nkabidq0em86ofg" } ], "status": "REQUIRES_ACTION", "description": "Description examples", "metadata": { "metametadata": "metametametadata" }, "created": "2021-12-31T23:59:59Z", "updated": "2021-12-31T23:59:59Z" }Handle the required actions
Upon successful creation of a payment token request with Xendit, you will receive our payment token object. If the payment token status is
REQUIRES_ACTION, you will need to perform some actions on the client app for the end user to complete payment. If no actions are required, the final payment status will be returned synchronously and a webhook with payment status update will be sent.Redirection
Action "type": "REDIRECT_CUSTOMER"
On the client app, redirect the user to the url in action’s value. To maximise success rates, you should handle the redirection based on the user’s device type. Note that for certain payment channels, there are redirections rules for pending or cancellation. Your application should be designed to handle such scenarios.
Receive a payment token event webhook for payment token activation
Once the end user has completed their authentication step and the payment method provider notifies Xendit of an update, Xendit will proceed to send a webhook to the webhook url you configured in your Xendit dashboard settings page.{ "event": "payment_token.activation", "business_id": "5f27a14a9bf05c73dd040bc8", "created": "2021-12-02T14:52:21.566Z", "data": { "payment_token_id": "pt-1402feb0-bb79-47ae-9d1e-e69394d3949c", "business_id": "5f27a14a9bf05c73dd040bc8", "reference_id": "90392f42-d98a-49ef-a7f3-abcezas123", "customer_id": "cust-b98d6f63-d240-44ec-9bd5-aa42954c4f48", "country": "ID", "currency": "IDR", "channel_code": "OVO", "channel_properties": { "failure_return_url": "https://xendit.co/failure", "success_return_url": "https://xendit.co/success" }, "actions": [ { "type": "REDIRECT_CUSTOMER", "descriptor": "WEB_URL", "value": "https://xendit.co/" } ], "status": "ACTIVE", "token_details": { "account_name": "John Doe", "account_balance": "1000001", "account_point_balance": "50000" }, "metadata": { "metametadata": "metametametadata" }, "created": "2029-12-31T23:59:59Z", "updated": "2029-12-31T23:59:59Z" } }Display payment token status to user
With the webhook status, you should be able to complete the save journey for the end user by successfully completing the transaction or directing them back for a retry if it had failed.
In all real time messaging systems, there is a chance that the webhook does not reach your system. Your application should also cater for the scenario where a webhook is not received while the end user is still waiting on their screen. In such cases, it is recommended for a pending payment notice to be given to the end user while you wait for a webhook from Xendit.
Status Lifecycle
Here’s the status lifecycle for a payment token
Status | Description | Webhook Event |
|---|---|---|
REQUIRES_ACTION | The payment token enters this status synchronously upon API response for the end user to complete linking process. Handle the | - |
ACTIVE | The payment token transitions to this status when the linking is successfully completed. Xendit will send the payment_token.activation webhook as the identifier that payment token is active. You should store the |
|
FAILED | The payment token transitions to this status when the linking process fails. Xendit will send a payment_token.failure webhook containing the Note: Not all payment channels provide notifications for failed linking processes. |
|
CANCELED | You can manually expire the payment token that is in the | - |
EXPIRED | The payment token transitions to this status when it expires due to the payment partner’s expiry. Note: Not all payment channels provide notifications for expiry payment token. |
|