The Checkout.com 3D Secure (3DS) mobile SDK allows you to provide a native 3DS2 experience in your mobile app, with visual styling that you can control.
The SDK handles the device data collection, communication with the card issuer, and presentation of 3D Secure challenges to the customer when required.
- Features
- Minimum Requirements
- Installation
- Integration
- Payment Authorisation
- Dependencies
- Help and Feedback
- License
👉 See the Integration Guide with Code Examples
📚 Read the reference documentation
- Supports 3D Secure protocols 2.1.0 and 2.2.0.
- Presents native 3DS2 challenge screens to the user, with styling that you can customise to best fit your apps and branding.
- Optionally falls back to 3DS1 when 3DS2 is not available, returning the same authentication result to your app as for 3DS2. (This option can be configured by Checkout.com for your account.)
- Supports a range of local languages and accessibility needs, and allows you to set your own string translations.
- Meets requirements from EMVCo and the PCI Security Standards Council, specifically set for 3DS SDKs, so you can be sure it is interoperable with card issuers and that your customers’ sensitive data stays secure.
- The 3DS SDK for iOS requires Xcode 13.1 and above with Swift version 5.6.2 and above, and supports apps targeting iOS 12.0 and above. It also supports Objective-C. There are two ways to integrate our 3DS SDK.
- Discontinued support for intel machines ( x86_64 )
Swift Package Manager is integrated with the Swift build system to automate the process of downloading, compiling, and linking dependencies. This is our recommended distribution method.
If you've never used it before, get started with Apple's step-by-step guide on adding package dependencies to your app.
- In Xcode, navigate to
File > Add Packages... - In the search bar, paste the repository URL:
https://github.com/checkout/checkout-3ds-sdk-ios.git - Choose your preferred
Dependency Rule(e.g., "Up to Next Major Version"). - In the "Add to Target" column, you will be prompted to choose the package products to add. This is the most important step.
This package provides two distinct products. You must choose the one that best fits your project's needs.
This is the standard, "batteries-included" library. It bundles all necessary dependencies, including our crash reporting module (PLCrashReporter).
➡️ Choose this product if:
- You are starting a new project.
- Your application does not already include its own version of
PLCrashReporter.
This is a lightweight library built from the same source code, but it does not include the PLCrashReporter dependency.
➡️ Choose this product if:
- Your application already uses
PLCrashReporter. - You are experiencing dependency conflicts or build errors related to duplicated symbols from a crash reporter.
By choosing Checkout3DSCore, you will resolve these conflicts while still getting the full functionality of the 3DS SDK.
This integration method involves one call to our authenticate method, which will perform an entire Authentication flow using Checkout.com's 3DS servers.
- Initialize the SDK with your preferred user interface options using our
uiCustomizationobject. - Configure the parameters for an authentication.
- Request authentication and handle the result to continue your payment flow.
- The authenticate function now returns
Resulttype with two casesAuthenticationResultwithtransactionStatusandsdkTransactionID👉 More info about transaction statusAuthenticationErrorwith amessage.
// 1. Init with defaults
let checkout3DS = Checkout3DSService()
// 2. Init with explicit arguments
let checkout3DS = Checkout3DSService(
environment: .production,
locale: Locale(identifier: "en_GB"),
uiCustomization: uiCustomization,
appURL: URL(string: "myapp://my-app-url")!
)
let authenticationParameters = AuthenticationParameters(
sessionID: sessionID,
sessionSecret: sessionSecret,
scheme: scheme)
checkout3DS.authenticate(authenticationParameters: authenticationParameters) { result in
switch authenticationResult {
case .success(let authenticationResult):
// handle authentication result. Checkout Payment Authorisation section.
case .failure(let error):
// handle failure scenarios
}
}👉 See the Integration Guide with Code Examples for full details.
📚 Read the reference documentation
Standalone 3DS allows our SDKs to be used with any Authentication provider, be it Checkout.com or otherwise. This is a higher touch integration that breaks up the 3DS flow more granularly. In order to integrate with the Standalone 3DS service:
- Initialize the SDK with your preferred user interface options using our
uiCustomizationobject. - Create
transactionobject - Get
authenticationRequestParametersfor the AReq - If a challenge is mandated from the Authentication response from your 3DS server then call the
doChallengemethod to render the challenge however, if the challenge is not mandated by the ACS then it would have triggered a frictionless 3DS flow.
Here is a useful diagram that highlights the end-to-end 3DS flow using our standalone3DSService.
1- Creates an instance of ThreeDS2Service through which the 3DS Requestor App can create a transaction object to get the authenticationRequestParameters that are required to perform a challenge:
private var transaction: Transaction?
private var standalone3DSService: ThreeDS2Service?2-Initialize the SDK with your preferred user interface options:
schemecan be set only asvisaandmastercardin lowercase string.
// initialise Standalone 3DS Service with required parameters
do {
let directoryServerData = ThreeDS2ServiceConfiguration.DirectoryServerData(directoryServerID: <directoryServerID>,
directoryServerPublicKey: <ds_public>,
directoryServerRootCertificates: [<caPublic>])
let configParameters = ThreeDS2ServiceConfiguration.ConfigParameters(directoryServerData: directoryServerData,
messageVersion: <messageVersion>,
scheme: <scheme>)
let serviceConfiguration = ThreeDS2ServiceConfiguration(configParameters: configParameters)
self.standalone3DSService = try Standalone3DSService.initialize(with: serviceConfiguration)
} catch let error {
// handle failure scenario
}- Create
transactionusing createdThreeDS2Serviceobject:
self.transaction = self.standalone3DSService?.createTransaction()- Retrieve the
authenticationRequestParameters:
// get Authentication Request parameters
self.transaction?.getAuthenticationRequestParameters { result in
switch result {
case .success(let params):
// make an Authentication Request to your 3DS Server
case .failure(let error):
// handle failure scenario
}
}- Handle the
doChallengeflow:
- If the Authentication response that is returned indicates that the Challenge Flow must be applied, the 3DS Requestor App calls the
doChallengemethod with the required inputChallengeParameters. ThedoChallengemethod initiates the challenge process. - The
doChallengefunction now returnsResulttype with two casesAuthenticationResultwithtransactionStatusandsdkTransactionID👉 More info about transaction statusAuthenticationErrorwith amessage.
let params = ChallengeParameters(threeDSServerTransactionID: response.transactionId,
acsTransactionID: response.acs.transactionId,
acsRefNumber: response.acs.referenceNumber,
acsSignedContent: response.acs.signedContent)
transaction?.doChallenge(challengeParameters: params, completion: { [weak self] result in
switch result {
case .success(let authenticationResult):
// handle authentication result. Checkout Payment Authorisation section.
case .failure(let error):
// handle failure scenario
}
// call close and cleanUp methods after challenge flow is completed.
self?.transaction?.close()
self?.standalone3DSService?.cleanUp()
})- Service
cleanUpand transactionclose:
- After a challenge/frictionless flow is completed, you should call:
transaction?.close()
standalone3DSService?.cleanUp()After initiating the authentication process and obtaining the AuthenticationResult object, you can continue the authentication flow based on the value of transStatus:
transStatus |
Description | Proceed with Payment Authorisation Request |
|---|---|---|
Y |
Authentication verification successful. | Yes |
A |
Attempt at processing performed. | Yes |
I |
Informational only. | Yes |
N |
Not authenticated or account not verified. | No |
R |
Authentication or account verification rejected. | No |
U |
Authentication or account verification could not be performed. | No |
👉 More info about transaction status
Our iOS SDK depends on some external libraries:
- To help maintain security, we use JOSESwift.
- To help provide support and monitor the performance of the SDK, we use our own Checkout Event Logger Kit.
For help using the 3D Secure SDK, or to pass on your feedback, you can email our team at support@checkout.com.
If you’ve found a bug, we encourage you to open an issue through GitHub. If your problem isn’t already listed, please detail the versions of the SDK and your development environment that you’re using, what you were hoping to accomplish, and what the actual result you observed was.
If you have an idea for a new feature, we’d also love to hear about it through GitHub. Please open an issue, detailing your idea and why it’s important for your project.
This software is released under license. See LICENSE for details.