Skip to main content

Overview of CyberSource payment gateway integration

Zuora

Overview of CyberSource payment gateway integration

Zuora supports the following CyberSource gateway integration versions:

  • CyberSource, Payment API v2.0 
  • CyberSource Enterprise Gateway, API v1.97
  • CyberSource Enterprise Gateway, API v1.28
  • CyberSource Tokenization

This article describes supported features and limitations for CyberSource v2.0, v1.97 and v1.28 integrations. CyberSource Tokenization is a legacy gateway integration no longer under active development. For details about it, see CyberSource Tokenization.

For enhanced feature support, it is recommended to use CyberSource v2.0 integration or migrate to CyberSource v2.0 integration from CyberSource v1.97 or v1.28.

If multiple instances of CyberSource v1.28, CyberSource v1.97, or CyberSource v2.0 are active at the same time, all certificates must be valid or payments may fail if an expired certificate is used.

Supported features

The following table provides a quick reference for the supported features. For details about each feature, see the later sections in this article.

Feature CyberSource, Payment API v2.0 CyberSource Enterprise Gateway, API V1.97 CyberSource Enterprise Gateway, API V1.28
Supported payment methods
  • Credit Card/Gift Card/Prepaid Card
  • Debit Cards
  • Credit Card Reference Transactions (Tokenization)
  • Apple Pay
  • ACH - Direct Debit Only
  • SEPA
  • BACS
  • Credit Card/Gift Card/Prepaid Card
  • Debit Cards
  • ACH - Direct Debit Only
  • Credit Card/Gift Card/Prepaid Card
  • Debit Cards
  • ACH - Direct Debit Only
Support 3D Secure 2.0 Yes No No
Support Delayed Capture Yes Yes Yes
Support Level 2 and Level 3 card data Yes No No
Support stored credential transactions Yes No No
Support Gateway Options fields Yes No No
Gateway provider’s API version

CyberSource WSDL version 1.192

CyberSource Simple Order APIs

CyberSource WSDL version 1.97

CyberSource Simple Order APIs

CyberSource WSDL version 1.28 

CyberSource Simple Order APIs

CyberSource production endpoint used for Zuora gateway integration service https://ics2wsa.ic3.com/commerce/1.x/transactionProcessor
Support Gateway Reconciliation Yes No No
CyberSource production endpoint used for Gateway Reconciliation service

https://api.cybersource.com

https://api.cybersource.com/reporting/v3/report-downloads

https://api.cybersource.com/reporting/v3/reports

   
Support Payment Method Updater Yes Yes Yes
CyberSource production endpoint used for PMU service

https://ebc.cybersource.com/ebc/DownloadReport

https://api.cybersource.com

Support non-referenced refunds

Yes

Supported for both Credit Cards and Credit Card Reference payment methods

Yes

Supported for Credit Cards

Yes

Supported for Credit Cards

Ignore AVS result when verifying card Yes No No
Ignore AVS result during payment with card Yes No No
Select gateway endpoint Yes No No
Support one-time payment flow through Payment Pages 2.0 Yes No No

Supported payment methods

The following table lists the supported payment methods for each CyberSource integration version:

  CyberSource, Payment API v2.0  CyberSource Enterprise Gateway, API V1.97 CyberSource Enterprise Gateway, API V1.28
Supported Payment Methods
  • ACH - Direct Debit Only
  • Credit Card/Gift Card/Prepaid Card, including:
    • Visa
    • MasterCard
    • American Express
    • Discover
  • Debit Cards
  • ACH - Direct Debit Only
  • Credit Card/Gift Card/Prepaid Card, including:
    • Visa
    • MasterCard
    • American Express
    • Discover
  • Debit Cards
Mandate creation

Not Supported

After you create a mandate outside of Zuora, you can pass the mandate information to Zuora for verification through the UI or API when creating or updating the payment method.

Not Supported

Not Supported

For more information about setting up payment methods in Zuora, see Define and set up payment methods.

Support for Apple Pay

CyberSource, Payment API v2.0 provides support for Apple Pay. The following credit card types are supported by this gateway integration to create Apple Pay payment method and process Apple Pay payments:

  • VISA
  • Mastercard
  • American Express
  • Discover

Apple Pay is only supported through the Create Apple Pay payment method API operation. To enable stored credential transactions for Apple Pay payment methods through CyberSource, the following fields are required in the request:

Field Type Suggested value Description
mitProfileAction String Activate If you set this field, Zuora creates a stored credential profile within the payment method.
  • Activate - Use this value if you are creating the stored credential profile after receiving the customer's consent. Zuora will create the stored credential profile then send a cardholder-initiated transaction (CIT) to the payment gateway to validate the stored credential profile. If the CIT succeeds, the status of the stored credential profile will be Active. If the CIT does not succeed, Zuora will not create a stored credential profile.
mitConsentAgreementSrc String External This field is required if you set the mitProfileAction field.
mitProfileType String Recurring This field is required if you set the mitProfileAction field.

See the following articles for more information:

Support for 3D Secure 2.0

CyberSource, Payment API v2.0 supports 3D Secure 2.0 (3DS2) feature. The following articles provide more information:

Support for Delayed Capture

The Delayed Capture feature allows you to authorize the availability of funds for a transaction but delay the capture of funds until a later time through the following API operations:

CyberSource, Payment API v2.0 supports Delayed Capture for both Credit Cards and Credit Card Reference payment methods. Most authorizations will automatically expire within 5 to 7 days if not captured.

CyberSource Enterprise Gateway, API V1.97 and CyberSource Enterprise Gateway, API V1.28 supports Delayed Capture for Credit Cards.

Zuora also supports capturing authorizations that were generated externally to call the Zuora's Create authorization API operation. 

Support for Level 2 and Level 3 card data

CyberSource, Payment API v2.0 supports processing Level 2 and Level 3 credit card data. For more information, see the following articles:

Support for stored credential profiles

CyberSource, Payment API v2.0 includes support for the Stored Credential Transactions framework. For details about the supported payment methods, see Support for stored credential transactions overview. It supports stored credential transactions for the following payment processors only:

  • AIBMS
  • CyberSource through VisaNet
  • Elavon Americas
  • FDC Compass
  • FDC Nashville Global
  • GPN
  • OmniPay Direct
  • Rede

Support for Gateway Reconciliation

This feature is only available for CyberSource, Payment API v2.0. The following Gateway Reconciliation events are supported:

Payment Method Supported GR events
Credit Cards
  • Settlement
  • Chargeback
  • Rejection
ACH
  • Settlement
  • Rejection
SEPA
  • Settlement
  • Rejection

Note that the generated Gateway Reconciliation reports available to you are dependent on the processor you use. See Supported processors for CyberSource Gateway Reconciliation for more information.

Support for Payment Method Updater

You can configure CyberSource Payment Method Updater to keep Zuora and you informed about the changes to the credit card information. For more information, see Configure CyberSource Payment Method Updater.

Supported Gateway Options fields

You can submit additional information to CyberSource by using Gateway Options fields. For details about the fields supported by CyberSource, Payment API v2.0, see Gateway Options fields supported by CyberSource, Payment API v2.0.