Getting Started with PayTR Direct API 4.1 Card Storage API Recurring Payment

Recurring Payment

RECURRING PAYMENT WITH REGISTERED CARD

Using this service, you can pay for your user with a card available in PAY for recurring payment.

1-)Create the payment request block wtih specified values. The payment process will be formed as a result of the request that you will send to the service with the registered card information through the structure that you will create yourself.

2-)For this reason, there is no need to create a form to interact with the user.Transactions will take place as Non3D (Non Secure).Your user will october take any additional actions or any information will not be requested from him during the process.(In order to use it, your store must have Non3D permissions)

3-)From the CAPI LIST service, you need to access the ctoken data by using the utoken data belonging to the user whose name you want to pay for.After that, utoken, ctoken and the following table with the specified values https://www.paytr.com/odeme you can request payment by POST method to the address

Values to be sent in POST REQUEST content:

Field name / type	Description	Mandatory	Limitations & Notes
merchant_id (integer)	Merchant ID: Your Merchant ID provided by PayTR	Yes
paytr_token (string)	Paytr_token: It is used to ensure that the request comes from you and the content did not change	Yes	Please check the sample codes for calculation
user_ip (string)	User ip: User IP received during the request (Important: Make sure you send the external IP address when you run tests on your local machine)	Yes	Up to 39 characters (ipv4)
merchant_oid (string)	Merchant order id: The unique order id you set for the transaction.(Note: Order number is posted back within callback notification - on STEP 2	Yes	Up to 64 characters, Alpha numeric
email (string)	User email address: The email address which; the user registered with on your system or you received via the order form	Yes	Up to 100 characters
payment_amount (double), decimal (.) and two digits after the point	Payment amount: The total amount of the order.	Yes	For example: 100.99 or 150 or 1500.35
payment_type(string)	Payment type	Yes	('card')
installment_count(int)	Installment count	Yes	0, 2, 3, 4, 5, 6, 7, 8, 9, 10,11,12
card_type(string)	Card type (For installment transactions)	No	advantage, axess, combo, bonus, cardfinans, maximum, paraf, world, saglamkart
currency(string)	Currency	No	TL(or TRY), EUR, USDD (TL is assumed if not sent)
client_lang(string)	Language to be used on payment process	No	tr for Turkish or en for English (tr is assumed if not sent)
test_mode	When the merchant is in live mode, it can be sent as 1 to run a test	No	0 or 1
non_3d	For recurring payment send this value as 1	Yes	0 or 1
non3d_test_failed	If you need to test failed Non3D transaction send 1 (non_3d and test_mode values must be both 1)	No	0 or 1
merchant_ok_url(string)	The page the user will be redirected to after successful payment (e.g. Order status / my orders page)(Warning: the payment may not have been approved yet when the user reaches this page	Yes	Up to 400 characters
merchant_fail_url(string)	The page that the user will be redirected to if something unexpected occurs	Yes	Up to 400 characters
user_name (string)	User name and surname: First and last name of the user that you have on your system or received via the order form	Yes	Up to 60 characters
user_address (string)	User address: The address of the user that you have on your system or received via the order form	Yes	Up to 400 characters
user_phone (string)	User phone number: The phone number of the user that you have on your system or received via the order form	Yes	Up to 20 characters
user_basket (string)	User basket/order contents	Yes	JSON - Please check the sample codes for structure
debug_on (int)	Display errors: If the value is 1, when wrong or incomplete information is transmitted to the API, error message is displayed on the page.	No	0 or 1(Be sure to send 1 to detect errors during the integration and testing process)
utoken(string)	User Token: User specific token notified to you by PAYTR system in post-payment notification	Yes	-
ctoken(string)	Card Token: The token that identifies the user's registered card	Yes	-
recurring_payment(int)	Recurring:After sending a payment request, the response in JSON format returns directly to the request result without redirecting to the successful or unsuccessful page according to the result of the transaction. In addition; Details of the transaction are sent to the defined Notification URL address. The values that the status field returned as a result of sync mode can receive are “failed”, “wait_callback” and “success”Note: The Non3D authorization must be turned on in your store for this operation.	No	0 or 1 (A request must be sent to us in order for the relevant authorization to be defined to the store. If it is approved by our units, the authorization will be defined to the store.)

RECURRING RESPONSE

status	msg (description)	try_again
failed	"The card was closed by the bank. Do not send transactions again with this card.” or a different error message.	false
failed	You have an ongoing transaction, you can try again after it is completed	true
wait_callback	Checking Payment, Wait for Notification.	-
success	Successful Payment	-

<!doctype html>
<html>
    <head>
        <meta charset="UTF-8">
    </head>

    <?php

        $merchant_id = 'XXXXXXXXXXX';
        $merchant_key = 'XXXXXXXXXXX';
        $merchant_salt = 'YYYYYYYYYYY';

        $merchant_ok_url="http://site-ismi/basarili";
        $merchant_fail_url="http://site-ismi/basarisiz";

        $user_basket = htmlentities(json_encode(array(
            array("Altis Renkli Deniz Yatağı - Mavi", "18.00", 1),
            array("Pharmasol Güneş Kremi 50+ Yetişkin & Bepanthol Cilt Bakım Kremi", "33,25", 2),
            array("Bestway Çocuklar İçin Plaj Seti Beach Set ÇANTADA DENİZ TOPU-BOT-KOLLUK", "45,42", 1)
        )));

        srand(time(null));
        $merchant_oid = rand();

        $test_mode="0";

        $non_3d="1";

        $non3d_test_failed="0";

        if( isset( $_SERVER["HTTP_CLIENT_IP"] ) ) {
            $ip = $_SERVER["HTTP_CLIENT_IP"];
        } elseif( isset( $_SERVER["HTTP_X_FORWARDED_FOR"] ) ) {
            $ip = $_SERVER["HTTP_X_FORWARDED_FOR"];
        } else {
            $ip = $_SERVER["REMOTE_ADDR"];
        }

        $user_ip = $ip;

        $email = "testnon3d@paytr.com";

        $payment_amount = "100.99";
        $currency="TL";

        $payment_type = "card";

        $recurring_payment = "1";

        $post_url = "https://www.paytr.com/odeme";

        $hash_str = $merchant_id . $user_ip . $merchant_oid . $email . $payment_amount . $payment_type . $installment_count. $currency. $test_mode. $non_3d;
        $token = base64_encode(hash_hmac('sha256',$hash_str.$merchant_salt,$merchant_key,true));

        $utoken = "";
        $ctoken = "";       

    ?>

    <body>
        <form action="<?php echo $post_url;?>" method="post">
          <input type="hidden" name="merchant_id" value="<?php echo $merchant_id;?>">
          <input type="hidden" name="user_ip" value="<?php echo $user_ip;?>">
          <input type="hidden" name="merchant_oid" value="<?php echo $merchant_oid;?>">
          <input type="hidden" name="email" value="<?php echo $email;?>">
          <input type="hidden" name="payment_type" value="<?php echo $payment_type;?>">
          <input type="hidden" name="payment_amount" value="<?php echo $payment_amount;?>">
          <input type="hidden" name="installment_count" value="0">
          <input type="hidden" name="currency" value="<?php echo $currency;?>">
          <input type="hidden" name="test_mode" value="<?php echo $test_mode;?>">
          <input type="hidden" name="non_3d" value="<?php echo $non_3d;?>">
          <input type="hidden" name="merchant_ok_url" value="<?php echo $merchant_ok_url;?>">
          <input type="hidden" name="merchant_fail_url" value="<?php echo $merchant_fail_url;?>">
          <input type="hidden" name="user_name" value="Paytr Test">
          <input type="hidden" name="user_address" value="test test test">
          <input type="hidden" name="user_phone" value="05555555555">
          <input type="hidden" name="user_basket" value="<?php echo $user_basket; ?>">
          <input type="hidden" name="debug_on" value="1">
          <input type="hidden" name="paytr_token" value="<?php echo $token; ?>">
          <input type="hidden" name="non3d_test_failed" value="<?php echo $non3d_test_failed; ?>">
          <input type="hidden" name="installment_count" value="<?php echo $installment_count; ?>">
          <input type="hidden" name="card_type" value="<?php echo $card_type; ?>">
          <input type="hidden" name="utoken" value="<?php echo $utoken; ?>">
          <input type="hidden" name="ctoken" value="<?php echo $ctoken; ?>">
          <input type="hidden" name="recurring_payment" value="<?php echo $recurring_payment;?>">
          <br />
          <input type="submit" value="Submit">
        </form>
    </body>
</html>

# Python 3.6+

import base64
import hashlib
import hmac
import html
import json
import random

from django.shortcuts import render, HttpResponse
from django.views.decorators.csrf import csrf_exempt

def home(request):
    merchant_id = 'XXXXXXXXXXX'
    merchant_key = b'XXXXXXXXXXX'
    merchant_salt = b'YYYYYYYYYYY'

    merchant_ok_url = 'http://site-ismi/basarili'
    merchant_fail_url = 'http://site-ismi/basarisiz'

    user_basket = html.unescape(json.dumps([
    ['Altis Renkli Deniz Yatağı - Mavi', '18.00', 1],
    ['Pharmaso Güneş Kremi 50+ Yetişkin & Bepanthol Cilt Bakım Kremi', '33,25', 2],
    ['Bestway Çocuklar İçin Plaj Seti Beach Set ÇANTADA DENİZ TOPU-BOT-KOLLUK','45,42', 1]]))

    merchant_oid = 'OS' + random.randint(1, 9999999).__str__()
    test_mode = '0'
    debug_on = '1'

    non_3d = '1'

    client_lang = 'tr'

    non3d_test_failed = '0'
    user_ip = ''
    email = 'testnon3d@paytr.com'

    payment_amount = "100.99"
    currency = 'TL'
    payment_type = 'card'

    user_name = 'Paytr Test'
    user_address = 'test test test'
    user_phone = '05555555555'

    card_type = 'bonus'
    installment_count = '5'
    recurring_payment = '1'

    hash_str = merchant_id + user_ip + merchant_oid + email + payment_amount + payment_type + installment_count + currency + test_mode + non_3d
    paytr_token = base64.b64encode(hmac.new(merchant_key, hash_str.encode() + merchant_salt, hashlib.sha256).digest())

    utoken = ''
    ctoken = ''

    context = {
        'merchant_id': merchant_id,
        'user_ip': user_ip,
        'merchant_oid': merchant_oid,
        'email': email,
        'payment_type': payment_type,
        'payment_amount': payment_amount,
        'currency': currency,
        'test_mode': test_mode,
        'non_3d': non_3d,
        'merchant_ok_url': merchant_ok_url,
        'merchant_fail_url': merchant_fail_url,
        'user_name': user_name,
        'user_address': user_address,
        'user_phone': user_phone,
        'user_basket': user_basket,
        'debug_on': debug_on,
        'client_lang': client_lang,
        'paytr_token': paytr_token.decode(),
        'non3d_test_failed': non3d_test_failed,
        'installment_count': installment_count,
        'card_type': card_type,
        'utoken': utoken,
        'ctoken': ctoken,
        'recurring_payment': recurring_payment
    }

    return render(request, 'capi_payment_stored_card.html', context)

using Newtonsoft.Json.Linq;
using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.Mvc;
using System.Collections.Specialized;
using System.Net;
using System.Security.Cryptography;
using System.Text;
using System.Web.Script.Serialization;
using System.Web.UI;
using System.Web.UI.WebControls;

namespace WebApplication1.Controllers
{
    public class HomeController : Controller
    {
        public ActionResult StoredCard()
        {

            string merchant_id = "XXXXXX";
            string merchant_key = "XXXXXX";
            string merchant_salt = "XXXXXX";

            string emailstr = "info@siteniz.com";

            int payment_amountstr = 100.99;

            string merchant_oid = "";

            string user_namestr = "";

            string user_addressstr = "";

            string user_phonestr = "";

            string merchant_ok_url = "http://siteniz.com/success";

            string merchant_fail_url = "http://siteniz.com/failed";

            string user_ip = Request.ServerVariables["HTTP_X_FORWARDED_FOR"];
            if (user_ip == "" || user_ip == null){
                user_ip = Request.ServerVariables["REMOTE_ADDR"];
            }

            object[][] user_basket = {
            new object[] {"Örnek ürün 1", "18.00", 1}, 
            new object[] {"Örnek ürün 2", "33.25", 2}, 
            new object[] {"Örnek ürün 3", "45.42", 1}, 
            };

            string card_type = "bonus";

            string debug_on = "1";

            string test_mode = "0";

            string non_3d = "1";

            string non3d_test_failed = "0";

            string installment_count = "0";

            string payment_type = "card";

            string post_url = "https://www.paytr.com/odeme";

            string currency = "TL";

            string recurring_payment = "1";

            JavaScriptSerializer ser = new JavaScriptSerializer();
            string user_basket_json = ser.Serialize(user_basket);

            string Birlestir = string.Concat(merchant_id, user_ip, merchant_oid, emailstr, payment_amountstr.ToString(), payment_type, installment_count, currency, test_mode, non_3d, merchant_salt);
            HMACSHA256 hmac = new HMACSHA256(Encoding.UTF8.GetBytes(merchant_key));
            byte[] b = hmac.ComputeHash(Encoding.UTF8.GetBytes(Birlestir));

            string utoken = "";
            string ctoken = "";

            ViewBag.MerchantId = merchant_id;
            ViewBag.UserIp = user_ip;
            ViewBag.MerchantOid = merchant_oid;
            ViewBag.Email = emailstr;
            ViewBag.PaymentType = payment_type;
            ViewBag.PaymentAmount = payment_amountstr.ToString();
            ViewBag.InstallmentCount = installment_count;
            ViewBag.Currency = currency;
            ViewBag.TestMode = test_mode;
            ViewBag.Non3d = non_3d;
            ViewBag.MerchantOkUrl = merchant_ok_url;
            ViewBag.MerchantFailUrl = merchant_fail_url;
            ViewBag.UserName = user_namestr;
            ViewBag.UserAddress = user_addressstr;
            ViewBag.UserPhone = user_phonestr;
            ViewBag.UserBasket = user_basket_json;
            ViewBag.Non3dTestFailed = non3d_test_failed;
            ViewBag.DebugOn = debug_on;
            ViewBag.CardType = card_type;
            ViewBag.PostUrl = post_url;
            ViewBag.uToken = utoken;
            ViewBag.cToken = ctoken;
            ViewBag.RecurringPayment = recurring_payment;
            ViewBag.PaytrToken = Convert.ToBase64String(b);

            return View();
        }
    }
}

var express = require('express');
var ejsLayouts = require('express-ejs-layouts');
var microtime = require('microtime');
var crypto = require('crypto');
var nodeBase64 = require('nodejs-base64-converter');
var app = express();
var path = require('path');

app.set('views', path.join(__dirname, '/app_server/views'));

app.set('view engine', 'ejs');
app.use(ejsLayouts);
app.use(express.json());
app.use(express.urlencoded({ extended: true }));

var merchant_id = 'XXXXXX';
var merchant_key = 'XXXXXX';
var merchant_salt = 'XXXXXX';

var basket = JSON.stringify([['Örnek Ürün 1', '50.00', 1], ['Örnek Ürün 2', '50.00', 1]]);
var user_basket = basket;
var merchant_oid = "IN" + microtime.now(); 
var user_ip = '';
var email = ''; 
var payment_amount = '100.99'; 
var currency = 'TL';
var test_mode = '0'; 
var user_name = 'PayTR Test'; 
var user_address = 'test test test'; 
var user_phone = '05555555555'; 

var merchant_ok_url = 'http://www.siteniz.com/odeme_basarili.php';

var merchant_fail_url = 'http://www.siteniz.com/odeme_hata.php';
var debug_on = 1; 
var client_lang = 'tr';
var payment_type = 'card';
var installment_count = '0';
var non_3d = '1'; 
var recurring_payment = '1';
var card_type = '';
var non3d_test_failed = '0'; 

var utoken = "";
var ctoken = "";

app.get("/", function (req, res) {

    var hashSTR = `${merchant_id}${user_ip}${merchant_oid}${email}${payment_amount}${payment_type}${installment_count}${currency}${test_mode}${non_3d}`;
    var paytr_token = hashSTR + merchant_salt;
    var token = crypto.createHmac('sha256', merchant_key).update(paytr_token).digest('base64');

    context = {
        merchant_id,
        user_ip,
        merchant_oid,
        email,
        payment_type,
        payment_amount,
        currency,
        test_mode,
        non_3d,
        merchant_ok_url,
        merchant_fail_url,
        user_name,
        user_address,
        user_phone,
        user_basket,
        debug_on,
        client_lang,
        token,
        non3d_test_failed,
        installment_count,
        card_type,
        utoken,
        ctoken,
        recurring_payment
    };

    res.render('index');

});

var port = 3200;
app.listen(port, function () {
    console.log("Server is running. Port:" + port);
});

Recurring Payment Service sample codes Click to download.