1. Build Integration for International Cards (E-commerce)
Steps to integrate S2S JSON API and accept payments using international cards, with Razorpay Chargeback Guarantee Program.
You can integrate with Razorpay APIs to start accepting international card payments.
Razorpay Chargeback Guarantee Program on international cards safeguards businesses from fraud chargeback. Businesses provide additional category-specific details to enhance our risk model's ability to detect risky transactions. Razorpay uses this information to enhance risk assessment for international cards, aiming to achieve the highest success rate while minimising fraud.
Watch Out!
-
Category-specific risk rules will not be effective unless you provide additional details.
-
You must have a PCI compliance certificate to enable this feature on your account.
Follow the steps given below to integrate S2S JSON API with browser flow and accept payments using cards.
1.1
1.2
1.3
1.4
1.5
1.6
Integrate SHIELD JS and pass session_id in
.This step demonstrates creating an Order and processing a Payment using Razorpay APIs. Depending on your integration type, you can choose between:
Create an order along with payment using the consolidated order and payment API. This single API call combines order and payment creation, resulting in a more efficient and faster transaction process.
Create an order along with payment by:
- Making a single API call to Razorpay, combining order and payment creation.
- Authenticating using the provided credentials, ensuring access to the consolidated payment API.
- Manually integrating the API sample codes on your server.
The following API will create an order along with payment with card as the payment method:
amount
mandatory
integer Payment amount in the smallest currency sub-unit. For example, if the amount to be charged is $299.00, then pass 29900 in this field. In the case of three decimal currencies, such as KWD, BHD and OMR, to accept a payment of 295.991, pass the value as 295990. And in the case of zero decimal currencies such as JPY, to accept a payment of 295, pass the value as 295.
Watch Out!
As per payment guidelines, you should pass the last decimal number as 0 for three decimal currency payments. For example, if you want to charge a customer 99.991 KD for a transaction, you should pass the value for the amount parameter as 99990 and not 99991.
currency
mandatory
string The currency in which the transaction should be made. View the
Handy Tips
Razorpay has added support for zero decimal currencies, such as JPY, and three decimal currencies, such as KWD, BHD, and OMR, allowing businesses to accept international payments in these currencies. Know more about
(May 2024).receipt
optional
string Your receipt id for this order should be passed here. Maximum length is 40 characters.
partial_payment
optional
boolean Indicates whether the customer can make a partial payment. Possible values:
true: The customer can make partial payments.false(default): The customer cannot make partial payments.
customer_details
optional
json object Details about the customer/user.
name
optional
string The customer’s name. For example, Gaurav Kumar.
contact
optional
string The customer's phone number. A maximum length of 15 characters, including country code. For example, +919000090000.
optional
string The customer’s email address. For example,
insights
optional
json object Additional details of the customer, including past transaction data.
order_count
optional
integer Total orders placed by the account so far on the merchant platform. For example, 22.
chargeback_count
optional
integer Total chargeback received for the customer account on the merchant platform. For example, 4.
tier
optional
string Your company's passenger classification, such as with a frequent flyer program. In this case, you might use values such as:
standardgoldplatinum
booking_channel
optional
string To share if the user is an agent, corporate, or individual. Possible values:
agentcorporateindividual
has_account
optional
boolean To denote if the buyer is on guest checkout or has logged into the account. Possible values:
true: If the user is logged into the account.false: If the user is on guest checkout.
registered_at
optional
integer UNIX timestamp when the customer account was created with the merchant. For example, 1234567890.
shipping_address
optional
json object This will have details about the order's shipping address.
line1
optional
string Address Line 1 of the address
line2
optional
string Address Line 2 of the address
city
optional
string city of the address. For example, Bengaluru.
country
optional
string ISO3 country code of the billing address. For example, IND.
state
optional
string name of the state. For example, KA.
zipcode
optional
string Zipcode of the state. For example, 560068.
latitude
optional
float Latitude of the position expressed in decimal degrees (WSG 84), for example, 6.244203. A positive value denotes the northern hemisphere or the equator, and a negative value denotes the southern hemisphere. The number of digits represents the precision of the coordinate.
longitude
optional
float Longitude of the position expressed in decimal degrees (WSG 84), for example, -75.581211. A positive value denotes east longitude or the prime meridian, and a negative value denotes west longitude. The number of digits represents the precision of the coordinate.
billing_address
optional
json object This will have details about the billing address of the customer/user.
line1
optional
string Address Line 1 of the address.
line2
optional
string Address Line 2 of the address.
city
optional
string City of the address. For example, Bengaluru.
country
optional
string ISO3 country code of the billing address. For example, IND.
state
optional
string Name of the state. For example, KA.
zipcode
optional
string Zipcode of the state. For example, 560001.
latitude
optional
float Latitude of the position expressed in decimal degrees (WSG 84), for example, 6.244203. A positive value denotes the northern hemisphere or the equator, and a negative value denotes the southern hemisphere. The number of digits represents the precision of the coordinate.
longitude
optional
float Longitude of the position expressed in decimal degrees (WSG 84), for example, -75.581211. A positive value denotes east longitude or the prime meridian, and a negative value denotes west longitude. The number of digits represents the precision of the coordinate.
shipping_details
optional
json object This will have the order's shipping details.
method
optional
enum Shipping method for the product. Possible values:
lowcost: Lowest-cost service.sameday: Courier or same-day service.oneday: Next-day or overnight service.twoday: Two-day service.threeday: Three-day service.pickup: Store pick-up.other: Other shipping method.none: No shipping method because the product is a service or subscription.
gift_wrap
optional
boolean Indicates whether the customer requested gift wrapping for this purchase. This field can contain one of the following values:
true: The customer requested gift wrapping.false: The customer did not request gift wrapping.
line_items_total
optional
integer Total sum of the cart value.
line_items
mandatory
json object Details about the specific items added to the cart.
type
mandatory
string Defines the category type. Possible values:
travelhotele_commercemutual_fund
sku
optional
string The unique product id defined by the business.
name
optional
string The name of the product.
description
optional
string Description of the product.
quantity
optional
integer Number of tickets/items/quantity to be purchased.
image_url
optional
string URL of the product image.
product_url
optional
string URL of the product’s listing page.
price
optional
integer Unit price of the product in paisa. (needs to be inclusive of tax)
offer_price
optional
integer Offer price of the product. The offer price can be lower than the price if the business runs a discount on the product.
tax_amount
optional
integer Tax amount that needs to be added to the product. In case the offer_price is tax-inclusive, keep it blank.
e_commerce
optional
json object Details about the type-specific data points. Will vary based on the type selected.
other_product_codes
optional
object Array to collect different codes that can identify the item type. Possible values:
upc
string Universal Product Code (UPC; redundantly: UPC code) is a barcode symbology used worldwide to track trade items in stores. UPC consists of 12 numeric digits that are uniquely assigned to each trade item
ean
string European Article Numbers (EAN) is a type of barcode that encodes an article number. Contains 8 (EAN-8) or 13 (EAN-13) numerical digits.
unspsc
string The United Nations Standard Products and Services Code (UNSPSC) is a taxonomy of products and services used in eCommerce. It is a four-level hierarchy coded as an eight-digit number, with an optional fifth level adding two more digits.
payment_config
optional
array Payment capture settings for the payment. The options sent here override the
capture
mandatory
string Option to automatically capture payment. Possible values:
automatic: Payments are auto-captured according to the configurations specified in thecapture_optionsarray.manual: You have to manually capture payments using our or from the .
capture_options
optional
array Use this array to determine the expiry period for automatic and
automatic_expiry_period
mandatory if capture = automatic
integer Time in minutes till when payments in the authorized state should be auto-captured.
Minimum value 12 minutes. This parameter is mandatory only if the value of capture parameter is automatic.
manual_expiry_period
optional
integer Time in minutes till when you can manually capture payments in the authorized state.
- Must be equal to or greater than the
automatic_expiry_periodvalue. - Default value
7200minutes. - Maximum value
7200minutes. - Payments in the
authorizedstate after themanual_expire_periodare auto-refunded.
refund_speed
mandatory
string Refund speed for payments that were not captured (automatically or manually). Possible values:
optimum: We try to process the refund instantly. We charge a small fee for this. If it is not possible to process an instant refund, we will process a normal refund in 5-7 working days. .normal: The refund is processed in 5-7 working days.
If no value is passed, the refund is processed using the .
refund_allowed
optional
string Denotes if the cart items are refundable or not. Possible values:
fullpartialnot_allowed
campaign
optional
JSON object Details of the campaign. *Can be extended to share UTM parameters.
external_campaign_id
optional
string Unique identifier of the campaign. For example, PQR12453.
name
optional
string Name of the campaign.
description
optional
string A human-readable description of the campaign.
channel
optional
string The marketing channel used.
source
optional
string The referrer of the marketing event. Example values: google, newsletter.
medium
optional
string The medium that the campaign is using. Example values: cpc, banner, etc.
notes
optional
json object Key-value pair that can be used to store additional information about the entity. Maximum 15 key-value pairs, 256 characters (maximum) each. For example, "note_key": "Beam me up Scotty”.
payment
mandatory
json object Details about the payment.
contact
mandatory
string Phone number of the customer. The maximum length supported is 15 characters, inclusive of country code.
mandatory
string Email address of the customer. The maximum length supported is 40 characters.
callback_url
optional
string URL endpoint where Razorpay will submit the final payment status.
method
mandatory
string Name of the payment method. Possible value is card.
card
mandatory
object Details associated with the card.
number
string Unformatted card number.
name
string Name of the cardholder.
expiry_month
integer Expiry month for the card in MM format.
expiry_year
string Expiry year for the card in YY format.
cvv
string CVV printed on the back of the card.
Handy Tips
- CVV is not required by default for tokenised cards across all networks.
- CVV is optional for tokenised card payments. Do not pass dummy CVV values.
- To implement this change, skip passing the
cvvparameter entirely, or pass anullor empty value in the CVV field. - We recommend removing the CVV field from your checkout UI/UX for tokenised cards.
- If CVV is still collected for tokenised cards and the customer enters a CVV, pass the entered CVV value to Razorpay.
billing_address
optional
json object This will have details about the billing address of the customer/user.
line1
optional
string Address Line 1 of the address.
line2
optional
string Address Line 2 of the address.
city
optional
string City of the address. For example, Bengaluru.
country
optional
string ISO3 country code of the billing address. For example, IND.
state
optional
string Name of the state. For example, KA.
zipcode
optional
string zipcode of the state. For example, 560001.
authentication
optional
object Details of the authentication channel.
authentication_channel
string The authentication channel for the payment. Possible values:
browser(default)app
device_fingerprint
mandatory
string Details of the device fingerprint.
checkout_session_id
mandatory
object id of the checkout entity that is created.
browser
mandatory
object Information regarding the customer's browser. This parameter need not be passed when authentication_channel=app.
java_enabled
boolean Indicates whether the customer's browser supports Java. Obtained from the navigator HTML DOM object. Possible values:
true: Customer's browser supports Java.false: Customer's browser does not support Java.
javascript_enabled
boolean Indicates whether the customer's browser can execute JavaScript. Obtained from the navigator HTML DOM object. Possible values:
true: Customer's browser can execute JavaScript.false: Customer's browser cannot execute JavaScript.
timezone_offset
integer Time difference between UTC and the cardholder's browser local time. Obtained from the getTimezoneOffset() method applied to the Date object.
color_depth
integer Obtained from the payer's browser using the screen.colorDepth HTML DOM property.
screen_width
integer Total width of the payer's screen in pixels. Obtained from the screen.width HTML DOM property.
screen_height
integer Obtained from the navigator HTML DOM object.
referrer
optional
string Referrer header passed by the client's browser.
user-agent
mandatory
string The User-Agent header of the user's browser. The default value will be passed by Razorpay if not provided by you.
ip
mandatory
string The customer's IP address.
amount
integer The transaction amount, expressed in the currency subunit. For example, for an actual amount of $299.35, the value of this field should be 29935.
amount_due
integer The amount pending against the order.
amount_paid
integer The amount paid against the order.
attempts
integer The number of payment attempts, successful and failed, that have been made against this order.
created_at
integer The UNIX timestamp at which the order is created.
currency
mandatory
string The currency in which the transaction should be made. View the
entity
string Name of the entity. Here, it is order.
id
string The unique identifier of the order.
notes
json object Key-value pair that can be used to store additional information about the entity. Maximum 15 key-value pairs, 256 characters (maximum) each. For example, "note_key": "Beam me up Scotty”.
offer_id
string The unique identifier of the offer.
next
array A list of action objects available to continue the payment process. Present when the payment requires further processing.
action
string Indicates the next step to continue the payment process. Possible values:
otp_generate: Use this URL to allow the customer to generate OTP and complete the payment on your webpage.redirect: Use this URL to redirect the customer to submit the OTP on the bank page.
url
string URL to be used for the action indicated.
razorpay_payment_id
string Unique identifier of the payment. Present for all responses.
receipt
string Your receipt id for this order should be passed here. Maximum length is 40 characters.
status
string The status of the order. Possible values:
created: When you create an order, it is in thecreatedstate. It stays in this state till a payment is attempted on it.attempted: An order moves fromcreatedtoattemptedstate when a payment is first attempted on it. It remains in theattemptedstate till one payment associated with that order is captured.paid: After the successful capture of the payment, the order moves to thepaidstate. No further payment requests are permitted once the order moves to thepaidstate. The order stays in thepaidstate even if the payment associated with the order is refunded.
The error response parameters are available in the
.If you are using separate APIs to create Order and process Payment, follow the steps given below:
Use the Orders API to create an order before initiating a payment.
amount
mandatory
integer Payment amount in the smallest currency sub-unit. For example, if the amount to be charged is $299.00, then pass 29900 in this field. In the case of three decimal currencies, such as KWD, BHD and OMR, to accept a payment of 295.991, pass the value as 295990. And in the case of zero decimal currencies such as JPY, to accept a payment of 295, pass the value as 295.
Watch Out!
As per payment guidelines, you should pass the last decimal number as 0 for three decimal currency payments. For example, if you want to charge a customer 99.991 KD for a transaction, you should pass the value for the amount parameter as 99990 and not 99991.
currency
mandatory
string The currency in which the transaction should be made. View the
Handy Tips
Razorpay has added support for zero decimal currencies, such as JPY, and three decimal currencies, such as KWD, BHD, and OMR, allowing businesses to accept international payments in these currencies. Know more about
(May 2024).receipt
optional
string Your receipt id for this order should be passed here. Maximum length is 40 characters.
partial_payment
optional
boolean Indicates whether the customer can make a partial payment. Possible values:
true: The customer can make partial payments.false(default): The customer cannot make partial payments.
customer_details
optional
json object Details about the customer/user.
name
optional
string The customer’s name. For example, Gaurav Kumar.
contact
optional
string The customer's phone number. A maximum length of 15 characters, including country code. For example, +919000090000.
optional
string The customer’s email address. For example,
insights
optional
json object Additional details of the customer, including past transaction data.
order_count
optional
integer Total orders placed by the account so far on the merchant platform. For example, 22.
chargeback_count
optional
integer Total chargeback received for the customer account on the merchant platform. For example, 4.
tier
optional
string Your company's passenger classification, such as with a frequent flyer program. In this case, you might use values such as:
standardgoldplatinum
booking_channel
optional
string To share if the user is an agent, corporate, or individual. Possible values:
agentcorporateindividual
has_account
optional
boolean To denote if the buyer is on guest checkout or has logged into the account. Possible values:
true: If the user is logged into the account.false: If the user is on guest checkout.
registered_at
optional
integer UNIX timestamp when the customer account was created with the merchant. For example, 1234567890.
shipping_address
optional
json object This will have details about the order's shipping address.
line1
optional
string Address Line 1 of the address
line2
optional
string Address Line 2 of the address
city
optional
string city of the address. For example, Bengaluru.
country
optional
string ISO3 country code of the billing address. For example, IND.
state
optional
string name of the state. For example, KA.
zipcode
optional
string Zipcode of the state. For example, 560068.
latitude
optional
float Latitude of the position expressed in decimal degrees (WSG 84), for example, 6.244203. A positive value denotes the northern hemisphere or the equator, and a negative value denotes the southern hemisphere. The number of digits represents the precision of the coordinate.
longitude
optional
float Longitude of the position expressed in decimal degrees (WSG 84), for example, -75.581211. A positive value denotes east longitude or the prime meridian, and a negative value denotes west longitude. The number of digits represents the precision of the coordinate.
billing_address
optional
json object This will have details about the billing address of the customer/user.
line1
optional
string Address Line 1 of the address.
line2
optional
string Address Line 2 of the address.
city
optional
string City of the address. For example, Bengaluru.
country
optional
string ISO3 country code of the billing address. For example, IND.
state
optional
string Name of the state. For example, KA.
zipcode
optional
string Zipcode of the state. For example, 560001.
latitude
optional
float Latitude of the position expressed in decimal degrees (WSG 84), for example, 6.244203. A positive value denotes the northern hemisphere or the equator, and a negative value denotes the southern hemisphere. The number of digits represents the precision of the coordinate.
longitude
optional
float Longitude of the position expressed in decimal degrees (WSG 84), for example, -75.581211. A positive value denotes east longitude or the prime meridian, and a negative value denotes west longitude. The number of digits represents the precision of the coordinate.
shipping_details
optional
json object This will have the order's shipping details.
method
optional
enum Shipping method for the product. Possible values:
lowcost: Lowest-cost service.sameday: Courier or same-day service.oneday: Next-day or overnight service.twoday: Two-day service.threeday: Three-day service.pickup: Store pick-up.other: Other shipping method.none: No shipping method because the product is a service or subscription.
gift_wrap
optional
boolean Indicates whether the customer requested gift wrapping for this purchase. This field can contain one of the following values:
true: The customer requested gift wrapping.false: The customer did not request gift wrapping.
line_items_total
optional
integer Total sum of the cart value.
line_items
mandatory
json object Details about the specific items added to the cart.
type
mandatory
string Defines the category type. Possible values:
travelhotele_commercemutual_fund
sku
optional
string The unique product id defined by the business.
name
optional
string The name of the product.
description
optional
string Description of the product.
quantity
optional
integer Number of tickets/items/quantity to be purchased.
image_url
optional
string URL of the product image.
product_url
optional
string URL of the product’s listing page.
price
optional
integer Unit price of the product in paisa. (needs to be inclusive of tax)
offer_price
optional
integer Offer price of the product. The offer price can be lower than the price if the business runs a discount on the product.
tax_amount
optional
integer Tax amount that needs to be added to the product. In case the offer_price is tax-inclusive, keep it blank.
e_commerce
optional
json object Details about the type-specific data points. Will vary based on the type selected.
other_product_codes
optional
object Array to collect different codes that can identify the item type. Possible values:
upc
string Universal Product Code (UPC; redundantly: UPC code) is a barcode symbology used worldwide to track trade items in stores. UPC consists of 12 numeric digits that are uniquely assigned to each trade item
ean
string European Article Numbers (EAN) is a type of barcode that encodes an article number. Contains 8 (EAN-8) or 13 (EAN-13) numerical digits.
unspsc
string The United Nations Standard Products and Services Code (UNSPSC) is a taxonomy of products and services used in eCommerce. It is a four-level hierarchy coded as an eight-digit number, with an optional fifth level adding two more digits.
payment_config
optional
array Payment capture settings for the payment. The options sent here override the
capture
mandatory
string Option to automatically capture payment. Possible values:
automatic: Payments are auto-captured according to the configurations specified in thecapture_optionsarray.manual: You have to manually capture payments using our or from the .
capture_options
optional
array Use this array to determine the expiry period for automatic and
automatic_expiry_period
mandatory if capture = automatic
integer Time in minutes till when payments in the authorized state should be auto-captured.
Minimum value 12 minutes. This parameter is mandatory only if the value of capture parameter is automatic.
manual_expiry_period
optional
integer Time in minutes till when you can manually capture payments in the authorized state.
- Must be equal to or greater than the
automatic_expiry_periodvalue. - Default value
7200minutes. - Maximum value
7200minutes. - Payments in the
authorizedstate after themanual_expire_periodare auto-refunded.
refund_speed
mandatory
string Refund speed for payments that were not captured (automatically or manually). Possible values:
optimum: We try to process the refund instantly. We charge a small fee for this. If it is not possible to process an instant refund, we will process a normal refund in 5-7 working days. .normal: The refund is processed in 5-7 working days.
If no value is passed, the refund is processed using the .
refund_allowed
optional
string Denotes if the cart items are refundable or not. Possible values:
fullpartialnot_allowed
campaign
optional
json object Details of the campaign. *Can be extended to share UTM parameters.
external_campaign_id
optional
string Unique identifier of the campaign. For example, PQR12453.
name
optional
string Name of the campaign.
description
optional
string A human-readable description of the campaign.
channel
optional
string The marketing channel used.
source
optional
string The referrer of the marketing event. Example values: google, newsletter.
medium
optional
string The medium that the campaign is using. Example values: cpc, banner, etc.
notes
optional
json object Key-value pair that can be used to store additional information about the entity. Maximum 15 key-value pairs, 256 characters (maximum) each. For example, "note_key": "Beam me up Scotty”.
amount
integer The transaction amount, expressed in the currency subunit. For example, for an actual amount of $299.35, the value of this field should be 29935.
amount_due
integer The amount pending against the order.
amount_paid
integer The amount paid against the order.
attempts
integer The number of payment attempts, successful and failed, that have been made against this order.
created_at
integer The UNIX timestamp at which the order is created.
currency
mandatory
string The currency in which the transaction should be made. View the
entity
string Name of the entity. Here, it is order.
id
string The unique identifier of the order.
notes
json object Key-value pair that can be used to store additional information about the entity. Maximum 15 key-value pairs, 256 characters (maximum) each. For example, "note_key": "Beam me up Scotty”.
offer_id
string The unique identifier of the offer.
receipt
string Your receipt id for this order should be passed here. Maximum length is 40 characters.
status
string The status of the order. Possible values:
created: When you create an order, it is in thecreatedstate. It stays in this state till a payment is attempted on it.attempted: An order moves fromcreatedtoattemptedstate when a payment is first attempted on it. It remains in theattemptedstate till one payment associated with that order is captured.paid: After the successful capture of the payment, the order moves to thepaidstate. No further payment requests are permitted once the order moves to thepaidstate. The order stays in thepaidstate even if the payment associated with the order is refunded.
The error response parameters are available in the
.Once the order is created, pass the order_id from the Orders API response to the Payments API.
order_id
mandatory
string Unique identifier of the Order.
mandatory
string Email address of the customer. The maximum length supported is 40 characters.
contact
mandatory
string Phone number of the customer. The maximum length supported is 15 characters, inclusive of country code.
method
mandatory
string Name of the payment method. Possible value is card.
user-agent
mandatory
string The User-Agent header of the user's browser. The default value will be passed by Razorpay if not provided by you.
ip
mandatory
string The customer's IP address.
authentication
optional
object Details of the authentication channel.
authentication_channel
string The authentication channel for the payment. Possible values:
browser(default)app
browser
mandatory
object Information regarding the customer's browser. This parameter need not be passed when authentication_channel=app.
java_enabled
boolean Indicates whether the customer's browser supports Java. Obtained from the navigator HTML DOM object. Possible values:
true: Customer's browser supports Java.false: Customer's browser does not support Java.
javascript_enabled
boolean Indicates whether the customer's browser can execute JavaScript. Obtained from the navigator HTML DOM object. Possible values:
true: Customer's browser can execute JavaScript.false: Customer's browser cannot execute JavaScript.
timezone_offset
integer Time difference between UTC time and the cardholder's browser local time. Obtained from the getTimezoneOffset() method applied to the Date object.
screen_width
integer Total width of the payer's screen in pixels. Obtained from the screen.width HTML DOM property.
screen_height
integer Obtained from the navigator HTML DOM object.
color_depth
integer Obtained from the payer's browser using the screen.colorDepth HTML DOM property.
language
string Obtained from the payer's browser using the navigator.language HTML DOM property. Maximum limit of 8 characters.
notes
optional
object Key-value object used for passing tracking info. Refer to
callback_url
optional
string URL endpoint where Razorpay will submit the final payment status.
referrer
optional
string Referrer header passed by the client's browser.
next
array A list of action objects available to continue the payment process. Present when the payment requires further processing.
action
string Indicates the next step to continue the payment process. Possible values:
otp_generate: Use this URL to allow the customer to generate OTP and complete the payment on your webpage.redirect: Use this URL to redirect the customer to submit the OTP on the bank page.
url
string URL to be used for the action indicated.
razorpay_payment_id
string Unique identifier of the payment. Present for all responses.
The error response parameters are available in the
.Once the payment is completed by the customer, a POST request is made to the callback_url provided in the payment request. The data contained in this request will depend on whether the payment was a success or a failure.
If the payment made by the customer is successful, the following fields are sent:
razorpay_payment_idrazorpay_order_idrazorpay_signature
{"razorpay_payment_id": "pay_29QQoUBi66xm2f","razorpay_order_id": "order_9A33XWu170gUtm","razorpay_signature": "9ef4dffbfd84f1318f6739a3ce19f9d85851857ae648f114332d8401e0949a3d"}
If the payment has failed, the callback will contain details of the error. Refer to
for details.Signature verification is a mandatory step to ensure that the callback is sent by Razorpay. The razorpay_signature contained in the callback can be regenerated by your system and verified as follows.
Create a string to be hashed using the razorpay_payment_id contained in the callback and the Order ID generated in the first step, separated by a |. Hash this string using SHA256 and your API Secret.
generated_signature = hmac_sha256(order_id + "|" + razorpay_payment_id, secret);if (generated_signature == razorpay_signature) {payment is successful}
/*** This class defines common routines for generating* authentication signatures for Razorpay Webhook requests.*/public class Signature{private static final String HMAC_SHA256_ALGORITHM = "HmacSHA256";/*** Computes RFC 2104-compliant HMAC signature.* * @param data* The data to be signed.* @param key* The signing key.* @return* The Base64-encoded RFC 2104-compliant HMAC signature.* @throws* java.security.SignatureException when signature generation fails*/public static String calculateRFC2104HMAC(String data, String secret)throws java.security.SignatureException{String result;try {// get an hmac_sha256 key from the raw secret bytesSecretKeySpec signingKey = new SecretKeySpec(secret.getBytes(), HMAC_SHA256_ALGORITHM);// get an hmac_sha256 Mac instance and initialize with the signing keyMac mac = Mac.getInstance(HMAC_SHA256_ALGORITHM);mac.init(signingKey);// compute the hmac on input data bytesbyte[] rawHmac = mac.doFinal(data.getBytes());// base64-encode the hmacresult = DatatypeConverter.printHexBinary(rawHmac).toLowerCase();} catch (Exception e) {throw new SignatureException("Failed to generate HMAC : " + e.getMessage());}return result;}}
Handy Tips
On the Razorpay Dashboard, ensure that the payment status is captured. Refer to the payment capture settings page to know how to
To verify the payment status from the Razorpay Dashboard:
- Log in to the Razorpay Dashboard and navigate to Transactions → Payments.
- Check if a Payment Id has been generated and note the status. In case of a successful payment, the status is marked as Captured.
Is this integration guide useful?