Integration Steps
Integrate Durianpay Checkout with your website to start accepting online payments from your customers. Durianpay supports a slew of payment methods such as bank transfers/VA, credit and debit cards, e-wallets (OVO, Dana, Linkaja) and others. Our checkout library provides all the essential features for integrating Durianpay Checkout with the client-side of your application.
Preparation
Create a Durianpay account
If you haven't done it already, click here to sign up. Sign up for Durianpay account here to retrieve API keys for Sandbox environment and to test integrations end-to-end.
Generate API Keys
Retrieve Sandbox API keys that will be used in next section(s) It is okay to have only the
sandboxkey for now. If you havelivekey, you can use it too.Initialize Durianpay on your server side, if you are using our server SDKs.
npm install dpay-node-sdkconst Durianpay = require('dpay-node-sdk');
...
const dpay = new Durianpay({
secret_key: "your_secret_key", // Use your Sandbox or LIVE key
});Steps Overview
- Step1: Create an order/token from the server
- Step2: Create payments charge from the server
- Step3: Redirect user to Wallet/VA checkout on your client, as applicable
- Step4: Webhooks / Store fields on your server (Optional)
- Step5: Verify payment status (Optional)
- Step6: Verify signature on your server side (Optional)
Step1: Create an order from the server
Use following endpoint to create an order
var options = {
amount: "20000",
currency: "IDR",
order_ref_id: "order2314", // optional, your order reference
customer: {
customer_ref_id: "cust_001", // optional, your customer reference
given_name: "Imam Sugiarto",
email: "imam.sugiarto@koss.info", // mandatory
mobile: "08972638003",
address: { // mandatory for BNPL
receiver_name: "Jude Casper",
receiver_phone: "8987654321",
label: "Judes Address",
address_line_1: "Cambridge layout",
address_line_2: "Apartment #786",
city: "Bangalore",
region: "Jogupalya",
country: "Indonesia",
postal_code: "560008",
landmark: "Kota Jakarta Selatan"
},
items: [
{
"name": "LED Television",
"qty": 1,
"price": "925001.55",
"logo": "/static/tv_image.jpg"
}
]
}
};
// Create Orders
dpay.orders.create(options).then(resp => {
console.log(resp);
// order_id = resp.order_id;
})
.catch(error => {
console.log(error.err + ' | ' + JSON.stringify(error.data));
});// Sample response
{
"id": "ord_A31sd3AwAgItmmXdp",
"customer_id": "cus_rX2ABaMbZJ0050",
"amount": "20000",
"currency": "IDR",
"payment_option": "full_payment",
"status": "started",
"order_ref_id": "order2314",
"address_id": 3863,
"created_at": "2021-08-04T06:06:37.849813Z",
"updated_at": "2021-08-04T06:06:37.849813Z",
"metadata": {},
"access_token": "adsyoi12sdASd123ASX@qqsda231",
...
}Read more: Learn more about Orders API.
Step 2: Create payments charge from the server
This step will help you create a checkout button on your website which will initiate Durianpay checkout flow for your users seamlessly. The Durianpay checkout modal opens in place without redirecting user to any new tab or url, hence is a much better customer experience leading to better conversions and lower drop offs. You can configure the payment methods in backend with the help of your dedicated Customer success manager easily. Also, you can customize the look and feel at the time of onboarding itself which will forever apply to all your checkout sessions across all devices and users.
Use following endpoint to create a payment
Error Structure - see Errors for more details
{
"error": "error message",
"error_code": "DPAY_INTERNAL_ERROR"
}Read more: Learn more about Payments API.
Step 3: Redirect user to Wallet/VA checkout on your client, as applicable
You may have to redirect users to respective checkout_url depending on which wallet customer has chosen for the payment. If you receive checkout_url in payment charge API response, please redirect the user to that for them to complete the payment.
// for Wallets
{
"type": "EWALLET",
"response": {
"payment_id": "pay_dAM0lqkVuk0074",
"order_id": "ord_TVZ6EYuBJ85268",
"mobile": "08123123123",
"status": "processing",
"expiration_time": "2021-04-02T15:08:57.800297779Z",
"checkout_url": "https://link.to/dana-checkout-url", "paid_amount": "1000.00",
"metadata": {},
...
}
}Once user finishes payemnt successfully on checkout_url, you will automatically receive webhook events as mentioned below in Step 4.
Alternatively, you can also call Payment Status check APIs as mentioned in Step 5.
Step4: Webhooks / Store fields on your servers
Whenever certain transaction actions occur on your Durianpay Checkout integration, we trigger events which your application can listen to. This is where webhooks come in. A webhook is a URL on your server where we send payloads for such events. For example, if you implement webhooks, once a payment is successful, we will immediately notify your server with a payment.completed event. Here is a list of events we can send to your webhook URL.
You can specify your webhook URL on your dashboard (or through your dedicated Customer success manager) where we would send POST requests to whenever an event occurs.
Valid events
payment.completed payment.failed, payment.cancelled, order.created, order.completed
{
"event": "payment.completed",
"data":{
"id": "pay_dAS123ad123Asd",
"signature": "9e892f199d026d06a56669e658a56f264610431d24e8b4d07f7bd46f6d5062d2",
"order_id": "ord_XXXXXXXXX",
"amount": "10000",
"currency": IDR,
"paid_at": "2016-09-30T21:10:19.000Z",
"created_at":"2016-09-30T21:09:56.000Z",
"metadata": {
"key": "value"
},
}Step5: Verify payment status (Optional)
You will get payment_id through webhook callback (if configured). You should ideally try to validate the payment and store the details in your server/database against the order/transaction accordingly.
First, you need to get verification signature from Durianpay which would have been provided to you in your webhook callback.
{
"event": "payment.completed",
"data":{
"id": "pay_dAS123ad123Asd",
"signature": "9e892f199d026d06a56669e658a56f264610431d24e8b4d07f7bd46f6d5062d2", ...
}If you didn't receive it for any reason, you can call payment status check API from your server/backend which will respond back with signature if status of payment is completed.
"status": "completed",
"is_completed": true,
"signature": "9e892f199d026d06a56669e658a56f264610431d24e8b4d07f7bd46f6d5062d2"This signature is computed by us using payment_id, amount and your secret key. You need to create the hash on your server/backend where you have all these elements and match with the signature provided by us.
Sample code for signature generation
// Function to generate the signature for verification of payment
//use appropriate key if it is a sandbox order please use dp_test key and if it is a live order then use dp_live key
func GenerateSignature(paymentID string, amount string, accessKey string) (generatedSignature string) {
//message passed includes payment_id + “|” + amount. Amount is in “15000.00” format
secretData := paymentID + "|" + amount
// Create a new HMAC by defining the hash type and the key (as byte array)
h := hmac.New(sha256.New, []byte(accessKey))
// Write Data to it
h.Write([]byte(secretData))
// Get result and encode as hexadecimal string
generatedSignature = hex.EncodeToString(h.Sum(nil))
return
}Test Integration
Test payments
Sandbox Mode
To simulate the charge API flow in sandbox mode, merchants can use dp_test_XXXXXXXXX key. By default we will simulate the success scenario.
If you want to simulate the failure scenario, you should use the sandbox_options json field in the request. This contains force_fail and delay_ms fields.
| Field | Description |
|---|---|
| force_fail | bool Make this field as true in the request if you want to simulate failure scenario. |
| delay_ms | integer If you want to simulate a delay in making the payment as success or failed, give a value in milliseconds in this field in the request. |
Note: Currently sandbox_options is supported for VA, E-Wallet and RetailStore.
Example request for charge API in sandbox.
curl -u <YOUR_SECRET_KEY> \
-X POST https://api.durianpay.id/v1/payments/charge \
-H "content-type: application/json" \
-d '{
"type": "VA",
"request": {
"order_id": "ord_aiFBiqVWwk8596",
"amount": "925002.00",
"bank_code": "BCA",
"name": "Bauch Leannon and Donnelly Jude Casper",
"save_preferences": true,
"address_id": 4028,
"customer_info": {
"id": "cus_lqbboIkqI80314",
"given_name": "Jude Casper",
"email": "jude.casper@testmail.com",
"mobile": "+6285722173250"
}
},
"sandbox_options": {
"force_fail": true,
"delay_ms": 10000
}
}'Example response for sandbox.
{
"data": {
"type": "VA",
"response": {
"payment_id": "pay_lZqgqy5mQz0234",
"order_id": "ord_aiFBiqVWwk8596",
"account_number": "1111111111",
"expiration_time": "2022-01-11T09:01:18.083714Z",
"paid_amount": ""
}
}
}Verify Payment status
Through Dashboard
- Log into the Dashboard and navigate to Payments in sidebar.
- Check if a
payment_idhas been generated. If nopayment_idhas been generated, it means that the transaction has failed (and didn't even initiate from user's end)
Through APIs
Use following endpoint to do status check on a payment (Read more about Payment Status Check API)
curl -u <YOUR_SECRET_KEY> \
-X GET https://api.durianpay.id/v1/payments/pay_B14sdfwAdmmSDF24a/status \
-H "content-type: application/json"'{
"data": {
"status": "completed",
"is_completed": true,
"signature": "9e892f199d026d06a56669e658a56f264610431d24e8b4d07f7bd46f6d5062d2"
}
}Accept LIVE payments
After testing the flow of funds end-to-end in sandbox mode, you can switch to the live mode and start accepting payments from your customers. However, make sure that you swap the test API keys with the live keys.
- Log into Dashboard and switch to
Livemode on the sidebar menu. - Navigate to Settings → API Keys to access your API key for live mode.
- Replace the
sandboxAPI key with theLiveKey in the Checkout code and start accepting real-time payments.