Hello, Could you please tell about expiration time of onlinePaymentCryptogram once it was created? We have stated that the same onlinePaymentCryptogram could be used a several times. Reference https://developer.apple.com/library/archive/documentation/PassKit/Reference/PaymentTokenJSON/PaymentTokenJSON.html
Expiration time of onlinePaymentCryptogram (PassKit, Payment Token)
Are you wanting to know more about the applicationExpirationDate property in the decrypted applicationData payload? If so, this is the Card expiration date in the format YYMMDD.
Otherwise, can you tell me more about what you are trying to do and what field you are trying to use?
Matt Eaton
DTS Engineering, CoreOS
meaton3@apple.com
Hello,
No, I did not mean applicationExpirationDate.
We are PSP, merchants decrypt Payment Token and provide us with onlinePaymentCryptogram that we send to Apple.
We have faced that the same onlinePaymentCryptogram could be send more than one time and Apple accepts it. But onlinePaymentCryptogram has to have expiration time (it should be Apple rule) and we would like to know this expiration time.
We are going to block onlinePaymentCryptogram duplicates but would like avoid performance downgrade if our SQL script will retrieve all data instead of defined time period (for example, if expiration time is week then SQL script will lookup for last week only).
Best regards, Konstantin
Thank you for the follow up context here. Unfortunately I do not have a concrete answer for you here, so I would encourage you do one of the following things to try and get further clarification:
-
Contact Apple Pay Merchant Support.
-
Open a bug report with your specific question for more details on how this situation is handled.
Matt Eaton
DTS Engineering, CoreOS
meaton3@apple.com