Saved Card
In this approach, the Hyperswitch SDK is used on the frontend to capture card details. Card data is securely sent to the Hyperswitch backend and stored in Hyperswitch Vault. Payment orchestration, routing, and connector logic are handled entirely by the Hyperswitch backend.
The merchant uses the Hyperswitch Dashboard to configure connectors, routing rules, and orchestration logic. All payment requests are initiated using vault tokens, and raw card data never reaches merchant systems. Since card details are handled entirely by Hyperswitch, merchants are not required to be PCI DSS compliant for card data handling.
New User (Payments SDK)
1. Create Payment (Server-Side)
The merchant server creates a payment by calling the Hyperswitch payments/create API with transaction details such as amount and currency. Hyperswitch responds with a payment_id , customer_id and client_secret, which are required for client-side processing.
Note - In case the merchant does not pass the customer ID, then the transaction is treated as a Guest customer checkout
2. Initialize SDK (Client-Side)
The merchant client initializes the Hyperswitch SDK using the client_secret and publishable_key. The SDK fetches eligible payment methods from Hyperswitch and renders a secure payment UI.
3. Collect Card Details The customer selects a card payment method and enters their card details directly within the SDK-managed interface, ensuring sensitive data never passes through merchant systems.
4. Authorize and Store Card
The SDK submits a payments/confirm request to Hyperswitch. Hyperswitch authorizes the payment with the processor and securely stores the card in the Hyperswitch Vault, generating a reusable payment_method_id.
5. Return Status
The final payment and vaulting status is returned to the SDK, which redirects the customer to the merchant’s configured return_url.
Returning or Repeat User (Payments SDK)
1. Create Payment (Server-Side)
The merchant server initiates the payment by calling the payments/create API with transaction details such as amount and currency. Hyperswitch responds with a payment_id , customer_id and client_secret, which are required for client-side processing.
Note -The merchant needs to pass the same customer ID for the SDK to fetch the saved customer payment methods and display them In case the merhcnat is not using the SDK then they need to use the List Customer Saved Payment Methods API to fetch th stored payment methods against a customer
2. Initialize SDK and Fetch Saved Cards The merchant client initializes the Hyperswitch SDK. The SDK requests eligible payment methods from Hyperswitch, including any saved cards associated with the customer.
3. Customer Selects a Saved Card The SDK displays the saved cards in the payment UI, customer enters the CVV.
4. Retrieve Card Data and Authorize
The SDK sends a payments/confirm request with the selected payment_method_id. Hyperswitch securely retrieves the card data from the Hyperswitch Vault and submits the authorization request to the processor via the Hyperswitch Connector.
5. Return Status
The processor returns the authorization result to Hyperswitch, which forwards the final status to the SDK. The customer is redirected to the merchant’s return_url with the payment outcome.
Last updated
Was this helpful?