Release Notes

Highlights

• Advanced Routing: Introduced new routing capabilities based on transaction initiators and issuer countries to optimize payment success rates.

• Expanded Connector Support: Added specialized flows including Peach Payments Pre-Auth, Braintree 3DS pass-through, and WorldpayWPG payouts.

• UCS Tunnel Enhancements: Significant progress on the Hyperswitch <> UCS tunnel with new support for sessions, PayPal Post-Auth, and granular authentication.

• Identity & Security: Launched OIDC infrastructure and discovery endpoints, alongside improved user role validation and a generic Locker API.

• Standardized Error Handling: Implemented GSM (Global Status Monitoring) schema updates to provide more consistent error codes and messages across the platform.

Connector expansions and enhancements

• Peach Payments: Added support for Pre-Auth flows with full reversal capabilities. [#10590]

• Braintree: Introduced support for external 3DS pass-through authentication. [#10591]

• WorldpayWPG: Implemented "Fast Access" feature for payout processing. [#10647]

• Zift: Streamlined integration by removing redundant billing fields and adding account verification (mandate setup) support. [#10665]

• Stripe: Expanded zero-amount mandate support and refined setup_future_usage configurations for Affirm and Klarna. [#10644, #10610]

• NMI: Fixed an issue where merchant_defined_fields were being double encoded. [#10603]

• J.P. Morgan: Refactored capture and void requests to ensure proper field mapping. [#10617]

Customer and access management

• OIDC Infrastructure: Launched OpenID Connect (OIDC) infrastructure including discovery endpoints for standardized identity provider integration. [#10145, #10678]

• User Roles: Enhanced security by adding entity type validation in user role lineage queries and inviter-invitee role hierarchy checks. [#10608, #10667]

• Locker API: Implemented a generic Locker API handler to unify sensitive data management. [#10242]

• Payouts: Added fallback logic for name fields when processing payouts via PSP tokens. [#10502]

Routing and core improvements

• Euclid Routing: Enabled advanced routing rules based on transaction_initiator and issuer_country. [#10658, #10638]

• HS <> UCS Tunnel: Significant enhancements including Session flow support, Pre-Auth for NMI, PayPal Post-Auth, and granular authentication interfaces. [#10552, #10632, #10640, #10622]

• Global Status Monitoring (GSM): Standardized error fields across database schemas and refined the lookup logic for GSM codes and messages. [#10600, #10585]

• Webhooks & Analytics: Added requires_capture to default webhook statuses and improved event tracking for payment method flows and refund filters. [#10660, #10549]

• CIT Payments: Added support for Customer Initiated Transactions (CIT) using saved ACH payment methods. [#10592]

Highlights

• Advanced Error Insights: Enhanced Shift4 error mapping to propagate specific issuer error codes, enabling more precise troubleshooting for failed transactions.

• Expanded Payment Capabilities: Introduced PayJustNow In-Store and OpenBanking support for the Hyperswitch <> UCS integration, broadening global payment method availability.

• Optimized Data Retrieval: Launched a new batch retrieval endpoint for payment methods and refined metadata propagation from the locker to payment responses.

• Decryption Enhancements: Added support for Apple Pay decryption on Braintree and NMI (via WASM), streamlining the checkout experience for digital wallets.

• Architectural Consolidation: Refactored gateway routing into a unified execution path and introduced a comparison service to improve system reliability and performance.

Connector expansions and enhancements

• Shift4: Enhanced error mapping to support and propagate granular issuer error codes. [#10748]

• Gigadat: Added support for storing Interac customer information within the connector's additional data fields. [#10749]

• Braintree: Introduced Apple Pay HS-Decryption support and expanded UCS wallet support for PayPal, Apple Pay, and Google Pay SDKs. [#10734, #10513]

• PayJustNow: Implemented the PayJustNow In-Store payment method and template code. [#10745, #10716]

• Novalnet: Updated SEPA requirements to make billing email a mandatory field. [#10720]

• Nuvei: Implemented a passthrough payout flow for faster processing. [#10463]

• WorldpayWPG: Fixed an issue with PSync deserialization in error responses. [#10764]

Customer and access management

• Metadata Propagation: Improved core logic to propagate metadata from the locker response directly to the payment method response. [#10645]

• Payment Method Service: Added support for guest checkout flows and introduced a batch data retrieval endpoint. [#10487, #10663]

• Authentication Models: Introduced new domain models for authentication and added Kafka-based filters to the dashboard for better monitoring. [#10446]

• API Consistency: Aligned ApiEvent status codes with HTTP responses when the proxy connector status code feature is enabled. [#10680]

Routing and core improvements

• Unified Routing: Consolidated payment gateway routing into a single execution path to improve maintainability and speed. [#10710]

• HS <> UCS Tunnel: Introduced PostAuth for Nexixpay and PreAuth flows for Redsys and Nuvei. [#10706, #10727, #10726]

• NMI WASM: Added Apple Pay decryption flow via WASM for enhanced frontend security. [#10740, #10686]

• Network Tokens: Enabled the passing of network tokens directly in payment requests. [#9975]

• Infrastructure Fixes: Increased RUST_MIN_STACK size to prevent stack overflow errors in heavy environments and improved error handling for 3DS authentication strategies. [#10730, #10722]

Highlights

• Advanced Error Structuring: Introduced structured error details to payment_attempts, allowing for a more granular breakdown of failures at each stage of the transaction attempt.

• Redirection & SDK Session Support: Refactored the order creation interface to support seamless redirection and SDK session tokens for Trustpay and Payme, improving high-conversion checkout flows.

• Proxy V2 Volatile ID Support: Added support for volatile payment method IDs within Proxy V2, enabling more flexible and secure handling of temporary payment method tokens.

• Unified Payment Architecture: Transitioned core logic from "Preprocessing" to "Granular Flow" and unified gateway context handling to simplify payment processing and improve overall system reliability.

• Payout Transparency: Enhanced connector event logging to propagate payout_id, providing better audit trails and visibility for payout lifecycle management.

Connector expansions and enhancements

• Zift: Updated transaction logic to use Ecommerce industry type categorization instead of simple card-present/not-present flags for more accurate processing. [#10775]

• FINIX: Added comprehensive support for webhooks and statement descriptors to improve reconciliation and transaction clarity on bank statements. [#10758]

• Finix (WASM): Enhanced security for the WASM integration by adding merchant source verification keys. [#10792]

• Trustpay & Payme: Refactored the create order interface to better handle redirection and SDK-based session tokens. [#10779]

• WorldpayWPG: Fixed a critical bug in the 3DS challenge endpoint to ensure smooth cardholder authentication. [#10772]

Customer and access management

• Proxy V2 Enhancement: Integrated volatile payment method ID support, allowing for more dynamic management of temporary payment identifiers in proxy-based workflows. [#10597]

• Platform Trackers: Added support for update trackers within the platform payment models, enabling better state monitoring across different entities. [#10691]

• Payout Updates: Introduced a manual update API for payouts, giving merchants more control over modifying payout statuses when automated syncs are unavailable. [#10539]

Routing and core improvements

• Granular Flow Architecture: Successfully migrated core preprocessing logic to the new Granular Flow, optimizing how requests are handled before authorization. [#10778]

• Error Detail Framework: Enhanced the payment_attempts model to include structured error details, which helps in identifying whether failures originated from the issuer, network, or connector. [#10646]

• Unified Context Handling: Simplified the payment processing logic by unifying gateway context handling (v2), reducing technical debt and improving performance. [#10774]

• Connector Event Enrichment: Enabled the propagation of payout_id within connector events to ensure end-to-end traceability for every payout attempt. [#10518]

Highlights

1. Expanded analytics coverage for payouts with new audit and reporting capabilities.

2. Improved platform visibility with richer payment response fields and better processor tracking.

3. Strengthened connector support for Google Pay, mandates, and authentication flows.

4. Continued improvements in tokenisation, routing accuracy, and API reliability.

Connector expansions and enhancements

1. Adyen and Barclaycard: authentication and wallet improvements

   • Added Google Pay pre-decryption support for Adyen, improving wallet processing reliability (#10806)

   • Introduced authentication flows for Barclaycard, enabling stronger step-up handling where required (#10810)

2. Airwallex, Redsys, and Stripe: mandate and request handling fixes

   • Fixed order creation consistency across all Airwallex flows (#10768)

   • Resolved base64 padding and 3DS transaction ID mapping issues for Redsys (#10757, #10784)

   • Added support for customer-initiated mandate payments and ensured setup_future_usage is passed for tokenised cards in Stripe flows (#10815)

3. Paysafe and JPMorgan: token and request correctness

   • Introduced a PaymentMethodToken flow for Paysafe connectors (#10541)

   • Ensured correct field propagation in capture and void requests for JPMorgan (#10617)

Customer and access management

1. Platform-connected customer access

   • Added support to retrieve customer details in platform-based payment flows, improving visibility in multi-merchant setups (#10684)

2. Authentication model improvements

   • Restructured authentication to use a unified platform model with initiator tracking, laying groundwork for more consistent auth handling across flows (#10746)

Routing and core improvements

1. Analytics and reporting

   • Added compatibility for payouts in the Analytics API and introduced a payout audit table to support richer payout reporting and reconciliation (#10479, #10842, #10588)

2. Payment response enrichment

   • Added processor_merchant_id and initiator fields to payment responses, improving downstream observability and debugging (#10804)

   • Updated post-update tracking to accept processor information for better lifecycle visibility (#10743)

3. Tokenisation and payment method APIs

   • Introduced CVC token payment method APIs (v2) and updated token generation and consumption logic to align with newer payment flows (#10787, #10835)

4. Network and error handling

   • Added connector_response_reference_id to error responses, improving traceability across failed requests (#10816)

   • Began passing network tokens directly in payment requests for supported flows (#9975)

5. Routing correctness and stability

   • Ensured setup_future_usage is populated using intent data within router state, reducing inconsistencies in saved payment behaviour (#10829)

Highlights

• Introduced decrypted wallet flows for Apple Pay and Google Pay, expanding secure wallet acceptance across supported connectors.

• Expanded UPI, QR, and local payment method coverage with new connector capabilities.

• Strengthened authentication, webhook reliability, and payment error visibility across core flows.

Connector expansions and enhancements

• Added Apple Pay and Google Pay decrypted flow support for wallet payments(#10329)

• Enabled QRIS payment methods for the Xendit connector(#10759)

• Added gift card balance check support for the Blackhawknetwork connector(#10897)

• Enabled Trustly and Interac payment methods in the HS<>UCS tunnel(#10838)

• Added UPI source support for UPI payments in UCS(#10675)

• Extended network token passthrough support for Peach Payments at the merchant level(#10864)

• Introduced Worldpay Modular connector support(#10795)

Customer and access management

• Added a virtual machine for authentication CTP flows, improving authentication scalability(#10803)

• Introduced pending authentication status to authentication attempt tracking(#10833)

• Added authentication type filtering for tokenisation flows(#10828)

• Added card expiry support to Payment Methods v2(#10811)

Routing and core improvements

• Added error details to payment responses for improved failure diagnostics(#10799)

• Introduced intent_fulfillment_time configuration for the temporary locker(#10877)

• Added webhook setup capabilities to merchant routing responses(#10793)

• Enabled processor acceptance for trigger payment webhooks(#10794)

• Improved payout webhook behaviour when source verification is disabled(#10903)

• Improved shipping cost and tax handling in payment update operations(#10805)

• Added MCC list support to WASM for enhanced validation(#10780)

• Improved payment error propagation and masking, including UCS and external service responses(#10865, #10848)

Highlights

• Improved authentication and platform access controls, with clearer separation between platform operations and connected account scope, along with better authentication event integration for smoother monitoring.

• Expanded connector capabilities across order creation, split settlements, and enriched request metadata support to improve payment coverage and simplify reconciliation workflows.

• Strengthened overall reliability with improved cancel flow visibility, safer refund validations, better retry traceability, and multiple connector specific stability fixes.

Connector expansions and enhancements

• Enabled order creation support for the Nordea connector, allowing merchants to support order first workflows where an order reference is created before payment confirmation (#10945)

• Added settlement split flow support for card payments in the Xendit connector, enabling platform and marketplace use cases where a single payment needs to be split across multiple recipients or settlement routes (#10916)

• Enabled processing_account_id support via metadata across connector payload flows, improving compatibility for setups that require account level identifiers to correctly route or process transactions (#10904)

• Enabled merchant order reference id support in CyberSource payment requests, improving reconciliation and making it easier for merchants to match connector transactions with internal order systems (#10723)

Customer and access management

• Distinguished platform self operations from connected scope operations for clearer access boundaries, reducing ambiguity in permissions and improving safety for platforms managing multiple connected merchants (#10913)

• Added webhook integration for Authentication Service events, enabling merchants to subscribe to authentication related updates and build more responsive workflows around authentication outcomes (#10900)

• Implemented embedded tokens to simplify authentication flows, reducing integration overhead and improving consistency in how authentication tokens are generated and passed across systems (#10424)

Routing and core improvements

• Introduced MIT support using Limited Card Data, improving support for follow on payment scenarios such as subscriptions, top ups, and recurring merchant initiated charges without relying on full card detail storage (#10965)

• Extended Cancel Flow support by enabling whole_connector_response in responses, giving merchants better visibility into connector side behaviour and making it easier to debug cancel or void failures (#10981)

• Introduced balance check support at the core layer for stronger validation flows, helping support payment methods that require available balance checks before completing a transaction (#10896)

• Added dual refunds validation for Chargeback + Refund scenarios, reducing the risk of conflicting post payment operations and improving correctness for refunds and dispute related flows (#10533)

• Generated request id for every retry attempt in the consumer workflow to improve traceability, making retries easier to observe in logs and simplifying investigations during intermittent connector failures (#10919)

• Added authentication data field in transaction responses for better debugging visibility, enabling merchants to more easily understand authentication state and outcomes during payment processing (#10995)

Fixes and stability improvements

• Improved router error handling by changing “role info not found in redis” from 5xx to 4xx, reducing false server error signals and making failures easier to classify as configuration or access issues (#10949)

• Fixed delayed capture automatic behaviour in the Adyen connector, improving stability for flows where payments are authorized first and captured later based on fulfilment or confirmation steps (#10947)

• Improved PayPal error handling for clearer failure visibility, making it easier for merchants to debug issues and understand PayPal specific failure reasons (#10942)

• Fixed Novalnet connector transaction id population during 2xx failure responses, improving reconciliation and investigation workflows even when failures are returned with successful HTTP codes (#10901)

• Updated WorldpayWPG connector_request_reference_id generation back to default logic, improving consistency and reducing unexpected differences in connector request identifiers (#10961)

• Fixed Adyen mandate flows by skipping serialization of empty fields, improving connector compatibility and reducing avoidable request side failures in mandate based payments (#10964)

• Re introduced legacy key store decryption behaviour for backward compatibility, helping ensure older integrations and encrypted data flows continue to work without disruption (#10899)

• Fixed callback_url placeholder value for the Payjustnowinstore connector, improving callback reliability and preventing incorrect placeholder values from being used in production flows (#10937)

• Trimmed whitespace from phone numbers and country code in core flows, reducing formatting related validation failures and improving input consistency across integrations (#10754)