In-App and Web Transactions Processed Using Hyperswitch Decryption

In this flow Hyperswitch decrypts the token internally using your uploaded certificates and then transforms the raw data for any downstream connector.

Mechanism:

1. Frontend sends encrypted Apple Pay token to Hyperswitch.

2. Hyperswitch unwraps the token using your private key configured at Hyperswitch.

3. Hyperswitch maps the DPAN and Cryptogram to the destination PSP’s API.

Configuration :

Prerequisites

Before beginning to integrate Apple Pay with Hyperswitch, below prerequisites need to be fulfilled. Please feel free to reach out to Hyperswitch support if you are stuck at any stage when integrating and testing Apple Pay.

1. Apple Pay requires an Apple Developer Account. You can Sign Up for one here.

2. You must have a valid SSL certificate on your domain (meaning it begins with https)

Apple Pay requires additional steps, and requires macOS 10.12.1+ or iOS 10.1+. Follow the steps given below to setting up Apple Pay -

Creating an Apple MerchantID

You can create an Apple MerchantID referencing the video or following the steps mentioned below

• Log in to your Apple Developer account

• Go to the add MerchantIDs section, select Merchant IDs and click Continue

• Add a useful description (like merchant id for test environment)

• Enter a unique descriptive identifier (like merchant.com.testdomain.sandbox) and click Continue

• Verify the description and identifier and click on Register

Validating Merchant Domain

You can validate the merchant domain by following the steps mentioned below -

• Log in to your Apple Developer account, go to Identifiers and select the Merchant ID you created previously

• Under the Merchant Domains section, click on Add Domain

• Enter your merchant_domain as domain and click on Save

• Click on Download and a .txt file will be downloaded

• Host this file on merchant_domain/.well-known/apple-developer-merchantid-domain-association.txt

• Once you host the .txt file in the path mentioned above, click on Verify

• Make sure the status is verified as shown in the following image

Creating Apple MerchantID Certificate and Private Key

You can create an Apple MerchantID certificate and private key by following the steps mentioned below -

Note: It is recommended that you keep all the generated files in the same workspace for the sake of simplicity

• Open a terminal and create .csr and .key file using the following command -

• Enter your details asked in the prompt. You will get a .csr and .key file

• Log in to your Apple Developer account, go to Identifiers and select the Merchant ID you created previously

• Under the Apple Pay Merchant Identity Certificate section (make sure you are not in the Apple Pay Payment Processing Certificate section), click on Create Certificate

• Upload the .csr file you just created by running the command (it would be called uploadMe.csr if you copy-pasted the command) and click on Continue

• You will get a .cer file on clicking on Download (it will probably be named merchant_id.cer)

• You will need to convert this .cer file into a .pem file using the following command -

Configuring Apple Pay on Hyperswitch

You can configure Apple Pay on Hyperswitch by following the steps mentioned below -

• Login to Hyperswitch dashboard

• In the Connectors tab, select your processor

• While selecting Payment Methods, click on Apple Pay in the Wallet section

• Select the iOS Certificate option

• In Apple Merchant Identifier, add your identifier which you added while creating Apple MerchantID

• In Merchant Certificate, base64 encode the entire content of your .pem file (it will be certificate_sandbox.pem, if you used the exact command mentioned above), and enter the encoded data in the form field. Use the below command to base64 encode it.

• In Merchant Private Key, base64 encode the entire content of your .key file (it will be certificate_sandbox.key, if you used the exact command mentioned above), and enter the encoded data in the Merchant PrivateKey form field. Use the below command to base64 encode it.

• Display Name should be your merchant name that you want to present to the customers when the make ApplePay payment on your platform.

• In Domain, enter web in the form field.

• In Domain Name, add the verified domain name you configured in Merchant Domains in Apple Developer Account.

Creating Apple Pay Payment Processing Certificate

You can create an Apple Payment Processing Certificate and Payment Processing Key by following the steps mentioned below

• Note: It is recommended that you keep all the generated files in the same folder for the sake of simplicity

• Open a terminal and create .key file using the following command

• You can create .csr file using the following command and enter your details asked in the prompt. You will get a .csr file.

• Log in to your Apple Developer account, go to Identifiers and select the Merchant ID / Payment Platform Integrator ID you created previously

• Under the Apple Pay Payment Processing Certificate, click on Create Certificate

• Upload the .csr file you just created (it would be called uploadMe.csr if you copy-pasted the command) and click on Continue.

• You will get a .cer file on clicking Download (it will probably be named apple_pay.cer).

• In Payment Processing Certificate, base64 encode the entire content of your .cer file and paste it.

• In Payment Processing Key, copy the content from ppc_private.key file and paste it.

Integrate with Xcode

Add the Apple Pay capability to your app. In Xcode, open your project settings, click the Signing & Capabilities tab, and add the Apple Pay capability. You might be prompted to log in to your developer account at this point. Select the merchant ID you created earlier, and your app is ready to accept Apple Pay.