Skip to main content

Integration Mode Overview

Credit Extension Mode (CREDIT_EXTENSION)

Cardholder’s actual assets, including deposits and withdrawals, are managed in a closed loop on the merchant’s side. All cardholder funds are managed by the merchant themselves. Merchants complete credit extension through fund transfers and need to recharge reserve funds. When cardholders consume, funds are deducted from the reserve. Applicable Scenarios:
  • Merchant manages cardholder funds independently
  • Requires complete account system and transfer functionality
  • Relatively low real-time requirements

Authorization Mode (AUTHORIZATION)

Cardholder’s actual assets, including deposits and withdrawals, are managed in a closed loop on the merchant’s side. All cardholder funds are managed by the merchant themselves. When cardholders make purchases, KeySecure sends authorization confirmation to the merchant, which must be completed within 800 milliseconds, otherwise the transaction fails. Applicable Scenarios:
  • Requires real-time authorization confirmation for transactions
  • High performance requirements
  • Supports multiple card BIN combinations
Important Note: High interface response requirements - ensure your system can complete authorization response within 800 milliseconds.

Mode Selection Guidelines

DimensionCredit Extension ModeAuthorization Mode
Fund ManagementMerchant managedMerchant managed
Transaction ConfirmationFund flow synchronizationReal-time authorization (≤800ms)
System ComplexityMedium (requires account system)High (requires real-time response)
Package ManagementPlatform providedMerchant maintained

Pre-Integration Preparation

Complete the following preparations to ensure smooth API integration:
ItemDescriptionResponsible Party
Select Integration ModeConfirm whether to adopt credit extension or authorization modeMerchant
Apply for Merchant AccountContact business team for test account and corresponding Api-Key and apiSecretBusiness Team
IP Whitelist ConfigurationProvide server egress IP, configure to Api-Key corresponding whitelist in backendMerchant Backend
Callback URL ConfigurationConfigure URL to receive transaction notifications (for card changes, consumption orders, authorization notifications, etc.)Merchant Backend
Integrate SumSub KYCFrontend integrates KYC authentication component, users complete KYC authentication through SumsubMerchant Frontend
Key ManagementSecurely store apiSecret for encrypting/decrypting sensitive information (CVV/PIN) and signature verificationMerchant Backend
Test IntegrationComplete full process testing in sandbox environment (user authentication → card application → consumption, etc.)Merchant

Complete API Basic Configuration

Environment Information

EnvironmentDomainDescription
Sandboxhttps://sandbox-openplatform.keysecure.ioTest environment for development and integration testing
Productionhttps://openplatform.keysecure.ioProduction environment, requires configuration before merchant goes live
All examples and curl requests default to using sandbox domain. Replace with production domain for production environment.