Skip to main content
POST
/
open-api
/
v1
/
card
/
active
curl --request POST \
  --url https://sandbox-openplatform.keysecure.io/open-api/v1/card/active \
  --header 'Content-Type: application/json' \
  --header 'Api-Key: your_api_key' \
  --header 'Timestamp: 1716307200000' \
  --header 'Access-Token: your_access_token' \
  --data '{
    "cardholder_no": "U202605220001",
    "card_no": "C202605220001",
    "cvv": "Base64EncodedEncryptedCvv...",
    "card_last_no": "1234"
  }'
{
  "code": 0,
  "msg": "Success",
  "data": {"result": true}
}
Activates a physical card. The card status must be ToActivate; after successful activation, it becomes Activated. The cvv must be encrypted with AES/ECB/PKCS5Padding + Base64 before being passed in. Transmitting plaintext CVV in the request body is strictly prohibited.
  • Plaintext CVV must be 3 digits only.
  • card_last_no must match the last four digits of the card number recorded on the platform.
  • cardholder_no must belong to the cardholder associated with this card.
  • For encryption algorithm details, see the “Code Utilities” section.

Request Headers

Api-Key
string
required
apiKey (merchant credential, bound to IP whitelist)
Timestamp
string
required
Unix timestamp in milliseconds. The deviation from the server time must be within 60 seconds, and future timestamps are not accepted.
Access-Token
string
required
Login token (required for all interfaces except Get Token).
Content-Type
string
default:"application/json"
Fixed to application/json

Request Body

cardholder_no
string
required
Cardholder order number.
card_no
string
required
Card order number.
cvv
string
required
Encrypted CVV (Base64 ciphertext).
card_last_no
string
required
Last four digits of card number.

Response Parameters

code
number
Response status code. 0 indicates success.
msg
string
Response message.
data
object
Response data.
curl --request POST \
  --url https://sandbox-openplatform.keysecure.io/open-api/v1/card/active \
  --header 'Content-Type: application/json' \
  --header 'Api-Key: your_api_key' \
  --header 'Timestamp: 1716307200000' \
  --header 'Access-Token: your_access_token' \
  --data '{
    "cardholder_no": "U202605220001",
    "card_no": "C202605220001",
    "cvv": "Base64EncodedEncryptedCvv...",
    "card_last_no": "1234"
  }'
{
  "code": 0,
  "msg": "Success",
  "data": {"result": true}
}