Card
Set Physical Card PIN
POST
Sets the physical card PIN. Only physical cards (
Physical) are supported, and the card status must be normal (Activated). The pin must be encrypted with AES/ECB/PKCS5Padding + Base64 before being passed in.
- Only physical cards are supported; calling this endpoint for a virtual card returns 4017.
- The plaintext PIN must be exactly 6 digits, and must not contain three or more identical or sequential digits (for example,
111111or123456); otherwise 4016 is returned. - The card status must be
Activated; otherwise 4005 is returned. - See the “Code Utilities” section for encryption algorithm details.
Request Headers
apiKey (merchant credential, bound to IP whitelist)
Unix timestamp in milliseconds. The deviation from the server time must be within 60 seconds, and future timestamps are not accepted.
Login token (required for all interfaces except Get Token).
Fixed to
application/jsonRequest Body
Card order number.
Cardholder order number.
Encrypted PIN (Base64 ciphertext).
Response Parameters
Response status code.
0 indicates success.Response message.
Response data.
