Chipcard Setup

Chipcard (powered by Payten/AllSecure) is the primary payment gateway for processing card payments on Mozhe. This guide walks you through the onboarding process and configuration.

Overview

Chipcard provides:

• Secure card payment processing with PCI DSS compliance
• 3D Secure authentication for Visa and Mastercard
• Support for Dinacard and American Express (non-3DS)
• Apple Pay and Google Pay integration
• Card tokenization for saved cards
• Real-time transaction processing

Prerequisites

Before configuring Chipcard, you need:

• A registered business in Serbia
• A merchant account with Chipcard/Payten
• Your merchant credentials (provided by Chipcard)
• SSL certificate on your domain (HTTPS required)

Obtaining Merchant Credentials

To get started with Chipcard:

1. Contact Chipcard/Payten to apply for a merchant account
2. Complete the merchant onboarding process
3. Receive your credentials:
   • Merchant Name
   • Merchant User
   • Merchant Password

Keep these credentials secure. They will be encrypted when stored in Mozhe.

Configuration Steps

Step 1: Access Payment Settings

1. Log in to your Mozhe dashboard
2. Navigate to your organization settings
3. Select the site you want to configure
4. Go to Settings > Shop > Payments

Step 2: Enable Chipcard

1. In the payment gateway section, select Chipcard as your payment gateway
2. Enter your merchant credentials:
   • Merchant Name: Your Chipcard merchant identifier
   • Merchant User: Your API username
   • Merchant Password: Your API password

Step 3: Configure Virtual POS

Chipcard uses two Virtual POS configurations:

• 3D Virtual POS: For Visa and Mastercard (with 3D Secure)
• MOTO Virtual POS: For Dinacard and American Express (without 3D Secure)

These are automatically configured based on platform settings. Contact Mozhe support if you need custom VirtualPOS configuration.

3D Secure Configuration

3D Secure (3DS) adds an extra layer of authentication for card payments.

How 3D Secure Works

1. Customer enters card details
2. Mozhe detects the card type (Visa, Mastercard, etc.)
3. For Visa/Mastercard: Customer is redirected to their bank for authentication
4. Customer completes verification (SMS code, biometrics, etc.)
5. Customer returns to your store
6. Payment is processed

Serbian Market Rules

In the Serbian market, specific rules apply:

Mozhe automatically routes transactions to the correct Virtual POS based on the card's BIN (first 6 digits).

Testing vs Production

Test Environment

Before going live, test your integration in the sandbox environment:

1. Use test card numbers provided by Chipcard
2. Verify the payment flow completes successfully
3. Check that orders are created with correct payment metadata
4. Test 3D Secure flows with different card types

Common test cards:

• Visa: Cards starting with 4
• Mastercard: Cards starting with 51-55
• Dinacard: Cards starting with 9891

Going Live

To switch to production:

1. Ensure all tests pass in sandbox
2. Update credentials to production values (provided by Chipcard)
3. Verify your SSL certificate is valid
4. Process a small test transaction with a real card
5. Monitor the first few transactions closely

Transaction Types

Chipcard supports several transaction types:

SALE (Immediate Capture)

Used for digital products or immediate fulfillment. Funds are captured immediately when the customer pays.

PREAUTH + POSTAUTH

Used for physical products:

1. PREAUTH: Reserves funds on the customer's card
2. POSTAUTH: Captures the funds when you ship the order

This is the recommended flow for physical goods as it allows you to void the authorization if you cannot fulfill the order.

VOID

Cancels a transaction before settlement (same day). Use this to release reserved funds if an order is cancelled before shipping.

Wallet Payments

Chipcard supports digital wallet payments:

Apple Pay

1. Customer selects Apple Pay at checkout
2. Customer authenticates with Face ID, Touch ID, or passcode
3. Payment is processed as a SALE transaction
4. Order is created with "Confirmed" status

Google Pay

1. Customer selects Google Pay at checkout
2. Customer authenticates with their device
3. Payment is processed as a SALE transaction
4. Order is created with "Confirmed" status

To enable wallet payments, ensure your Chipcard merchant account has Apple Pay and Google Pay enabled.

Webhooks

Chipcard sends webhook notifications for transaction status updates:

• Payment authorized
• Payment captured
• Payment voided
• 3D Secure completed

These webhooks automatically update order status in Mozhe.

Troubleshooting

Common Issues

"Session token failed"

• Check that your merchant credentials are correct
• Verify the amount is a whole number (no decimals)
• Ensure your merchant account is active

"3D Secure authentication failed"

• Customer may have cancelled the authentication
• Bank may have declined the transaction
• Customer should try again or use a different card

"Invalid card number"

• Card number may be incorrect
• Card may be expired
• Card may not be supported

"Transaction declined"

• Insufficient funds
• Card blocked by issuing bank
• Suspicious activity detected

Getting Help

If you encounter issues:

1. Check the order's payment metadata for error details
2. Review Chipcard documentation for error codes
3. Contact Mozhe support with the order number
4. For merchant account issues, contact Chipcard directly

Security Best Practices

• Never log or store full card numbers
• Use HTTPS on all payment pages
• Keep merchant credentials secure and encrypted
• Monitor for suspicious transaction patterns
• Implement velocity checks if needed

Next Steps

• Configure KOPA for installment payments
• Enable Cash on Delivery as an alternative payment method
• Set up shipping methods to complete checkout configuration