API Authentication and Security

All the requests are accompanied by hash that is appended at the end of the request.

Security

Payment API

While posting parameters for Collect Payment (_payment) API, the hash parameter in each API must contain the hash value to be calculated at your end. You must hash the request parameters using the following hash logic:

sha512(key|txnid|amount|productinfo|firstname|email|udf1|udf2|udf3|udf4|udf5||||||SALT)

Where, sha512 is the encryption method used here. For more information on SHA, refer to Wikipedia. For more information on hashing for _payment API, refer to Generate Hash.

📘
Reference: You can use the Hash API of the PayU node SDK on Github to perform reverse hashing. Refer to the PayU node SDK Readme, download and install the PayU node SDK from the PayU node SDK Github location.

General APIs

While posting parameters for General APIs, such as Verify Payment, Get BIN Info, Refund Transaction, etc. the hash parameter in each API must contain the hash value to be calculated at your end. The string used for calculating the hash is mentioned below for command based APIs:

sha512(key|command|var1|salt)

Where, sha512 is the encryption method used here. For more information on SHA, refer to Wikipedia.

Updated 8 months ago

Beta

Hi! I am an AI Assistant. Ask me about PayU and get help with your integration.

EXAMPLE QUESTIONS

How do I integrate PayU Hosted Checkout?
Where do I find test credentials?
How do I handle webhooks for refunds?