The registration page code on your server should check the Status field, and when a 3DAUTH status is found, build a simple, auto-submitting form (see the example below from the
'vsp_purchase.asp' page) which sends the
MD,
PAReq and an additional field, the
TermUrl, to the address specified in the
ACSURL, and send this form to your shopper's browser.
This has the effect of redirecting your shopper to their card Issuer's 3D-Authentication site whilst sending to that site all the information required to perform the authentication.
The
TermURL field is a fully qualified URL which points to the page on your servers to which the shopper is sent once the 3D-authentication is completed (see
Step 7: Your site POSTs the 3D-Secure results to Protx). The example code , in
ASP ONLY, for this page is included in the integration kits provided by Protx and is called
'callback.asp' . It just needs to be an SSL-Secured script that can accept connections from the Internet.
As mentioned above, this redirection of your shopper is achieved with a simple, automatically submitting form sent to their browser. Your script should clear the response object of any output, and then send the following HTML code;
