Utvecklare

Sandlådemiljö

Cardflos sandlådemiljö tillåter utvecklare att integrera och testa betalningslösningar utan att påverka live-transaktioner. Detta isolerade utrymme speglar vår produktionsmiljö, vilket möjliggör noggrann testning av alla Cardflo-funktioner, från betalningshantering till webhooks och API-interaktioner, vilket säkerställer en smidig övergång till live-operationer.

Kategori
Utvecklare
Funktioner
10
Tillgänglig på
Alla planer
Ansök nu

Översikten

A sandbox environment acts as a non-production instance of a payment gateway or orchestration platform, allowing developers to model the entire transaction lifecycle without moving real funds. It operates as a replica of the live API, including components for authorisation, capture, and settlement.

Within this isolated container, technical teams can verify their integration logic, request structures, and authentication headers against strict validation rules.

By using test credentials and simulated Card Identification Numbers (BINs), merchants can evaluate how their backend reacts to various responses, such as successful payments, soft declines, or 3DS authentication prompts.

The sandbox sits between the merchant application and the simulated acquirer, providing a safe space to ensure that the code handles edge cases, such as insufficient funds or expired cards,

before moving to a live production environment where errors could result in loss of revenue or increased chargeback ratios.

fungerar det

  1. Credential generation and authentication

    Developers obtain a specific set of API keys or Bearer tokens designated for the testing environment. These credentials route requests to a mock processor rather than the live payment schemes.

    This ensures that no merchant identification number (MID) is billed for processing fees and no real cardholder data enters the production systems.

  2. Simulated transaction processing

    The merchant sends a payment request using predefined test card numbers that trigger specific outcomes. For example, using one BIN might simulate a successful authorisation, while another triggers a CVV mismatch or a hard decline.

    The sandbox returns an identical JSON response structure to the live API to ensure compatibility.

  3. Webhook event notification

    Once a transaction status changes in the sandbox, the system generates asynchronous webhooks. The merchant server receives these notifications at a designated endpoint to verify that their system correctly updates the internal database.

    This step is critical for testing automatic order fulfilment or subscription management logic in real time.

  4. State change and settlement

    Users can manually or programmatically transition the state of a transaction from authorised to settled or refunded within the testing dashboard.

    This allows for the verification of post-purchase workflows, including the handling of retrieval requests or partial refunds, ensuring the merchant UI reflects the correct financial state.

Varför det spelar roll

Risk mitigation during deployment

Implementing new payment flows directly in production creates high operational risk. By utilising a sandbox, developers can identify logical errors or malformed API requests that would otherwise lead to failed checkouts.

This isolation protects the integrity of the live Merchant Identification Number and prevents accidental triggers of anti-fraud filters that could occur during aggressive testing of new card-present or card-not-present integration logic.

Validation of complex logic

Modern payments often involve multi-step processes like Strong Customer Authentication (SCA) or recurring billing. A sandbox allows for the rigorous testing of cardholder-initiated and merchant-initiated transactions without the financial cost of real transactions.

It ensures that the system correctly interprets various decline codes and response messages from issuers, allowing for the refinement of dunning logic and retry strategies to optimise eventual conversion rates.

Användningsfall

Initial API integration

New merchants use the sandbox to map their internal order management systems to the payment gateway's API endpoints. This confirm that data fields like currency codes and merchant category codes are correctly formatted for authorisation.

Recurring billing verification

Subscription-based businesses test their dunning sequences by simulating card expiry or insufficient funds. This ensures that the system correctly attempts retries and sends appropriate notifications to the customer before service suspension.

Webhook endpoint debugging

Developers use the testing environment to verify that their firewall and server configurations allow for incoming webhook notifications. This prevents issues where orders remain 'pending' despite successful authorisation at the acquirer level.

Alternative payment method testing

Before enabling local payment methods, merchants can simulate the redirect flows required for APMs. This ensures that the user experience remains consistent when the customer is sent to a third-party wallet or bank portal.

I siffror

2-3x
Integration speed increase

Typical efficiency gains observed by technical teams when using a comprehensive sandbox compared to manual documentation review and direct production testing.

40-60%
Reduction in production errors

Estimated range of reduction in post-deployment bugs related to payment logic when rigorous sandbox testing is implemented as part of the CI/CD pipeline.

<500ms
Simulation latency

Industry standard response time for mock API endpoints, allowing for rapid iteration during the software development lifecycle.

Ready to route with Sandlådemiljö?

Talk to our team about a live rollout on your acquiring stack.

Ansök nu

What you get with Sandlådemiljö

  • Simulera full betalningslivscykel, inklusive godkännanden och avslag
  • Testa integration med Cardflo API och SDK:er
  • Experimentera med olika betalningsmetoder och konfigurationer
  • Validera webhook-meddelanden och svar
  • Utveckla och felsöka anpassade betalningsflöden säkert
  • Få åtkomst till omfattande testdata för olika scenarier
  • Configure multiple merchant profiles to test currency conversion and domestic versus international processing.
  • Audit the logging of transaction IDs, ARNs, and timestamps for internal financial reconciliation.
  • Model the behaviour of partial captures and multiple refunds on a single transaction.
  • Examine the impact of merchant category codes on simulated authorisation rates and fee structures.
See Sandlådemiljö on your acquiring stack.

A short scoping call, then a written plan for your MIDs.

Ansök nu

Questions about Sandlådemiljö

Vad är syftet med Cardflos sandlådemiljö?

Sandlådan tillhandahåller ett säkert, isolerat utrymme för utvecklare att integrera och testa Cardflos plattform för betalningsorkestrering. Den möjliggör omfattande testning av alla funktioner utan att påverka live-handlarkonton eller kundtransaktioner, vilket säkerställer en robust integration.

Stöder sandlådemiljön alla Cardflo-funktioner?

Ja, Cardflos sandlådemiljö är utformad för att spegla produktionsmiljön så nära som möjligt. Utvecklare kan testa kärnbetalningshantering, intelligent routinglogik, mekanismer för återställning vid avslag och API-interaktioner, vilket säkerställer full funktionsparitet för integrationsutveckling.

Hur får jag åtkomst till Cardflos sandlåda?

Tillgång till Cardflos sandlåda tillhandahålls vid kontoregistrering. Utvecklare får autentiseringsuppgifter och nödvändig dokumentation för att omedelbart börja testa.

Omfattande guider finns tillgängliga för att hjälpa till med den initiala installationen och olika testscenarier, vilket underlättar effektiv utveckling.

Is stored cardholder data in the sandbox subject to PCI-DSS compliance?

While the sandbox should not contain real cardholder data, the security of the API keys and the simulated data remains important. Most sandbox environments use pseudo-data that resembles real PANs but fails Luhn algorithm checks or belongs to unassigned ranges.

However, developers should maintain good security practices and never use real customer data within a testing environment to avoid potential data leakage risks.

Will my webhook endpoints receive the same payload as the production environment?

The JSON or XML payload delivered to your webhook URL in the sandbox should mirror the production schema exactly. This includes the same fields for transaction ID, amount, currency, and status codes.

Testing this ensures that your backend parser is correctly configured to handle the live data stream without needing to make code changes during the transition to production.

Can I test the settlement and reconciliation process in the sandbox?

You can simulate the transitions that lead to settlement, such as moving a transaction from 'authorised' to 'captured'. Some sandboxes allow you to generate mock reports that resemble the settlement files provided by acquirers.

This helps in building automated reconciliation tools that match internal order IDs with the transaction references provided by the payment service provider.

Kom igång

Redo för fart?

Berätta om ditt företag. Vi matchar dig med rätt inlösenpartners och rätt rutt, vanligtvis inom en vecka.

Ansök nu
Ansök nu