You can use the redirection on the redirection URLs to trigger automatic back-office tasks such as database updates.
When a transaction is executed, we can send the transaction parameters on your redirection URLs.
To use this functionality, you must activate this option in the «Transaction feedback» tab of your «Technical information» page, «HTTP redirection in the browser»:
«I would like to receive transaction feedback parameters on the redirection URLs».
The redirection is done via the customer’s browser, which makes it visible.
Therefore, you must use an SHA-OUT signature to verify the contents of the request and prevent customers tampering with the data in the URL field, which could result in fraudulent database updates.
If you don’t configure a SHA-OUT signature, we won’t send any parameters on your redirection URLs.
The string to hash is constructed by concatenating the values of the fields sent with the order (sorted alphabetically, in the format ‘parameter=value’), followed by a SHA-OUT passphrase.