# 1. Create Session ## Create Session `POST` `{{Base Address}}/api/paywall/masterpass/session` It will be sufficient to send a request to the address provided above. You can use the 'Base Address' for both the Test environment and the Production environment as you wish. {% hint style="info" %} Important: To use the Masterpass - Create Session service, you must include the parameters **'apikeyprivate'** and **'apiclientprivate'** in the 'Header' field.\ \ [**PaymentAPI Address**](https://developer.paywall.one/payment-orchestration-integration-document/environment) {% endhint %}
ParameterTypeMandatoryDescription
apikeyprivatestringYesThe Private Key obtained from the merchant panel.
apiclientprivatestringYesThe Private Client obtained from the merchant panel.
**The parameters that need to be sent to the service are as follows:**
ParameterTypeMandotoryDescription
ReferenceCodestringYesThe unique tracking number of the related session.
UserIdstringYesThe unique identity number of the user in your system on the payment screen.
UserPhonestringYesThe verified phone number of the user on the payment screen.
Force3DboolNoIf the relevant parameter is sent as true, all payment processes will proceed with 3D Secure.
PhoneVerifiedByMerchantboolNoIf the relevant phone number has been verified in your system, this parameter should be sent as true.This way, Masterpass will not perform the phone number verification again.
{% tabs %} {% tab title="JSON" %} ```json5 { "ReferenceCode": "{{$guid}}", "UserId": "72812393211", // Kullanıcının sisteminizdeki tekil kimlik bilgisi "UserPhone": "905123456710", // Kullanıcının sisteminizdeki doğrulanmış telefon numarası "Force3D": false, // Kullanıcı tüm ödeme akışında 3D'ye zorlansın mı? "PhoneVerifiedByMerchant": true // Telefon doğrulaması yapıldı mı? } ``` {% endtab %} {% tab title="C#" %} ```csharp // Soon ``` {% endtab %} {% tab title="GO" %} ```go // Soon ``` {% endtab %} {% tab title="Java" %} ```java // Soon ``` {% endtab %} {% tab title="PHP" %} ```php // Soon ``` {% endtab %} {% tab title="Python" %} ```python // Soon ``` {% endtab %} {% tab title="Ruby" %} ```ruby // Soon ``` {% endtab %} {% tab title="TypeScript" %} ```typescript // Soon ``` {% endtab %} {% tab title="Curl" %} ```sh // Soon ``` {% endtab %} {% endtabs %} **Response returned from the service:**
ParameterTypeDescription
BodyBodyJSON containing payment details (optional)
ErrorCodeintError code. Returns '0' if the transaction is successful.
ResultboolReturns either true or false. If the transaction is successful, it returns true.
MessagestringIf the transaction fails, this is the error message provided, with language support according to the locale parameter.
**Response returned from the service (****Body****):**
ParameterTypeDescription
SessionIdGuidThis is the identifier of the relevant session. It is used for authorization throughout the entire process. This information must be stored on your side until the process is completed.
SessionExpiryDateDateTimeThe expiration date of the session. When it is automatically renewed, the response objects of other Masterpass services will include the new SessionId and new SessionExpiryDate information.
{% tabs %} {% tab title="Json" %} ```json5 { "ErrorCodeType": 1, "ErrorMessage": null, "ErrorCode": 0, "Result": true, "Message": "", "Body": { "SessionId": "9b27433e-f36b-1410-80e5-004205aa382d", "SessionExpiryDate": "2025-07-27T11:24:57" } } ``` {% endtab %} {% endtabs %}