# 3. Non-Secure (Insurance) {% hint style="danger" %} Note: This is a method applied to process transactions using the first 8 and last 4 digits of the card number to support and simplify operations in the insurance sector. {% endhint %} `POST` `{{Base Adres}}/api/paywall/payment/startdirect/insurance` {% hint style="info" %} Important: To use the payment service, you must send the parameters **apikeypublic** and **apiclientpublic** in the 'Header' field. \ [**PaymentAPI Address**](/payment-orchestration-integration-document/environment.md) {% endhint %} **The example ****JSON**** and ****sample**** codes to be sent to the service are as follows.**
ParameterTypeCompulsoryDescription
apikeypublicstringYesThe Public Key you obtained from the merchant panel.
apiclientpublicstringYesThe Public Client you obtained from the merchant panel.
Paywall Request Payload {% tabs %} {% tab title="JSON" %} {% code lineNumbers="true" %} ```json5 { "PaymentDetail": { "Amount": 4.44, "MerchantUniqueCode": "{{$guid}}", "TrackingCode": "TrackingCode1", "CurrencyId": 1, "MerchantSuccessBackUrl": "https://itspaywall.com/successful", "MerchantFailBackUrl": "https://itspaywall.com/unsuccessful", "Installment": 1, "ChannelId": 0, "TagId": 0, "ClientIP": "1.1.1.1", "ProviderBased": false, "ProviderKey": "providerkey", "PosBased": false, "PosId": 0, "Half2D": false, "PayRouteByPass": false, "PayRouteType": 0, "RouteGroupKey": "route-003" }, "Card": { "OwnerName": "test", "CardNoFirst": "41197901", "CardNoLast": "6389", "IdentityNumber": "17654932298", "UseAdditionalIdentityNumber": true, "AdditionalIdentityNumber": "1010101010" "UniqueCode": "", "CardSave": { "Nickname": "test karti", "RelationalId1": "007", "RelationalId2": "", "RelationalId3": "", "Save": false } }, "Customer": { "FullName": "FullName", "Phone": "5555555555", "Email": "enes@paywall.one", "Country": "Country", "City": "City", "Address": "Address", "IdentityNumber": "IdentityNumber", "TaxNumber": "TaxNumber" "DeviceFingerprint": "FingerPrint", "UserAgent": "UserAgent", "UserRegisteredAt": "2026-01-13T12:00:00", "Location": { "Country": "Turkey", "City": "Istanbul", "Region": "europe", "Lat": "41.07", "Lon": "29.00" } }, "UseFraudParameters": false,      "FraudParameters":{          "BypassFraud": false,         "OverrideActualParameters": false, "DeviceFingerprint": "test-FRD",         "Amount": 101,        "ClientIP": "1.1.1.1",         "CountryCode": "TR-FRD",         "UserAgent": "UserAgent-FRD",         "Email": "FRD@gmail.com",         "Phone": "5435435454-FRD", "UserRegisteredAt": "2026-01-13T12:00:00", "Location": { "Country": "Turkey", "City": "Istanbul", "Region": "europe", "Lat": "41.07", "Lon": "29.00" } } } ``` {% endcode %} {% endtab %} {% tab title="C#" %} ```csharp using System; using System.Net.Http; using System.Text; using System.Threading.Tasks; using Newtonsoft.Json; public class Program { static readonly HttpClient client = new HttpClient(); public class PaymentDetail { public double Amount { get; set; } public string MerchantUniqueCode { get; set; } public int CurrencyId { get; set; } public string MerchantSuccessBackUrl { get; set; } public string MerchantFailBackUrl { get; set; } public int Installment { get; set; } public int ChannelId { get; set; } public int TagId { get; set; } public bool Half2D { get; set; } } public class CardInsurance { public string OwnerName { get; set; } public string UniqueCode { get; set; } public CardSave? CardSave { get; set; } public string IdentityNumber { get; set; } public string CardNoFirst { get; set; } public string CardNoLast { get; set; } public string TempCardToken { get; set; } } public class Customer { public string FullName { get; set; } public string Phone { get; set; } public string Email { get; set; } public string Country { get; set; } public string City { get; set; } public string Address { get; set; } public string IdentityNumber { get; set; } public string TaxNumber { get; set; } } public class Product { public string ProductId { get; set; } public string ProductName { get; set; } public string ProductCategory { get; set; } public string ProductDescription { get; set; } public double ProductAmount { get; set; } } public class Root { public PaymentDetail PaymentDetail { get; set; } public Card Card { get; set; } public Customer Customer { get; set; } public Product[] Products { get; set; } } public static async Task Main() { Root root = new Root { PaymentDetail = new PaymentDetail { Amount = 9.85, MerchantUniqueCode = "AJSHFSAKFHASKHFA", CurrencyId = 1, MerchantSuccessBackUrl = "https://merchantsite.site.com/success", MerchantFailBackUrl = "https://merchantsite.site.com/fail", Installment = 1, ChannelId = 0, TagId = 0, Half2D = false }, Card = new Card { OwnerName = "John Doe", IdentityNumber = "11111111110", CardNoFirst = "54456766", CardNoLast = "1234", UniqueCode = "" }, Customer = new Customer { FullName = "FullName", Phone = "5336662211", Email = "enes@xcompany.com", Country = "Country", City = "City", Address = "Address", IdentityNumber = "IdentityNumber", TaxNumber = "TaxNumber" }, Products = new Product[] { new Product { ProductId = "ProductId", ProductName = "ProductName", ProductCategory = "ProductCategory", ProductDescription = "ProductDescription", ProductAmount = 9.85 } } }; string json = JsonConvert.SerializeObject(root, Formatting.Indented); var data = new StringContent(json, Encoding.UTF8, "application/json"); client.DefaultRequestHeaders.Add("apikeypublic", "%%"); client.DefaultRequestHeaders.Add("apiclientpublic", "%%"); var url = "{{Base Adres}}/api/paywall/payment/startdirect/insurance"; var response = await client.PostAsync(url, data); string result = response.Content.ReadAsStringAsync().Result; Console.WriteLine(result); } } ``` {% endtab %} {% tab title="GO" %} ```go package main import ( "bytes" "encoding/json" "fmt" "io/ioutil" "net/http" ) type PaymentDetail struct { Amount float64 `json:"Amount"` MerchantUniqueCode string `json:"MerchantUniqueCode"` CurrencyId int `json:"CurrencyId"` MerchantSuccessBackUrl string `json:"MerchantSuccessBackUrl"` MerchantFailBackUrl string `json:"MerchantFailBackUrl"` Installment int `json:"Installment"` ChannelId int `json:"ChannelId"` TagId int `json:"TagId"` Half2D bool `json:"Half2D"` } type Card struct { OwnerName string `json:"OwnerName"` Number string `json:"Number"` ExpireMonth string `json:"ExpireMonth"` ExpireYear string `json:"ExpireYear"` Cvv string `json:"Cvv"` UniqueCode string `json:"UniqueCode"` } type Customer struct { FullName string `json:"FullName"` Phone string `json:"Phone"` Email string `json:"Email"` Country string `json:"Country"` City string `json:"City"` Address string `json:"Address"` IdentityNumber string `json:"IdentityNumber"` TaxNumber string `json:"TaxNumber"` } type Product struct { ProductId string `json:"ProductId"` ProductName string `json:"ProductName"` ProductCategory string `json:"ProductCategory"` ProductDescription string `json:"ProductDescription"` ProductAmount float64 `json:"ProductAmount"` } type Data struct { PaymentDetail PaymentDetail `json:"PaymentDetail"` Card Card `json:"Card"` Customer Customer `json:"Customer"` Products []Product `json:"Products"` } type ResponseData struct { ErrorCode int Result bool Message string Body string } func main() { data := Data{ PaymentDetail: PaymentDetail{ Amount: 9.85, MerchantUniqueCode: "AJSHFSAKFHASKHFA", CurrencyId: 1, MerchantSuccessBackUrl: "https://merchantsite.site.com/success", MerchantFailBackUrl: "https://merchantsite.site.com/fail", Installement: 1, ChannelId: 0, TagId: 0, Half2D: false, }, Card: Card{ OwnerName: "John Doe", Number: "5528790000000008", ExpireMonth: "12", ExpireYear: "2030", Cvv: "123", UniqueCode: "", }, Customer: Customer{ FullName: "FullName", Phone: "5336662211", Email: "enes@xcompany.com", Country: "Country", City: "City", Address: "Address", IdentityNumber: "IdentityNumber", TaxNumber: "TaxNumber", }, Products: []Product{ { ProductId: "ProductId", ProductName: "ProductName", ProductCategory: "ProductCategory", ProductDescription: "ProductDescription", ProductAmount: 9.85, }, }, } payloadBuf := new(bytes.Buffer) json.NewEncoder(payloadBuf).Encode(data) req, _ := http.NewRequest("POST", "{{Base Adres}}/api/paywall/payment/startdirect/insurance", payloadBuf) req.Header.Set("Content-Type", "application/json") req.Header.Set("apikeypublic", "%%") req.Header.Set("apiclientpublic", "%%") client := &http.Client{} res, e := client.Do(req) if e != nil { panic(e) } defer res.Body.Close() body, _ := ioutil.ReadAll(res.Body) var responseData ResponseData json.Unmarshal(body, &responseData) fmt.Println("ErrorCode: ", responseData.ErrorCode) fmt.Println("Result: ", responseData.Result) fmt.Println("Message: ", responseData.Message) fmt.Println("Body: ", responseData.Body) } ``` {% endtab %} {% tab title="Java" %} ```xml com.fasterxml.jackson.core jackson-databind 2.12.5 com.squareup.okhttp3 okhttp 4.9.0 ``` ```java import okhttp3.*; import com.fasterxml.jackson.databind.ObjectMapper; import com.fasterxml.jackson.databind.node.ObjectNode; import java.io.IOException; public class Main { public static void main(String[] args) throws IOException { OkHttpClient client = new OkHttpClient(); ObjectMapper mapper = new ObjectMapper(); // Create JSON in a readable way ObjectNode rootNode = mapper.createObjectNode(); rootNode.put("Amount", 9.85); rootNode.put("MerchantUniqueCode", "AJSHFSAKFHASKHFA"); rootNode.put("CurrencyId", 1); rootNode.put("MerchantSuccessBackUrl", "https://merchantsite.site.com/success"); rootNode.put("MerchantFailBackUrl", "https://merchantsite.site.com/fail"); rootNode.put("Installment", 1); rootNode.put("ChannelId", 0); rootNode.put("TagId", 0); rootNode.put("Half2D", false); // and so on for all fields String json = mapper.writerWithDefaultPrettyPrinter().writeValueAsString(rootNode); MediaType mediaType = MediaType.parse("application/json"); RequestBody body = RequestBody.create(mediaType, json); Request request = new Request.Builder() .url("{{Base Adres}}/api/paywall/payment/startdirect/insurance") .post(body) .addHeader("Content-Type", "application/json") .addHeader("apikeypublic", "%%") .addHeader("apiclientpublic", "%%") .build(); Response response = client.newCall(request).execute(); System.out.println(response.body().string()); } } ``` {% endtab %} {% tab title="PHP" %} ```php array( "Amount" => 9.85, "MerchantUniqueCode" => "AJSHFSAKFHASKHFA", "CurrencyId" => 1, "MerchantSuccessBackUrl" => "https://merchantsite.site.com/success", "MerchantFailBackUrl" => "https://merchantsite.site.com/fail", "Installment" => 1, "ChannelId" => 0, "TagId" => 0, "Half2D" => false ), "Card" => array( "OwnerName" => "John Doe", "Number" => "5528790000000008", "ExpireMonth" => "12", "ExpireYear" => "2030", "Cvv" => "123", "UniqueCode" => "" ), "Customer" => array( "FullName" => "FullName", "Phone" => "5336662211", "Email" => "enes@xcompany.com", "Country" => "Country", "City" => "City", "Address" => "Address", "IdentityNumber" => "IdentityNumber", "TaxNumber" => "TaxNumber" ), "Products" => array( array( "ProductId" => "ProductId", "ProductName" => "ProductName", "ProductCategory" => "ProductCategory", "ProductDescription" => "ProductDescription", "ProductAmount" => 9.85 ) ) ); $options = array( 'http' => array( 'header' => "Content-type: application/json\r\n" . "apikeypublic: %PUBLICKEY%\r\n" . "apiclientpublic: %PUBLICCLIENT%\r\n", 'method' => 'POST', 'content' => json_encode($data), ), ); $context = stream_context_create($options); $result = file_get_contents($url, false, $context); if ($result === FALSE) { /* Handle error */ } // Decode $response = json_decode($result); // ErrorCode-Result-Message echo "ErrorCode: " . $response->ErrorCode . "\n"; echo "Result: " . ($response->Result ? "true" : "false") . "\n"; echo "Message: " . $response->Message . "\n"; // Decode Body $body = json_decode($response->Body); var_dump($result); ?> ``` {% endtab %} {% tab title="Python" %} ```python import requests import json url = '{{Base Adres}}/api/paywall/payment/startdirect/insurance' headers = { 'Content-Type': 'application/json', 'apikeypublic': '%%', 'apiclientpublic': '%%' } data = { "PaymentDetail": { "Amount": 9.85, "MerchantUniqueCode": "AJSHFSAKFHASKHFA", "CurrencyId": 1, "MerchantSuccessBackUrl": "https://merchantsite.site.com/success", "MerchantFailBackUrl": "https://merchantsite.site.com/fail", "Installment": 1, "ChannelId": 0, "TagId": 0, "Half2D": False }, "Card": { "OwnerName": "John Doe", "Number": "5528790000000008", "ExpireMonth": "12", "ExpireYear": "2030", "Cvv": "123", "UniqueCode": "" }, "Customer": { "FullName": "FullName", "Phone": "5336662211", "Email": "enes@xcompany.com", "Country": "Country", "City": "City", "Address": "Address", "IdentityNumber": "IdentityNumber", "TaxNumber": "TaxNumber" }, "Products": [{ "ProductId": "ProductId", "ProductName": "ProductName", "ProductCategory": "ProductCategory", "ProductDescription": "ProductDescription", "ProductAmount": 9.85 }] } response = requests.post(url, headers=headers, data=json.dumps(data)) if response.status_code == 200: response_data = response.json() print("ErrorCode: ", response_data.get('ErrorCode')) print("Result: ", response_data.get('Result')) print("Message: ", response_data.get('Message')) body = json.loads(response_data.get('Body')) print(body) else: print(f'Request failed with status code {response.status_code}') ``` {% endtab %} {% tab title="Ruby" %} ```ruby require 'net/http' require 'uri' require 'json' uri = URI.parse("{{Base Adres}}/api/paywall/payment/startdirect/insurance") http = Net::HTTP.new(uri.host, uri.port) http.use_ssl = true request = Net::HTTP::Post.new(uri.path, { 'Content-Type' => 'application/json', 'apikeypublic' => '%%', 'apiclientpublic' => '%%' }) request.body = JSON.generate({ "PaymentDetail" => { "Amount" => 9.85, "MerchantUniqueCode" => "AJSHFSAKFHASKHFA", "CurrencyId" => 1, "MerchantSuccessBackUrl" => "https://merchantsite.site.com/success", "MerchantFailBackUrl" => "https://merchantsite.site.com/fail", "Installment" => 1, "ChannelId" => 0, "TagId" => 0, "Half2D" => false }, "Card" => { "OwnerName" => "John Doe", "Number" => "5528790000000008", "ExpireMonth" => "12", "ExpireYear" => "2030", "Cvv" => "123", "UniqueCode" => "" }, "Customer" => { "FullName" => "FullName", "Phone" => "5336662211", "Email" => "enes@xcompany.com", "Country" => "Country", "City" => "City", "Address" => "Address", "IdentityNumber" => "IdentityNumber", "TaxNumber" => "TaxNumber" }, "Products" => [ { "ProductId" => "ProductId", "ProductName" => "ProductName", "ProductCategory" => "ProductCategory", "ProductDescription" => "ProductDescription", "ProductAmount" => 9.85 } ] }) response = http.request(request) puts response.body ``` {% endtab %} {% tab title="TypeScript" %} ```typescript import axios, { AxiosResponse } from 'axios'; interface ResponseData { ErrorCode: number; Result: boolean; Message: string; Body: string; } let data = { PaymentDetail: { Amount: 9.85, MerchantUniqueCode: "AJSHFSAKFHASKHFA", CurrencyId: 1, MerchantSuccessBackUrl: "https://merchantsite.site.com/success", MerchantFailBackUrl: "https://merchantsite.site.com/fail", Installment: 1, ChannelId: 0, TagId: 0, Half2D: false }, Card: { OwnerName: "John Doe", Number: "5528790000000008", ExpireMonth: "12", ExpireYear: "2030", Cvv: "123", UniqueCode: "" }, Customer: { FullName: "FullName", Phone: "5336662211", Email: "enes@xcompany.com", Country: "Country", City: "City", Address: "Address", IdentityNumber: "IdentityNumber", TaxNumber: "TaxNumber" }, Products: [{ ProductId: "ProductId", ProductName: "ProductName", ProductCategory: "ProductCategory", ProductDescription: "ProductDescription", ProductAmount: 9.85 }] }; let config = { method: 'post', url: '{{Base Adres}}/api/paywall/payment/startdirect/insurance', headers: { 'Content-Type': 'application/json', 'apikeypublic': '%%', 'apiclientpublic': '%%' }, data : data }; axios(config) .then(function (response: AxiosResponse) { console.log(response.data); }) .catch(function (error) { console.log(error); }); ``` {% endtab %} {% tab title="Curl" %} ```sh curl --location --request POST '{{Base Adres}}/api/paywall/payment/startdirect/insurance' \ --header 'Content-Type: application/json' \ --header 'apikeypublic: %%PUBLICKEY%%' \ --header 'apiclientpublic: %%PUBLICCLIENT%%' \ --data-raw '{ "PaymentDetail": { "Amount": 9.85, "MerchantUniqueCode": "FASLSZDPOT3535BFNGI", "CurrencyId": 1, "MerchantSuccessBackUrl": "https://merchantsite.site.com/success", "MerchantFailBackUrl": "https://merchantsite.site.com/fail", "Installment": 1, "ChannelId": 0, "TagId": 0, "Half2D": false }, "Card": { "OwnerName": "John Doe", "Number": "5528790000000008", "ExpireMonth": "12", "ExpireYear": "2030", "Cvv": "123", "UniqueCode": "" }, "Customer": { "FullName": "FullName", "Phone": "5336662211", "Email": "enes@xcompany.com", "Country": "Country", "City": "City", "Address": "Address", "IdentityNumber": "IdentityNumber", "TaxNumber": "TaxNumber" }, "Products": [{ "ProductId": "ProductId", "ProductName": "ProductName", "ProductCategory": "ProductCategory", "ProductDescription": "ProductDescription", "ProductAmount": 9.85 }] }' ``` {% endtab %} {% endtabs %} **Main Directory:** **`PaymentDetail`**
ParameterTypeCompulsoryDescription
AmountdecimalYesPayment cart amount.
MerchantUniqueCodestringYes

It must be the same value as the MerchantUniqueCode in the request sent to initiate the payment. This code is the unique value assigned to the transaction by you. It is used to uniquely identify and track a payment for cancellation, refund, or payment inquiry operations.


Length: 250 characters

CurrencyIdintYesCurrency

Bkz: Review
InstallmentintYesInstallment information should be sent as 1 for a single payment.
Half2DboolNoIt is the parameter that will assist you in finalizing your payments through a special call. If you send the Half2D parameter as true, your payment will remain in provisional status at the bank until you make the payment completion call.
ClientIPstringYesThe IP information of the party performing the transaction, such as the customer/user/member, etc.

Length: 15 characters
TagIdint?NoIt is used when you want to apply tagging to your payments.
ChannelIdint?NoIt is used when you want to separate the channels through which your payments are sent to Paywall.
EndOfTheDayint?NoIt is the end-of-day value. You should send this parameter as filled when you want only the "Next Day" payments to pass through the providers among the linked providers.
Bkz: Review
RegionIdshort?NoIt is the parameter that allows you to specify which country's providers you want your payment to pass through. If not specified, your payment will be processed as 'Global'.
ProviderBasedboolNoIt is used when you have decided on your own which provider should handle your payment.
ProviderKeystringYes/NoThe provider key through which you want your payment to be processed.
MarketPlace > BasketAmountdecimalNoIt is used within the marketplace scope.
**Main Directory:**** ****Card**
ParameterTypeCompulsoryDescription
OwnerNamestringYes/NoThe full name of the cardholder from whom the payment will be collected.

Length: 60 characters
CardNoFirststringYes/No

The first 8 digits of the card number


Length: 20 characters

CardNoLaststringYes/NoThe last 4 digits of the card number
InquiryValuestringYes/NoThe user's TCKN number or tax identification number
UniqueCodestringYes/NoIdentity information associated with the registered card. Returned by Paywall during saving and listing.
TempCardTokenstringYes/NoIt is the parameter to be used when you want to receive payment with a temporary saved card (Client-Side Tokenization).
Partner? >
PartnerBased		bool?Yes/NoIt is the parameter to be used when you set up cards based on a partner model.
Partner? >
PartnerIdentity		stringYes/NoWhen you set up cards based on a partner model, this is your company's partnership ID in Paywall. You can obtain this information from the Paywall panel.
CardSave? >
Save		boolYes/NoAt the time of payment, if the card should be saved upon successful payment, True should be sent. When True is sent, the other parameters under the CardSave object are taken into account.
CardSave? >
Nickname		stringYes/NoIt is the nickname for the card.
CardSave? >
RelationalId1		stringYes/NoIt is the relationship value of the card.
CardSave? >
RelationalId2		stringYes/NoIt is the second (tree structure) relationship value of the card.
CardSave? >
RelationalId3		stringYes/NoIt is the third (tree structure) relationship value of the card.
**Main Directory:**** ****`Customer`**
ParameterTypeCompulsoryDescription
FullNamestringYesThe name of the recipient on the merchant side.
PhonestringYesThe mobile phone number of the recipient on the merchant side.
EmailstringYesThe email address of the recipient on the merchant side.
CountrystringYesThe country information of the recipient on the merchant side.
CitystringYesThe city information of the recipient on the merchant side.
AddressstringYesThe registered address of the recipient on the merchant side.
IdentityNumberstringNoThe identity (TCKN) number of the recipient on the merchant side.
TaxNumberstringNoThe tax identification number of the recipient on the merchant side.
DeviceFingerprintstringNoDevice fingerprint information of the recipient on the merchant side.
UserAgentstringNoUser agent information currently used by the recipient on the merchant side.
UserRegisteredAtdatetimeNoThe user's registration date in your system.
LocationLocationNoThe object containing the user’s location information.
**Ana Dizin:** `Location`
ParameterTypeCompulsoryDescription
CountrystringNoThe user’s country information.
CitystringNoThe user’s city information.
RegionstringNoThe user’s region information.
LatstringNoThe latitude of the user's location on the map.
LonstringNoThe longitude of the user's location on the map.
**Main Directory:** `Product` {% hint style="info" %} For the parameters in the **FraudParameters** directory to be valid for fraud checks, the **UserFraudParameters** field in the Main Directory must be sent as **true**. Otherwise, fraud checks will be performed using the information in **PaymentDetail**. {% endhint %}
ParameterTypeCompulsoryDescription
ByPassFraudstringYesIf sent as true, it allows previously configured fraud checks to be bypassed.
OverrideActualParametersstringYesIf sent as true, fraud checks will be carried out and recorded using the parameters under "FraudParameters" instead of those under "PaymentDetail".
DeviceFingerprintstringNoDevice fingerprint information to be used in fraud checks.
AmountstringNoAmount information to be used in fraud checks.
ClientIPstringNoCustomer IP information to be used in fraud checks.
CountryCodestringNoCountry code information to be used in fraud checks.
UserAgentstringNoList of UserAgents to be used in fraud checks.
EmailstringNoEmail address information to be used in fraud checks.
PhonestringNoPhone number information to be used in fraud checks.
UserRegisteredAtdatetimeNoThe user's registration date in your system.
LocationLocationNoThe object that contains the user’s location information.
--- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://developer.paywall.one/payment-orchestration-integration-document/payment-service/3.-non-secure-insurance.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.