Knowledge Base

201 is a created so the payment or token is created. You’ll see the Id in the location header value.

You’ll either receive a 201 (created) or a 400 (bad request). If you receive the latter, there will be a user friendly error message to display to your user. The other status codes are standard codes such as a 401 for failed authentication which you should only receive if the key and secret are not correct.

For a credit card transaction, there is a basic check on the number during tokenization, but the majority of the validation happens at the time of the transaction (e.g. lost/stolen card, insufficient funds, etc). For ACH transactions, the routing number is validated at tokenization and at the time of the transaction, however, ACH cannot be fully validated until a few days later since it has to hit the receiving bank and get processed.

A 401 response indicates either your API key and secret are incorrect, or your IP Address has been blacklisted for too many failed attempts. First verify you are using the correct API key/secret. If you are still receiving 401 responses, please contact support at support@epaypolicy.com to be removed from the blacklist.