We feel that the Visa Developer Center has come full circle since launch in 2016. It hosts many APIs on the platform and has grown to become a contributor to continuous innovation and product development in the financial services industry.
As most of you know, Visa Developer Platform has three different authentication methodologies for accessing the APIs.
Message Level Encryption
Most products use Mutual SSL Authentication, some products use x-pay-token and a few products currently use Message Level Encryption. Message Level Encryption is asymmetric cryptography, which is required to encrypt message payloads and it is implemented on top of Mutual SSL Authentication. This can help provide an additional level of security to the message payload being sent across the channel.
We thought of simplifying the way for you to quickly access, test and troubleshoot Visa’s APIs using your own credentials, which gave birth to Visa Developer Center Playground.
Please note that the Visa Developer Center Playground is currently compatible with Windows only.
What can I do with the tool?
Visa Developer Center Playground (VDC Playground) is a tool for testing and troubleshooting Visa APIs that are hosted through the Visa Developer Platform (VDP). It comes integrated with all required authentication methods to connect and get going with VDP APIs, subject to the restrictions and conditions that may apply to particular capabilities and certification and production environments.
You can relate this tool to a rest client for accessing APIs on Visa Developer Platform. You can make most common API calls like GET, PUT, POST and DELETE to any APIs that you have access to on VDP using the tool.
In order to test API calls that have Message Level Encryption, you need to provide only the following credentials and certificates as per the User Guide. No additional Code required.
Server Encryption Certificate (Visa’s Public Key)
MLE Private Key (You will get this at the time of creating the CSR file for requesting MLE Credentials)
Similarly, you can test APIs, which have Mutual SSL by just providing the certificate path and basic auth credentials or in the required placeholder on the tool.
For X-PAY-TOKEN based APIs, provide the shared secret in the required placeholder, add the apiKey as part of Endpoint’s query parameter and you are good to go.
No worries, if you are behind a corporate proxy. You can input the proxy host and port and connect to Visa APIs directly from the tool.
You can also save the configuration parameters, export the required fields (like Endpoint, Request, Response and Response Header) on the click of a button and report on it if you run into any issues.
Last but not least, you can also generate Key Stores in JKS and P12 format directly from the tool.
Where to download the tool?
To access and download this tool, log in to Visa Developer > Project dashboard > Asset Management.
How to use the tool
Let us begin with creating the project. Go to Visa Developer project dashboard and open the existing project. If you are creating a new project, refer to Create a Project page for detailed steps.
Click on “Add new Project “on your VDP Dashboard
Enter Project Name and Project Description
Select the APIs you would like to add to your project. Here we are selecting FX Rates, Visa Merchant Purchase inquiry and V to test all 3 Authentication methods (Mutual Auth, x-pay-token & Message Level Encryption)
Select default option to generate CSR and click on Create Project button
Download Private Key as it is available to download only once, confirm and continue. This is your Mutual Auth Private Key.
Congratulation! You have created the project.
Generating MLE Credentials
Go to credentials tab and scroll to the bottom of the page. Under Encryption / Decryption section, click on Generate Key-ID button
This will create the Key ID. Then we need to add CSR file for receiving MLE Credentials
Select default option to generate the CSR and click on confirm.
Download MLE Private Key and keep it safe. Confirm and continue.
This will generate Server Encryption Certificate and Client Encryption Certificate. Server Encryption Certificate is Visa’s public key, which helps you to encrypt the payload.
Launch VDC Playground
Once you have downloaded the asset, launch the VDC Playground by double clicking on the executable jar file. If it does not open, perform the steps below in Windows and try again.
Start Control Panel.
Click Default Programs.
Click Associate a file type or protocol with a specific program.
Double click .jar.
Browse C:\Program Files\Java\jre\bin\javaw.exe.
Click the button Open and click the button OK.
To open in Command Line, type java -jar vdpplayground.jar
Testing Mutual SSL Authentication using Hello World GET API Call