Create One Time Use Token (Direct) - Yuno API Documentation

POST

tokens

{
  "account_id": "fe14c7c6-c75e-43b7-bdbe-4c87ad52c482",
  "card_data": {
    "number": "4111111111111111",
    "expiration_month": 12,
    "expiration_year": 25,
    "security_code": "123",
    "holder_name": "Dee Hock"
  }
}

{
  "token": "9107a30f-564c-4469-bd7c-8e1f249fb016",
  "card_data": {
    "holder_name": "Dee Hock",
    "iin": "41111111",
    "lfd": "1111",
    "brand": "VISA",
    "type": "DEBIT",
    "issuer_name": "CONOTOXIA SP Z O O"
  }
}

Creates a one-time-use token from the customer’s card data as part of the DIRECT workflow. This endpoint is exclusively for PCI-compliant merchants who collect card data on their own servers.

This endpoint requires PCI DSS certification. If you are not PCI certified, use the SDK Checkout token flow instead, which handles card data securely on the client side.

Authentication

Requires both public-api-key and private-secret-key headers.

Request Body

account_id

string

required

The unique identifier of the account. Found in Yuno’s Dashboard.Constraints: MAX 64; MIN 36

card_data

object

required

Card details to tokenize.

Show card_data

number

string

required

Card number without separators.Constraints: MAX 19; MIN 8Example: 4111111111111111

expiration_month

integer

required

Card expiration month in MM format.Example: 12

expiration_year

integer

required

Card expiration year in YY or YYYY format.Example: 25

holder_name

string

required

Cardholder full name as printed on the card.Constraints: MAX 26; MIN 3Example: Dee Hock

security_code

string

Card security code (CVV/CVC).Constraints: MAX 4; MIN 2Example: 123

country

string

Customer’s country. ISO 3166-1 alpha-2 code.Example: US

customer_payer

object

Optional customer information for fraud screening and 3DS.

Show customer_payer

first_name

string

Customer’s first name.

last_name

string

Customer’s last name.

string

Customer’s email address.

document

object

Customer’s identification document.

Show document

document_type

string

Document type (e.g., CPF, CNPJ, CC, DNI).

document_number

string

Document number.

phone

object

Customer’s phone.

Show phone

country_code

string

International dialing code.

number

string

Phone number.

billing_address

object

Billing address (address_line_1, address_line_2, city, state, zip_code, country).

shipping_address

object

Shipping address (same structure as billing_address).

browser_info

object

Browser metadata for 3DS (user agent, screen dimensions, JavaScript/Java enabled).

ip_address

string

Customer’s IP address.

device_fingerprints

array

Array of provider-specific device fingerprint objects.

stored_credentials

object

Stored credential details for recurring or merchant-initiated transactions.

Show stored_credentials

reason

string

Reason for storing credentials.

usage

string

Usage type for stored credentials.

subscription_agreement_id

string

Subscription agreement identifier.

network_transaction_id

string

Network transaction identifier from a previous transaction.

{
  "account_id": "fe14c7c6-c75e-43b7-bdbe-4c87ad52c482",
  "card_data": {
    "number": "4111111111111111",
    "expiration_month": 12,
    "expiration_year": 25,
    "security_code": "123",
    "holder_name": "Dee Hock"
  }
}

{
  "token": "9107a30f-564c-4469-bd7c-8e1f249fb016",
  "card_data": {
    "holder_name": "Dee Hock",
    "iin": "41111111",
    "lfd": "1111",
    "brand": "VISA",
    "type": "DEBIT",
    "issuer_name": "CONOTOXIA SP Z O O"
  }
}

Response Fields

token

string

The one-time-use token. Use this in the Create Payment request as payment_method.token.

card_data

object

Tokenized card metadata (no sensitive data).

Show card_data

holder_name

string

Cardholder name.

iin

string

Issuer Identification Number (first 6-8 digits).

lfd

string

Last four digits of the card.

brand

string

Card brand (e.g., VISA, MASTERCARD).

type

string

Card type: CREDIT, DEBIT, or PREPAID.

issuer_name

string

Name of the issuing bank.

Create One Time Use Token (SDK Checkout). Token generation within a checkout session
Create Payment. Use the token to create a payment
Stored Credentials. Using stored credentials for recurring payments

Create One Time Use Token (SDK Checkout)Generate a one-time-use token within a checkout session for SDK-based payment flows.

{
  "account_id": "fe14c7c6-c75e-43b7-bdbe-4c87ad52c482",
  "card_data": {
    "number": "4111111111111111",
    "expiration_month": 12,
    "expiration_year": 25,
    "security_code": "123",
    "holder_name": "Dee Hock"
  }
}

{
  "token": "9107a30f-564c-4469-bd7c-8e1f249fb016",
  "card_data": {
    "holder_name": "Dee Hock",
    "iin": "41111111",
    "lfd": "1111",
    "brand": "VISA",
    "type": "DEBIT",
    "issuer_name": "CONOTOXIA SP Z O O"
  }
}

​Authentication

​Request Body

​Response Fields

​Related Pages

Authentication

Request Body

Response Fields

Related Pages