The Token object
Attributes
id(string) Unique identifier for the object.object(string) String representing the object’s type. Objects of the same type share the same value.card(string, expandable (can be expanded into an object with theexpandrequest parameter)) Card associated with this token.created(timestamp) Time at which the object was created. Measured in seconds since the Unix epoch.device_fingerprint(string, nullable) The hashed ID derived from the device ID from the card network associated with the token.last4(string, nullable) The last four digits of the token.livemode(boolean) If the object exists in live mode, the value istrue. If the object exists in test mode, the value isfalse.network(enum) The token service provider / card network associated with the token. Possible enum values:mastercardMasterCard token service provider.visaVisa token service provider.
network_data(object, nullable, expandable (can be expanded into an object with theexpandrequest parameter)) Additional details obtained from the network about the token, primarily related to the token creation process. For security reasons, this is only available to view in the first 24 hours after token creation, based on thecreatedvalue, and will be omitted unless you explicitly request it with theexpandparameter. Additionally, it’s only available via the “Retrieve a token” endpoint and “Update a token status” endpoint.network_data.device(object, nullable) Data about the device at the instance of provisioning this token.network_data.device.device_fingerprint(string, nullable) An obfuscated ID derived from the device ID.network_data.device.ip_address(string, nullable) The IP address of the device at provisioning time.network_data.device.location(string, nullable) The geographic latitude/longitude coordinates of the device at provisioning time. The format is [±]decimal/[±]decimal.network_data.device.name(string, nullable) The name of the device used for tokenization.network_data.device.phone_number(string, nullable) The phone number of the device used for tokenization.network_data.device.type(enum, nullable) The type of device used for tokenization. Possible enum values:otherDevice is some other form factor, such as tablet or laptop.phoneDevice is a mobile phone or phone form factor.watchDevice is a watch or watch form factor.
network_data.mastercard(object, nullable) If this is amastercardnetwork token, this hash contains tokenization data specific to this card network.network_data.mastercard.card_reference_id(string, nullable) A unique reference ID from MasterCard to represent the card account number.network_data.mastercard.token_reference_id(string) The network-unique identifier for the token.network_data.mastercard.token_requestor_id(string) The ID of the entity requesting tokenization, specific to MasterCard.network_data.mastercard.token_requestor_name(string, nullable) The name of the entity requesting tokenization, if known. This is directly provided from MasterCard.
network_data.type(enum) The network that the token is associated with. An additional hash is included with a name matching this value, containing tokenization data specific to the card network. Possible enum values:mastercardMasterCard token service provider.visaVisa token service provider.
network_data.visa(object, nullable) If this is avisanetwork token, this hash contains tokenization data specific to this card network.network_data.visa.card_reference_id(string, nullable) A unique reference ID from Visa to represent the card account number.network_data.visa.token_reference_id(string) The network-unique identifier for the token.network_data.visa.token_requestor_id(string) The ID of the entity requesting tokenization, specific to Visa.network_data.visa.token_risk_score(string, nullable) Degree of risk associated with the token between01and99, with higher number indicating higher risk. A00value indicates the token was not scored by Visa.
network_data.wallet_provider(object, nullable) The digital wallet used for provisioning this token.network_data.wallet_provider.account_id(string, nullable) The wallet provider-given account ID of the digital wallet the token belongs to.network_data.wallet_provider.account_trust_score(integer, nullable) An evaluation on the trustworthiness of the wallet account between 1 and 5. A higher score indicates more trustworthy.network_data.wallet_provider.card_number_source(enum, nullable) The method used for tokenizing a card. Possible enum values:appThe card was provisioned from a mobile application.manualThe card details were manually provided to the wallet provider. This includes manual card number entry by the cardholder, card number detection via OCR, and tapping a physical contactless card on a mobile device.on_fileThe card data stored on file was used for provisioning.otherThe token was provisioned by another method.
network_data.wallet_provider.cardholder_address(object, nullable) The address of the cardholder tokenizing the card.network_data.wallet_provider.cardholder_address.line1(string) The street address of the cardholder tokenizing the card.network_data.wallet_provider.cardholder_address.postal_code(string) The postal code of the cardholder tokenizing the card.
network_data.wallet_provider.cardholder_name(string, nullable) The name of the cardholder tokenizing the card.network_data.wallet_provider.device_trust_score(integer, nullable) An evaluation on the trustworthiness of the device. A higher score indicates more trustworthy.network_data.wallet_provider.hashed_account_email_address(string, nullable) The hashed email address of the cardholder’s account with the wallet provider.network_data.wallet_provider.reason_codes(array of enums, nullable) The reasons for suggested tokenization given by the card network. Possible enum values:account_card_too_newCardholders’ wallet account/card pair is newer than date threshold.account_recently_changedChanges made to account data within the date threshold.account_too_newCardholders’ wallet account is too new relative to provisioning request.account_too_new_since_launchCardholders’ wallet account is too new relative to launch.additional_deviceThe digitization is for an additional device for the same Account PAN and consumer account. There must be a currently active (not suspended) Token that was previously digitized and activated on an existing device for the same Account PAN and consumer account.data_expiredIssuer encrypted payment instrument data has expired.defer_id_v_decisionIssuer preferred to defer ID&V decision to token creation time.device_recently_lostDevice was put in lost mode.good_activity_historyThere has been financial activity linked to the account for at least and within a period of not less than six months; no suspicious activity is linked to the account within a period of at least one year.has_suspended_tokensSuspended cards in the secure element.high_riskSuspect fraud.inactive_accountAccount has not had activity in the last year.long_account_tenureAccount has existed for an extended period of not less than one year. A Payment App Provider may determine a longer account tenure to qualify for this reason.low_account_scoreThe account trust score is low.low_device_scoreThe device trust score is low.low_phone_number_scorePhone score is low.network_service_errorErrors between Stripe and network unrelated to content. Can be related to formatting/schema.outside_home_territoryDevice provisioning location outside of the cardholder’s wallet account home country.provisioning_cardholder_mismatchPushing to a different user than the cardholder. If a passcode was included in issuer’s encrypted payment instrument data, then it matched the user provided value.provisioning_device_and_cardholder_mismatchUser/device that was intended to receive the encrypted payment instrument data is different than the one that is provisioning the token.provisioning_device_mismatchSending and receiving devices are different. If a passcode was included in issuer’s encrypted payment instrument data, then it matched the user provided value.same_device_no_prior_authenticationSending and receiving devices are the same, but without any upfront authentication or passcode verification.same_device_successful_prior_authenticationSending and receiving devices are the same, but with successful upfront authentication or passcode verification.software_updateThe digitization has been requested due to an authenticated operating system or other software update being installed on the device, causing mobile payment data to be wiped and unable to be restored. This digitization must be for the same device ID to which a Token was previously digitized and activated for the same Account PAN and consumer account.suspicious_activitySuspicious transactions linked to this account.too_many_different_cardholdersThe card provisioning request contains a distinct name in excess of the permitted threshold.too_many_recent_attemptsThe number of provisioning attempts on this device exceeds threshold.too_many_recent_tokensThere have been more than the threshold number of different cards attempted at provisioning to this phone.
network_data.wallet_provider.suggested_decision(enum, nullable) The recommendation on responding to the tokenization request. Possible enum values:approveThe card network suggests approving the provisioning request.declineThe card network suggests declining the provisioning request.require_authThe card network suggests performing additional identity verification in order to approve tokenization.
network_data.wallet_provider.suggested_decision_version(string, nullable) The version of the standard for mapping reason codes followed by the wallet provider.
network_updated_at(timestamp) Time at which the token was last updated by the card network. Measured in seconds since the Unix epoch.status(enum) The usage state of the token. Possible enum values:activeToken is provisioned and usable for payments.deletedTerminal state. Token can no longer be used.requestedToken has been requested to be provisioned, but has not completed the activation process.suspendedToken temporarily cannot be used for payments.
wallet_provider(enum, nullable) The digital wallet for this token, if one was used. Possible enum values:apple_payApple Pay.google_payGoogle Pay.samsung_paySamsung Pay.
The Token object
json
{
"id": "intok_1MzDbE2eZvKYlo2C26a98MDg",
"object": "issuing.token",
"card": "ic_1MytUz2eZvKYlo2CZCn5fuvZ",
"created": 1682059060,
"network_updated_at": 1682059060,
"livemode": false,
"status": "active",
"last4": "2424",
"token_service_provider": "visa",
"wallet_provider": "apple_pay",
"device_fingerprint": "intd_1MzDbE2eZvKYcp3095svdf"
}