Apple Pay

Feature	Description
Payment Logo - Usage Guidelines
Integration Methods	✅ Hosted Checkout ✅ Embedded ✅ Server-to-Server
Recommended Regions	Global
Virtual Industry Support	✅
Subscription Support	✅ Varies by industry
Supported SaaS	All integrated SaaS platforms
Supported Open-Source Platforms	✅ Magento ✅ WordPress/Woocommerce ✅ OpenCart ✅ PrestaShop ✅ ZenCart

Integration Method

Embedded

When using embedded integration,

1. Merchants need to host domain verification files for each domain they register at the following path and ensure that the files at this path are accessible: Click to ⬇️ download the domain verification file.

https://[DOMAIN_NAME]/.well-known/apple-developer-merchantid-domain-association

Notice

If you have multiple subdomains or other domains, you need to add the above verification files, for example:

https://example.com/.well-known/apple-developer-merchantid-domain-association  
https://test.example.com/.well-known/apple-developer-merchantid-domain-association
···

2. Initiate domain verification:

Request

cURL -X POST 'https://mds.oceanpayment.com/appleregistermerchant'
-H 'Authorization: MVc9Lt1CDY7RBRUvh8iVmvvPbYF3uvWkymUDz'
-d '{
       "website": ["example.com,test.example.com"]
    }'

Response

{
    "statusMessage": "Success",
    "statusCode": 200
}

3. Errors

Response code	Description
200	OK Success.
400	Bad Request The request is malformed or invalid.
401	Unauthorized The request is malformed or invalid.
417	Expectation Failed The e-commerce platform isn’t registered with Apple Developer.
500	Internal Server Error An internal server error occurred.

4. After domain verification is complete, Apple Pay will be displayed as a payment option on the checkout page, where possible.

Notice

Apple Pay is only available on Apple devices that support it (such as the Safari web browser and iOS devices), and the button will only be displayed on iOS 17 and above.

5. The integration was completed using the Embedded integration solution.

Server to Server

To use this integration mode, you need to become an official Apple Pay developer.

1. Apple Pay Developer Account Registration and Configuration

• Visit https://developer.apple.com.
• Choose the Apple Developer Program.
• Payment integration requires a corporate account; personal accounts cannot create Merchant IDs.

2. Create Merchant ID

• Log in Apple Developer → Certificates, Identifiers & Profiles.
• Click the menu on the left Identifiers → Merchant IDs → (+), create Merchant ID.

3. Generate Payment Processing Certificate

• Generate a CSR (Certificate Signing Request) using Keychain or OpenSSL on macOS.
• Create a certificate of type Payment Processing Certificate.
• Upload the CSR and download the issued .cer file.
• Install the certificate into your local Keychain.
• Export it as a .p12 file (including the private key).
  The .p12 file is used on your server to decrypt the Apple Pay payment token.

4. Configure Merchant Domain whitelist

• Log in Apple Developer → Merchant IDs → Domain Verification.
• Add the merchant domain name (e.g., payments.oceanpayment.com).
• Follow the prompts to download the verification file apple-developer-merchantid-domain-association.
• Upload it to the website's root directory, for example: https://payments.oceanpayment.com/.well-known/apple-developer-merchantid-domain-association
• Click Verify to complete the verification.

5. Refer to the complete example of Apple Pay to obtain the JSON format of the Apple Pay Payment Token below.

{
  "data": "ned7UHi3Uti0VPrayQVZ7lIEBBeahdv02bFf65k4xVNzoMCm1ansTK+dbeoCb5doLRIm7FWYjJOmUE2/HMARrLvuzeWhX2ILKfQ9n3KqGXrTQC8M+YrbHS0eQZXBFBSlNeebn+izrbSzk+xmxBXGrK1R8/ov7q+i5/1q64+a0Eh1QGscBbweOuvBOsJl1CSSYvoRXF3GTHO1c80fGE1GWtHBPjDmhtjl7Al57lZPBenfnA/PXCx1NeUQPJcfNIXY/Ax9q2GjVk2nfXyGepvB8cXpdYZ7gqCo6V13B28D7qX3/AJo1CWEeH8ulVNbRu2sJKoE5/vIOmXXmUJY/2gwCQOnebXxtLjGlOJO8DiOAFDEdQx6pGpi9Ckzi8S7IU294s=",
  "signature": "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",
  "header": {
    "publicKeyHash": "sLiXc1clhfuSZN/HBtYjdW81oXfXcqdRXsd6nB3Rua8=",
    "ephemeralPublicKey": "MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEAKwAnvO9+06yugF6pninfzLfwNOyHvKDdOM+MweabfSU1GjG3fN9tLc6mvz1g1RGuIQrrqhfb2MCSzBGcY7R2Q==",
    "transactionId": "627f630d5f403f676697ee779752abe338e9a05e8ba92b111bb69dd1f43cbb15"
  },
  "version": "EC_v1"
}

6. Pass the token to Oceanpayment via the pay_accountNumber parameter, and initiate a Server to Server API request.

const paymentRequest = {
  countryCode: 'US',
  currencyCode: 'USD',
  total: {
    label: 'OceanPayment Checkout',
    amount: '10.00',
  },
  supportedNetworks: ['visa', 'masterCard', 'amex'],
  merchantCapabilities: ['supports3DS'],
  merchantIdentifier: 'merchant.oceanpayment.test',
};

session.onpaymentauthorized = function (event) {
  const payment = event.payment;
  console.log(JSON.stringify(payment));
  console.log(JSON.stringify(payment.token));

  processPayment(payment.token).then(function (response) {
    console.log("response from datatrans received");
    console.log(response);

    if (response.match(/status=.error./)) {
       console.log("an error occured!");
       console.log(response);
       return session.abort();
    }

    session.completePayment(ApplePaySession.STATUS_SUCCESS);
    window.location.href = "/success.html";
  });
        
};


function processPayment(paymentToken) {
    let paymentMethod = paymentToken.paymentMethod;
    let cardType = paymentMethod.network;
    let environment = document.getElementById('environment').value;

    let account = payParams[environment].account;
    let terminal = payParams[environment].terminal;
    let orderNo = new Date().getTime();
    let orderCurrency = document.getElementById('#order_currency').value;
    let orderAmount = document.getElementById('#order_amount').value;

    document.getElementById('form').action = payParams[environment].url;
    document.getElementById('account').value = account;
    document.getElementById('terminal').value = terminal;
    document.getElementById('pay_accountNumber').value = paymentToken.paymentData;
    document.getElementById('card_type').value = cardType;
    document.getElementById('order_number').value = orderNo;
    document.getElementById('order_amount').value = orderAmount;
    document.getElementById('methods').value = 'ApplePay';

    let billingId = document.getElementById('billing_id').value;
    let billingFirstName = document.getElementById('billing_firstName').value;
    let billingLastName = document.getElementById('billing_lastName').value;
    let billingEmail = document.getElementById('billing_email').value;

    let signString = account + terminal + orderNo + orderCurrency + orderAmount
        + billingId + billingFirstName + billingLastName + billingEmail + payParams[environment].secureCode;

    document.getElementById('signValue').value = sha256_digest(signString);
    document.getElementById('form').submit();

}