PAYMENTS
SIMPLIFIED

Offer all the payment features your
customers want with a fast integration
that limits your PCI scope.

GET STARTED

API Base URLs

  • Production Server

    For processing live transactions

    https://api.payjunction.com

  • Test Server

    For development

    https://api.payjunctionlabs.com

Most Commonly Referred to Articles

Our integration team is ready to
speak with you.

JavaScript Tokenization Introduction

Tokenization is the process of exchanging sensitive account information for a token. PayJunction can collect sensitive card details directly from your customers in a secure manner and return a token representing this information to you for use in payment processing. By tokenizing sensitive data, your liability is reduced and you greatly simplify PCI compliance requirements.

We provide a JavaScript SDK to perform this process in the customer's browser. This ensures that no sensitive card data touches your servers, and drastically reduces your PCI scope..

General Overview

To process a transaction using tokens, the general workflow is as follows:

  1. Include the PayJunction client-side SDK and publishable key on your webpage.
  2. Create the token information using the PayJunction SDK.
  3. Send the token id to your server.
  4. At this point, you can use the token with the PayJunction API to either:

See the JavaScript Tokenization Examples for code samples.

Tokens

Tokens are short-lived, single-use entities meant to be used immediately.

Tokens expire within 30 minutes and should not be stored. To store card information for later use, create Customer Vault objects.

Publishable Keys

In order to use the SDK and create tokens, you need a publishable key. Unlike Application Keys, publishable keys are meant to be public and can be safely added to your website. Each publishable key is unique to a merchant, and different between Test and Production environments.

You can create a publishable key with the dedicated API.

In most situations, a single publishable key per application or website is all you need. We recommend generating one key per environment (e.g., one for Production and one for Test).

 

Do not create a new publishable key for every session or customer visit. Publishable keys are meant to be reused and loaded safely in the client’s browser as part of your integration. Creating excessive keys (e.g., per customer or per session) may cause performance issues or exceed your key limit.

 

Each PayJunction account (PJMID) is limited to 100 publishable keys.