Get noname encrypted card embossing data.
Issuers who do their own embossing can use this endpoint to get a card's data, which needs to be encrypted as per regulations.
This endpoint uses AES256 with the GCM mode, and randomly generates the initialization vector, returning it in the response. AES-256 GCM is an authenticated encryption mode that uses the Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode (GCM) to provide both confidentiality and integrity for data. The Additional Authenticated Data (AAD) parameter used is the organization/tenant ID. AAD, in AES-GCM, is unencrypted data that is authenticated alongside the ciphertext to ensure the message's integrity and authenticity.
To use this endpoint:
- Open a Jira ticket with type = Settings and ask to use on-demand embossing.
- Generate and register a symmetric key with Pismo: open a Jira ticket with type = Settings and request an asymmetric key (RSA 2048 PKCS1) to send the symmetric key.
While the return values are shown as JSON, they are encrypted and not returned as clear text.
The endpoint generates a Card embossing notification received event.
Note: This is a PCI endpoint, use the https://gw-pci.pismolabs.io environment.