@aws-sdk/client-payment-cryptography-data 3.349.0

package/dist-types/commands/TranslatePinDataCommand.d.ts

@@ -0,0 +1,147 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { TranslatePinDataInput, TranslatePinDataOutput } from "../models/models_0";
+import { PaymentCryptographyDataClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../PaymentCryptographyDataClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link TranslatePinDataCommand}.
+ */
+export interface TranslatePinDataCommandInput extends TranslatePinDataInput {
+}
+/**
+ * @public
+ *
+ * The output of {@link TranslatePinDataCommand}.
+ */
+export interface TranslatePinDataCommandOutput extends TranslatePinDataOutput, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Translates encrypted PIN block from and to ISO 9564 formats 0,1,3,4. For more information, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/translate-pin-data.html">Translate PIN data</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>.</p>
+ *          <p>PIN block translation involves changing the encrytion of PIN block from one encryption key to another encryption key and changing PIN block format from one to another without PIN block data leaving Amazon Web Services Payment Cryptography. The encryption key transformation can be from PEK (Pin Encryption Key) to BDK (Base Derivation Key) for DUKPT or from BDK for DUKPT to PEK. Amazon Web Services Payment Cryptography supports <code>TDES</code> and <code>AES</code> key derivation type for DUKPT tranlations. You can use this operation for P2PE (Point to Point Encryption) use cases where the encryption keys should change but the processing system either does not need to, or is not permitted to, decrypt the data.</p>
+ *          <p>The allowed combinations of PIN block format translations are guided by PCI. It is important to note that not all encrypted PIN block formats (example, format 1) require PAN (Primary Account Number) as input. And as such, PIN block format that requires PAN (example, formats 0,3,4) cannot be translated to a format (format 1) that does not require a PAN for generation. </p>
+ *          <p>For information about valid keys for this operation, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html">Understanding key attributes</a> and <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html">Key types for specific data operations</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>.</p>
+ *          <note>
+ *             <p>At this time, Amazon Web Services Payment Cryptography does not support translations to PIN format 4.</p>
+ *          </note>
+ *          <p>
+ *             <b>Cross-account use</b>: This operation can't be used across different Amazon Web Services accounts.</p>
+ *          <p>
+ *             <b>Related operations:</b>
+ *          </p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <a>GeneratePinData</a>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <a>VerifyPinData</a>
+ *                </p>
+ *             </li>
+ *          </ul>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { PaymentCryptographyDataClient, TranslatePinDataCommand } from "@aws-sdk/client-payment-cryptography-data"; // ES Modules import
+ * // const { PaymentCryptographyDataClient, TranslatePinDataCommand } = require("@aws-sdk/client-payment-cryptography-data"); // CommonJS import
+ * const client = new PaymentCryptographyDataClient(config);
+ * const input = { // TranslatePinDataInput
+ *   IncomingKeyIdentifier: "STRING_VALUE", // required
+ *   OutgoingKeyIdentifier: "STRING_VALUE", // required
+ *   IncomingTranslationAttributes: { // TranslationIsoFormats Union: only one key present
+ *     IsoFormat0: { // TranslationPinDataIsoFormat034
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *     },
+ *     IsoFormat1: {},
+ *     IsoFormat3: {
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *     },
+ *     IsoFormat4: {
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *     },
+ *   },
+ *   OutgoingTranslationAttributes: {//  Union: only one key present
+ *     IsoFormat0: {
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *     },
+ *     IsoFormat1: {},
+ *     IsoFormat3: {
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *     },
+ *     IsoFormat4: "<TranslationPinDataIsoFormat034>",
+ *   },
+ *   EncryptedPinBlock: "STRING_VALUE", // required
+ *   IncomingDukptAttributes: { // DukptDerivationAttributes
+ *     KeySerialNumber: "STRING_VALUE", // required
+ *     DukptKeyDerivationType: "STRING_VALUE",
+ *     DukptKeyVariant: "STRING_VALUE",
+ *   },
+ *   OutgoingDukptAttributes: {
+ *     KeySerialNumber: "STRING_VALUE", // required
+ *     DukptKeyDerivationType: "STRING_VALUE",
+ *     DukptKeyVariant: "STRING_VALUE",
+ *   },
+ * };
+ * const command = new TranslatePinDataCommand(input);
+ * const response = await client.send(command);
+ * // { // TranslatePinDataOutput
+ * //   PinBlock: "STRING_VALUE", // required
+ * //   KeyArn: "STRING_VALUE", // required
+ * //   KeyCheckValue: "STRING_VALUE", // required
+ * // };
+ *
+ * ```
+ *
+ * @param TranslatePinDataCommandInput - {@link TranslatePinDataCommandInput}
+ * @returns {@link TranslatePinDataCommandOutput}
+ * @see {@link TranslatePinDataCommandInput} for command's `input` shape.
+ * @see {@link TranslatePinDataCommandOutput} for command's `response` shape.
+ * @see {@link PaymentCryptographyDataClientResolvedConfig | config} for PaymentCryptographyDataClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception, or failure.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was denied due to an invalid resource error.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The request was denied due to request throttling.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>The request was denied due to an invalid request error.</p>
+ *
+ * @throws {@link PaymentCryptographyDataServiceException}
+ * <p>Base exception class for all service exceptions from PaymentCryptographyData service.</p>
+ *
+ */
+export declare class TranslatePinDataCommand extends $Command<TranslatePinDataCommandInput, TranslatePinDataCommandOutput, PaymentCryptographyDataClientResolvedConfig> {
+    readonly input: TranslatePinDataCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: TranslatePinDataCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: PaymentCryptographyDataClientResolvedConfig, options?: __HttpHandlerOptions): Handler<TranslatePinDataCommandInput, TranslatePinDataCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/VerifyAuthRequestCryptogramCommand.d.ts

@@ -0,0 +1,150 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { VerifyAuthRequestCryptogramInput, VerifyAuthRequestCryptogramOutput } from "../models/models_0";
+import { PaymentCryptographyDataClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../PaymentCryptographyDataClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link VerifyAuthRequestCryptogramCommand}.
+ */
+export interface VerifyAuthRequestCryptogramCommandInput extends VerifyAuthRequestCryptogramInput {
+}
+/**
+ * @public
+ *
+ * The output of {@link VerifyAuthRequestCryptogramCommand}.
+ */
+export interface VerifyAuthRequestCryptogramCommandOutput extends VerifyAuthRequestCryptogramOutput, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Verifies Authorization Request Cryptogram (ARQC) for a EMV chip payment card authorization. For more information, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/data-operations.verifyauthrequestcryptogram.html">Verify auth request cryptogram</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>.</p>
+ *          <p>ARQC generation is done outside of Amazon Web Services Payment Cryptography and is typically generated on a point of sale terminal for an EMV chip card to obtain payment authorization during transaction time. For ARQC verification, you must first import the ARQC generated outside of Amazon Web Services Payment Cryptography by calling <a href="https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_ImportKey.html">ImportKey</a>. This operation uses the imported ARQC and an major encryption key (DUKPT) created by calling <a href="https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_CreateKey.html">CreateKey</a> to either provide a boolean ARQC verification result or provide an APRC (Authorization Response Cryptogram) response using Method 1 or Method 2. The <code>ARPC_METHOD_1</code> uses <code>AuthResponseCode</code> to generate ARPC and <code>ARPC_METHOD_2</code> uses <code>CardStatusUpdate</code> to generate ARPC. </p>
+ *          <p>For information about valid keys for this operation, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html">Understanding key attributes</a> and <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html">Key types for specific data operations</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>.</p>
+ *          <p>
+ *             <b>Cross-account use</b>: This operation can't be used across different Amazon Web Services accounts.</p>
+ *          <p>
+ *             <b>Related operations:</b>
+ *          </p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <a>VerifyCardValidationData</a>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <a>VerifyPinData</a>
+ *                </p>
+ *             </li>
+ *          </ul>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { PaymentCryptographyDataClient, VerifyAuthRequestCryptogramCommand } from "@aws-sdk/client-payment-cryptography-data"; // ES Modules import
+ * // const { PaymentCryptographyDataClient, VerifyAuthRequestCryptogramCommand } = require("@aws-sdk/client-payment-cryptography-data"); // CommonJS import
+ * const client = new PaymentCryptographyDataClient(config);
+ * const input = { // VerifyAuthRequestCryptogramInput
+ *   KeyIdentifier: "STRING_VALUE", // required
+ *   TransactionData: "STRING_VALUE", // required
+ *   AuthRequestCryptogram: "STRING_VALUE", // required
+ *   MajorKeyDerivationMode: "STRING_VALUE", // required
+ *   SessionKeyDerivationAttributes: { // SessionKeyDerivation Union: only one key present
+ *     EmvCommon: { // SessionKeyEmvCommon
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *       ApplicationTransactionCounter: "STRING_VALUE", // required
+ *     },
+ *     Mastercard: { // SessionKeyMastercard
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *       ApplicationTransactionCounter: "STRING_VALUE", // required
+ *       UnpredictableNumber: "STRING_VALUE", // required
+ *     },
+ *     Emv2000: { // SessionKeyEmv2000
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *       ApplicationTransactionCounter: "STRING_VALUE", // required
+ *     },
+ *     Amex: { // SessionKeyAmex
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *     },
+ *     Visa: { // SessionKeyVisa
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *     },
+ *   },
+ *   AuthResponseAttributes: { // CryptogramAuthResponse Union: only one key present
+ *     ArpcMethod1: { // CryptogramVerificationArpcMethod1
+ *       AuthResponseCode: "STRING_VALUE", // required
+ *     },
+ *     ArpcMethod2: { // CryptogramVerificationArpcMethod2
+ *       CardStatusUpdate: "STRING_VALUE", // required
+ *       ProprietaryAuthenticationData: "STRING_VALUE",
+ *     },
+ *   },
+ * };
+ * const command = new VerifyAuthRequestCryptogramCommand(input);
+ * const response = await client.send(command);
+ * // { // VerifyAuthRequestCryptogramOutput
+ * //   KeyArn: "STRING_VALUE", // required
+ * //   KeyCheckValue: "STRING_VALUE", // required
+ * //   AuthResponseValue: "STRING_VALUE",
+ * // };
+ *
+ * ```
+ *
+ * @param VerifyAuthRequestCryptogramCommandInput - {@link VerifyAuthRequestCryptogramCommandInput}
+ * @returns {@link VerifyAuthRequestCryptogramCommandOutput}
+ * @see {@link VerifyAuthRequestCryptogramCommandInput} for command's `input` shape.
+ * @see {@link VerifyAuthRequestCryptogramCommandOutput} for command's `response` shape.
+ * @see {@link PaymentCryptographyDataClientResolvedConfig | config} for PaymentCryptographyDataClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception, or failure.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was denied due to an invalid resource error.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The request was denied due to request throttling.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>The request was denied due to an invalid request error.</p>
+ *
+ * @throws {@link VerificationFailedException} (client fault)
+ *  <p>This request failed verification.</p>
+ *
+ * @throws {@link PaymentCryptographyDataServiceException}
+ * <p>Base exception class for all service exceptions from PaymentCryptographyData service.</p>
+ *
+ */
+export declare class VerifyAuthRequestCryptogramCommand extends $Command<VerifyAuthRequestCryptogramCommandInput, VerifyAuthRequestCryptogramCommandOutput, PaymentCryptographyDataClientResolvedConfig> {
+    readonly input: VerifyAuthRequestCryptogramCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: VerifyAuthRequestCryptogramCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: PaymentCryptographyDataClientResolvedConfig, options?: __HttpHandlerOptions): Handler<VerifyAuthRequestCryptogramCommandInput, VerifyAuthRequestCryptogramCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/VerifyCardValidationDataCommand.d.ts

@@ -0,0 +1,156 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { VerifyCardValidationDataInput, VerifyCardValidationDataOutput } from "../models/models_0";
+import { PaymentCryptographyDataClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../PaymentCryptographyDataClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link VerifyCardValidationDataCommand}.
+ */
+export interface VerifyCardValidationDataCommandInput extends VerifyCardValidationDataInput {
+}
+/**
+ * @public
+ *
+ * The output of {@link VerifyCardValidationDataCommand}.
+ */
+export interface VerifyCardValidationDataCommandOutput extends VerifyCardValidationDataOutput, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Verifies card-related validation data using algorithms such as Card Verification Values (CVV/CVV2), Dynamic Card Verification Values (dCVV/dCVV2) and Card Security Codes (CSC). For more information, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/verify-card-data.html">Verify card data</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>.</p>
+ *          <p>This operation validates the CVV or CSC codes that is printed on a payment credit or debit card during card payment transaction. The input values are typically provided as part of an inbound transaction to an issuer or supporting platform partner. Amazon Web Services Payment Cryptography uses CVV or CSC, PAN (Primary Account Number) and expiration date of the card to check its validity during transaction processing. In this operation, the CVK (Card Verification Key) encryption key for use with card data verification is same as the one in used for <a>GenerateCardValidationData</a>. </p>
+ *          <p>For information about valid keys for this operation, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html">Understanding key attributes</a> and <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html">Key types for specific data operations</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>. </p>
+ *          <p>
+ *             <b>Cross-account use</b>: This operation can't be used across different Amazon Web Services accounts.</p>
+ *          <p>
+ *             <b>Related operations:</b>
+ *          </p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <a>GenerateCardValidationData</a>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <a>VerifyAuthRequestCryptogram</a>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <a>VerifyPinData</a>
+ *                </p>
+ *             </li>
+ *          </ul>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { PaymentCryptographyDataClient, VerifyCardValidationDataCommand } from "@aws-sdk/client-payment-cryptography-data"; // ES Modules import
+ * // const { PaymentCryptographyDataClient, VerifyCardValidationDataCommand } = require("@aws-sdk/client-payment-cryptography-data"); // CommonJS import
+ * const client = new PaymentCryptographyDataClient(config);
+ * const input = { // VerifyCardValidationDataInput
+ *   KeyIdentifier: "STRING_VALUE", // required
+ *   PrimaryAccountNumber: "STRING_VALUE", // required
+ *   VerificationAttributes: { // CardVerificationAttributes Union: only one key present
+ *     AmexCardSecurityCodeVersion1: { // AmexCardSecurityCodeVersion1
+ *       CardExpiryDate: "STRING_VALUE", // required
+ *     },
+ *     AmexCardSecurityCodeVersion2: { // AmexCardSecurityCodeVersion2
+ *       CardExpiryDate: "STRING_VALUE", // required
+ *       ServiceCode: "STRING_VALUE", // required
+ *     },
+ *     CardVerificationValue1: { // CardVerificationValue1
+ *       CardExpiryDate: "STRING_VALUE", // required
+ *       ServiceCode: "STRING_VALUE", // required
+ *     },
+ *     CardVerificationValue2: { // CardVerificationValue2
+ *       CardExpiryDate: "STRING_VALUE", // required
+ *     },
+ *     CardHolderVerificationValue: { // CardHolderVerificationValue
+ *       UnpredictableNumber: "STRING_VALUE", // required
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *       ApplicationTransactionCounter: "STRING_VALUE", // required
+ *     },
+ *     DynamicCardVerificationCode: { // DynamicCardVerificationCode
+ *       UnpredictableNumber: "STRING_VALUE", // required
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *       ApplicationTransactionCounter: "STRING_VALUE", // required
+ *       TrackData: "STRING_VALUE", // required
+ *     },
+ *     DynamicCardVerificationValue: { // DynamicCardVerificationValue
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *       CardExpiryDate: "STRING_VALUE", // required
+ *       ServiceCode: "STRING_VALUE", // required
+ *       ApplicationTransactionCounter: "STRING_VALUE", // required
+ *     },
+ *     DiscoverDynamicCardVerificationCode: { // DiscoverDynamicCardVerificationCode
+ *       CardExpiryDate: "STRING_VALUE", // required
+ *       UnpredictableNumber: "STRING_VALUE", // required
+ *       ApplicationTransactionCounter: "STRING_VALUE", // required
+ *     },
+ *   },
+ *   ValidationData: "STRING_VALUE", // required
+ * };
+ * const command = new VerifyCardValidationDataCommand(input);
+ * const response = await client.send(command);
+ * // { // VerifyCardValidationDataOutput
+ * //   KeyArn: "STRING_VALUE", // required
+ * //   KeyCheckValue: "STRING_VALUE", // required
+ * // };
+ *
+ * ```
+ *
+ * @param VerifyCardValidationDataCommandInput - {@link VerifyCardValidationDataCommandInput}
+ * @returns {@link VerifyCardValidationDataCommandOutput}
+ * @see {@link VerifyCardValidationDataCommandInput} for command's `input` shape.
+ * @see {@link VerifyCardValidationDataCommandOutput} for command's `response` shape.
+ * @see {@link PaymentCryptographyDataClientResolvedConfig | config} for PaymentCryptographyDataClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception, or failure.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was denied due to an invalid resource error.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The request was denied due to request throttling.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>The request was denied due to an invalid request error.</p>
+ *
+ * @throws {@link VerificationFailedException} (client fault)
+ *  <p>This request failed verification.</p>
+ *
+ * @throws {@link PaymentCryptographyDataServiceException}
+ * <p>Base exception class for all service exceptions from PaymentCryptographyData service.</p>
+ *
+ */
+export declare class VerifyCardValidationDataCommand extends $Command<VerifyCardValidationDataCommandInput, VerifyCardValidationDataCommandOutput, PaymentCryptographyDataClientResolvedConfig> {
+    readonly input: VerifyCardValidationDataCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: VerifyCardValidationDataCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: PaymentCryptographyDataClientResolvedConfig, options?: __HttpHandlerOptions): Handler<VerifyCardValidationDataCommandInput, VerifyCardValidationDataCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/VerifyMacCommand.d.ts

@@ -0,0 +1,137 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { VerifyMacInput, VerifyMacOutput } from "../models/models_0";
+import { PaymentCryptographyDataClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../PaymentCryptographyDataClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link VerifyMacCommand}.
+ */
+export interface VerifyMacCommandInput extends VerifyMacInput {
+}
+/**
+ * @public
+ *
+ * The output of {@link VerifyMacCommand}.
+ */
+export interface VerifyMacCommandOutput extends VerifyMacOutput, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Verifies a Message Authentication Code (MAC). </p>
+ *          <p>You can use this operation when keys won't be shared but mutual data is present on both ends for validation. In this case, known data values are used to generate a MAC on both ends for verification without sending or receiving data in ciphertext or plaintext. You can use this operation to verify a DUPKT, HMAC or EMV MAC by setting generation attributes and algorithm to the associated values. Use the same encryption key for MAC verification as you use for <a>GenerateMac</a>. </p>
+ *          <p>For information about valid keys for this operation, see <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html">Understanding key attributes</a> and <a href="https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html">Key types for specific data operations</a> in the <i>Amazon Web Services Payment Cryptography User Guide</i>. </p>
+ *          <p>
+ *             <b>Cross-account use</b>: This operation can't be used across different Amazon Web Services accounts.</p>
+ *          <p>
+ *             <b>Related operations:</b>
+ *          </p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <a>GenerateMac</a>
+ *                </p>
+ *             </li>
+ *          </ul>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { PaymentCryptographyDataClient, VerifyMacCommand } from "@aws-sdk/client-payment-cryptography-data"; // ES Modules import
+ * // const { PaymentCryptographyDataClient, VerifyMacCommand } = require("@aws-sdk/client-payment-cryptography-data"); // CommonJS import
+ * const client = new PaymentCryptographyDataClient(config);
+ * const input = { // VerifyMacInput
+ *   KeyIdentifier: "STRING_VALUE", // required
+ *   MessageData: "STRING_VALUE", // required
+ *   Mac: "STRING_VALUE", // required
+ *   VerificationAttributes: { // MacAttributes Union: only one key present
+ *     Algorithm: "STRING_VALUE",
+ *     EmvMac: { // MacAlgorithmEmv
+ *       MajorKeyDerivationMode: "STRING_VALUE", // required
+ *       PrimaryAccountNumber: "STRING_VALUE", // required
+ *       PanSequenceNumber: "STRING_VALUE", // required
+ *       SessionKeyDerivationMode: "STRING_VALUE", // required
+ *       SessionKeyDerivationValue: { // SessionKeyDerivationValue Union: only one key present
+ *         ApplicationCryptogram: "STRING_VALUE",
+ *         ApplicationTransactionCounter: "STRING_VALUE",
+ *       },
+ *     },
+ *     DukptIso9797Algorithm1: { // MacAlgorithmDukpt
+ *       KeySerialNumber: "STRING_VALUE", // required
+ *       DukptKeyVariant: "STRING_VALUE", // required
+ *       DukptDerivationType: "STRING_VALUE",
+ *     },
+ *     DukptIso9797Algorithm3: {
+ *       KeySerialNumber: "STRING_VALUE", // required
+ *       DukptKeyVariant: "STRING_VALUE", // required
+ *       DukptDerivationType: "STRING_VALUE",
+ *     },
+ *     DukptCmac: {
+ *       KeySerialNumber: "STRING_VALUE", // required
+ *       DukptKeyVariant: "STRING_VALUE", // required
+ *       DukptDerivationType: "STRING_VALUE",
+ *     },
+ *   },
+ *   MacLength: Number("int"),
+ * };
+ * const command = new VerifyMacCommand(input);
+ * const response = await client.send(command);
+ * // { // VerifyMacOutput
+ * //   KeyArn: "STRING_VALUE", // required
+ * //   KeyCheckValue: "STRING_VALUE", // required
+ * // };
+ *
+ * ```
+ *
+ * @param VerifyMacCommandInput - {@link VerifyMacCommandInput}
+ * @returns {@link VerifyMacCommandOutput}
+ * @see {@link VerifyMacCommandInput} for command's `input` shape.
+ * @see {@link VerifyMacCommandOutput} for command's `response` shape.
+ * @see {@link PaymentCryptographyDataClientResolvedConfig | config} for PaymentCryptographyDataClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception, or failure.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was denied due to an invalid resource error.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The request was denied due to request throttling.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>The request was denied due to an invalid request error.</p>
+ *
+ * @throws {@link VerificationFailedException} (client fault)
+ *  <p>This request failed verification.</p>
+ *
+ * @throws {@link PaymentCryptographyDataServiceException}
+ * <p>Base exception class for all service exceptions from PaymentCryptographyData service.</p>
+ *
+ */
+export declare class VerifyMacCommand extends $Command<VerifyMacCommandInput, VerifyMacCommandOutput, PaymentCryptographyDataClientResolvedConfig> {
+    readonly input: VerifyMacCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: VerifyMacCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: PaymentCryptographyDataClientResolvedConfig, options?: __HttpHandlerOptions): Handler<VerifyMacCommandInput, VerifyMacCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}