Restful JSON

This specification use JSON Protocol Messaging as programming language, provide Payment Information page for customers, and can be used for loan merchants. The integration available is via the API.

Restful JSON Payment Flow

Figure 1. Restful JSON Payment Flow

1. The customer places an order on merchant website and proceed to checkout.

2. Merchant sends payment request using a JSON POST request to E2pay.

3. Merchant receive response (URL) from E2Pay then redirect user to E2Pay landing payment page.

4. Customer review order detail and select payment method, and E2Pay direct user to issuer website.

5. After Customer lands on issuer website then he / she performs transaction.

6. E2pay get the payment status from issuer and pass it to merchant.

7. Merchant will show success/fail screen to customer.

8. E2Pay OPSG server send merchant H2H payment status notification.

9. Response status will be updated on E2Pay OPSG server until E2Pay OPSG receives “OK” response from merchant.

Hit URL to E2Pay

Production

E2PAY OPSG Payment Request API URL: https://pg.e2pay.co.id/RMS/API/nms2us/restful_json_bridge.php E2Pay OPSG payment re-query URL: https://api.e2pay.co.id/RMS/nms/requery_bridge.php

Staging

E2PAY OPSG Payment Request API URL: https://pg-uat.e2pay.co.id/RMS/API/nms2us/restful_json_bridge.php E2Pay OPSG Payment re-query URL: https://api-uat.e2pay.co.id/RMS/nms/requery_bridge.php

Merchant Request URL: [provided by merchant before the integration] Definition : Merchant Request URL is a checkout page at merchant website that submits the required parameter/value to E2Pay OPSG. Merchant Response URL: [can be specify with ResponseURL in request page] Definition : Response page URL is the page at merchant website that will receive payment status from E2Pay OPSG.

Payment Request

Request & Response Parameter

Request

Merchants send parameters via JSON as a request to E2Pay. Here are some parameters as a request:

Parameter	Type (Size)	M/O	Description	Sample
PaymentId	Integer	M	Unique payment channel id	7
MerchantCode	Varchar (20)	M	The merchant code provided by e2pay and use to uniquely identify the merchant	EP00103
RefNo	Varchar (20)	M	Provided by merchant. A Unique merchant transaction number.	BL1912FDJRAMINV
VaNumber	Varchar (13)	O	● Indicates virtual account number based on merchant unique number. Example: customer phone number ● This parameter is mandatory for static VA	1245678910
Currency	Varchar (5)	M	Only IDR	IDR
Amount	Currency	M	Total value of the transaction must be paid by customer	300000 (represent amount Rp 300.000)
InvoiceRefNo	Varchar (20)	O	● Mandatory for Invoice system. ● Invoice number provided by merchant.	BL1912FDJRAMINV
FirstName	Varchar (50)	M	Customer first name	Sidney
LastName	Varchar (50)	M	Customer last name	Sheldon
UserEmail	Varchar (100)	M	Customer email	product.team @e2pay.co.id
UserContact	Varchar (16)	M	Customer phone number Eliminate plus (+); convert 62xxx to 0XXXX; Format : 08XXXXXXX	628988363937
Lang	Varchar (100)	O	● Bahasa Indonesia ● English	ENG
Remark	Varchar (1000)	O	Merchant remarks
ResponseURL	Varchar (200)	M	Payment response page.	https://e2pay.co.id/response
BackendURL	Varchar (200)	M	Backend response page URL	https://e2pay.co.id/backend
Signature	Varchar (64)	M	SHA1 signature	OSsMZwT0jH4Wib3G2o/ZTQ RSYPM=
PurchaseItem	List(n)	M	List of products ordered by customers. Refer to PurchaseItem
BillingAddress	Address	M	● Mandatory for LOAN issuer. ● Billing address of the customer/shopper
ShippingAddress	Address	M	● Mandatory for LOAN issuer. ● Shipping address of the customer/shopper. shipping is required for goods (excluding ticket/voucher)
Sellers	List(n)	M	● Refer to Seller ● Mandatory for marketplaces. ● Details of the seller for marketplaces.
InstallmentType	Varchar (12)	M	● This parameter ONLY applicable for LOAN issuer. ● Instalment type chosen by the customer: a. 30_days b. 3_months c. 6_months d. 12_months	30_days
TokenizeUser	Boolean	M	● This parameter ONLY applicable for LOAN issuer. ● The value can be true or false	false
UserToken	Varchar	M	● This parameter ONLY applicable for LOAN issuer. ● If user token is set, this will be used to authenticate user.	XXXX-XXXX

Response

E2Pay send parameters via JSON as a response to Merchant. Here are some parameters as a response:

Parameter	Type (Size)	M/O	Description	Sample
PaymentId	Integer	M	Unique payment channel id.	7
MerchantCode	Varchar (20)	M	The merchant code provided by E2pay and use to uniquely identify the merchant.	IF00103
RefNo	Varchar (20)	M	Provided by merchant. A unique merchant transaction number.	BL1912FDJRAMINV
Currency	Varchar (5)	M	Only Indonesian Rupiah (IDR).	IDR
TransId	Varchar (30)	M	E2Pay OPSG Transaction ID.	P1295102400
Amount	Integer	M	Total value of the transaction.	300000 (represent amount Rp 300.000)
Status	Varchar (12)	M	Payment transaction status. - Success - Pending - Failed	PENDING
ErrDesc	Varchar (128)	M	Failure message from acquirer/issuer if there is.	Payment fail
Signature	Varchar (64)	M	SHA1 signature.	OSsMZwT0jH4Wib3G2o/ZTQRSYPM=
CheckoutURL	Varchar (100)	M	URL to redirect to the E2Pay payment page.	https://pay.e2pay.co.id/merchant-switching/singleChec kout

PurchaseItem

Parameter	Type (Size)	M/O	Description	Sample
Id	Varchar (18)	M	Product ID	123456
Name	Varchar (100)	M	Product name	Iphone 6S
Type	Varchar (50)	O	Product category	Smartphone
Qty	Varchar (4)	M	Product quantity	1
Price	Varchar (12)	M	Product price	1000000
Url	Varchar (150)	M	Url of the item from merchant site	http://merchant.com/ cellphones/iphone6s_64g
ParentType	Varchar (100)	O	This is either the seller or item	SELLER
ParentId	Varchar (100)	O	This parameter can be filled with Seller ID if the ParentType parameter contains Seller or filled with Item ID if the ParentType parameter contains Item.	SELLER456

Address

Parameter	Type (Size)	M/O	Description	Sample
FirstName	Varchar (50)	M		sidney
LastName	Varchar (50)	M		sheldon
Address	Varchar (255)	M		Jalan Rasuna Said
City	Varchar (50)	M		Jakarta Selatan
PostalCode	Varchar (5)	M		12950
Phone	Varchar (16)	M		628123456789
CountryCode	Varchar (3)	M	Refer to ISO 3166-1 alpha-3	IDN

Seller

Parameter	Type (Size)	M/O	Description	Sample
Id	Varchar	M	Seller's Id	SELLER123
Name	Varchar	M	Seller's name	sidney
Url	Varchar	M	Seller's url	https://onlineshop/seller/sunrise
SellerIdNumber	Varchar	O	Seller's legal Id (KTP, SIM or passport number)
Email	Varchar	M	Seller's email	seller@e2pay.co.id
Address	Address	M	Seller's residential address

Request & Response Sample

Request

POST /rest/authorize Accept: application/json

{
    "PaymentId": 32,
    "MerchantCode": "[your merchantCode]",
    "Currency": "IDR",
    "RefNo": "[your trx refno]",
    "VaNumber" : "",
    "Amount": 300000,
    "InvoiceRefNo": "",
    "FirstName": "jon",
    "LastName": "tan",
    "UserEmail": "testing@testing.com",
    "UserContact": "628988363937",
    "Lang": "ENG", 
    "Remark": "abcdef",
    "ResponseURL": "https://abc.co.id/ResponseUrl",
    "BackendURL": "http://abc.co.id/BackendUrl",
    "Signature":"[your trx signature]",
    
    "PurchaseItem":
    [{
        "Id"     : 123456,
        "Name"   : "Iphone 6S",
        "Type"   : "smartphone",
        "Qty"    : 3,
        "Price"  : 1000000000,
        "Url"    : "http://merchant.com/cellphones/iphone6s_64g"
    },
    {
        "Id"     : 123456,
        "Name"   : "Iphone 6S",
        "Type"   : "smartphone",
        "Qty"    : 3,
        "Price"  : 1000000000,
        "Url"    : "http://merchant.com/cellphones/iphone6s_64g"
    }
    ],
    
    "BillingAddress":
    {
        "FirstName"     : "Customer first name",
        "LastName"      : "Customer last name",
        "Address"       : "Jalan H.R Rasuna Said",
        "City"          : "Jakarta Selatan",
        "PostalCode"    : "12950",
        "Phone"         : "628123456789",
        "CountryCode"   : "ID"
    },
    
    "ShippingAddress":
    {
        "FirstName"     : "Customer first name",
        "LastName"      : "Customer last name",
        "Address"       : "Jalan H.R Rasuna Said",
        "City"          : "Jakarta Selatan",
        "PostalCode"    : "12950",
        "Phone"         : "628123456789",
        "CountryCode"   : "ID"
    },
    
    "Sellers":
    [{
        "Id"             : "your-seller-id",
        "Name"           : "Your Seller Name",
        "Url"            : "https://your-seller-site",
        "SellerIdNumber" : "your-seller-id-number",
        "Email"          : "saller@e2pay.co.id",
        
    "Address":
    {
        "FirstName"     : "Seller first name",
        "LastName"      : "Seller last name",
        "Address"       : "Jalan H.R Rasuna Said",
        "City"          : "Jakarta Selatan",
        "PostalCode"    : "12950",
        "Phone"         : "628123456789",
        "CountryCode"   : "ID"
    }
    }],
    
    "InstallmentType" : "30_days",
    "TokenizeUser"    : false,
    "UserToken"       : "XXXXX-XXXXX"
}

Response

200 Content-Type: application/json Location: /api/payment

{
    "PaymentId"    : 7,
    "MerchantCode" : “EP00103”,
    "RefNo "       : “BL1912FDJRAMINV”,
    "Amount"       : 30000000,
    "Currency"     : “IDR”,
    "TransId"      : “P1295102400”,
    "Status"       : "SUCCESS",
    "ErrDesc"      : "",
    "Signature"    : "OSsMZwT0jH4Wib3G2o/ZTQRSYPM=",
    "CheckoutURL"  : “https://pay.e2pay.co.id/merchant-switching/singleCheckout”
}

Send Transaction Status

The following are the parameters used when getting a response from E2Pay.

Request Parameter

The following is the request with HTTPS POST from E2Pay to the merchant after the payment process is completed.

Parameter	Type (Size)	M/O	Description	Sample
PaymentId	Integer	M	Unique payment channel id	7
MerchantCode	Varchar (20)	M	The merchant code provided by e2pay and use to uniquely identify the merchant	EP00103
RefNo	Varchar (20)	M	Provided by merchant. A Unique merchant transaction number.	BL1912FDJRAMINV
Currency	Varchar (5)	M	Only Indonesian Rupiah (IDR)	IDR
TransId	Varchar (30)	M	E2Pay OPSG Transaction ID	P1295102400
AuthCode	Varchar (20)	M	Bank approval code	RB5033786857
Amount	Integer	M	Total value of the transaction	300000 (represent amount Rp 300.000)
Status	Varchar (12)	M	Payment transaction status ● Success ● Pending ● Failed	SUCCESS
ErrDesc	Varchar (128)	M	Failure message from acquirer/issuer if there is	Payment fail
UniqueId	Varchar (64)	O	Unique Customer Id from Issuer	4f8b5361e1f130902574f5e 27616b10ef373b4c05b6139 ab1145abdf411db2c
Signature	Varchar (64)	M	SHA1 signature	OSsMZwT0jH4Wib3G2o/ZT QRSYPM=

Request Sample

Content-Type: application/json Location: /api/payment

{
    "PaymentId"    : 7,
    "MerchantCode" : “EP00103”,
    "RefNo "       : “BL1912FDJRAMINV”,
    "Amount"       : 300000,
    "Currency"     : “IDR”,
    "AuthCode"     : “RB5033786857”,
    "TransId"      : “P1295102400”,
    "Status"       : "SUCCESS",
    "ErrDesc"      : "",
    “UniqueId”     :”4f8b5361e1f130902574f5e27616b10ef373b4c05b6139ab1145abdf411db2c”,
    "Signature"    : " OSsMZwT0jH4Wib3G2o/ZTQRSYPM="
}

Backend H2H Payment Status Notification

The Backend H2H payment status notification feature is server to server technology where it does not depend on the customer web browser to return payment response data to merchant website. With this feature implemented, your system still can get the payment status on the backend (asynchronously) even if the merchant normal response page fails to get status from E2Pay which may be due to a closed web browser, internet connection timeout and etc. E2pay will send a transaction status notification after the transaction is completed. If the merchant does not get the status notification, you can use the inquiry status to check the transaction status. E2pay will set a timeout of 15 seconds. It is expected that merchants can respond in less than 5 seconds. Merchant to provide Backend URL to E2Pay for H2H Payment status notification

Request & Response Parameter

Request

Parameter	Type (Size)	M/O	Description	Sample
PaymentId	Integer	M	Unique payment channel id	7
MerchantCode	Varchar (8)	M	The merchant code provided by e2pay and use to uniquely identify the merchant	EP00103
Currency	Varchar (5)	M	Indonesian Rupiah (IDR)	IDR
TransId	Varchar (20)	M	Payment Transaction Unique ID degenerated by e2pay	P1293365900
RefNo	Varchar (20)	M	Unique merchant transaction number	BL1912FDJRAMINV
Amount	Integer	M	Total value of the transaction	300000 (represent amount Rp 300.000)
AuthCode	Varchar (32)	M	Specific code from acquirer/issuer defines transaction authorization status	RB5033786857
Remark	Varchar (1000)	O	Merchant remarks (for Unique Value Like RRN for QRIS M-Bayar and VA Number for Channel Virtual Account)	179331572490 (RRN)
Status	Varchar (12)	M	Payment transaction status as follow: ● Success ● Pending ● Failed	SUCCESS
ErrDesc	Varchar (128)	M	Failure message from acquirer/issuer	Payment fail
ErrorCode	Varchar (7)	M	Error code Refer to Error Code	pge2101
UniqueId	Varchar (64)	O	Unique Customer Id from Issuer	4f8b5361e1f130902574f 5e27616b10ef373b4c05 b6139ab1145abdf411db 2c
Signature	Varchar (64)	M	SHA1 signature	OSsMZwT0jH4Wib3G2o/ ZTQRSYPM=

Request Sample

POST /api/payment Accept: application/json

{
    "PaymentId" : 7,
    "MerchantCode" : “EP00103”,
    "Currency" : "IDR",
    "TransId" : “P1293365900”,
    "RefNo " : “BL1912FDJRAMINV”,
    "Amount" : 300000,
    "AuthCode" : "RB5033786857"
    "Status" : "SUCCESS”,
    "ErrDesc" : "”,
    "ErrorCode" : “pge2101”,
    “UniqueId”:”4f8b5361e1f130902574f5e27616b10ef373b4c05b6139ab1145abdf411db2c”,
    "Signature" : "OSsMZwT0jH4Wib3G2o/ZTQRSYPM="
}

Response

Parameter	Type (Size)	M/O	Description	Sample
Status	32	M	Status code	OK

Response Sample

200 Content-Type : application/json Location : /api/payment

{
    "status": “OK”
}

H2H Payment Status Re-Query

H2H Payment Status Re-query is used by merchants to get the status of transactions that have been made.

Request & Response Parameter

Request

Parameter	Type (Size)	M/O	Description	Sample
PaymentId	Integer	M	Unique payment channel id	7
MerchantCode	Varchar (8)	M	The merchant code provided by e2pay and use to uniquely identify the merchant	EP00103
Currency	Varchar (5)	M	Indonesian Rupiah (IDR)	IDR
TransId	Varchar (20)	M	Payment Transaction Unique ID degenerated by e2pay	P1293365900
RefNo	Varchar (20)	M	Unique merchant transaction number	BL1912FDJRAMINV
Signature	Varchar (64)	M	SHA1 signature	OSsMZwT0jH4Wib3G2o/ZT QRSYPM=

Request Sample

• POST /api/paymentStatusInquiry

• Accept: application/json

{
    "PaymentId" : 7,
    "MerchantCode" : “EP00103”,
    "Currency" : "IDR",
    "TransId" : “P1293365900”,
    "RefNo" : “BL1912FDJRAMINV”,
    "Signature" : "OSsMZwT0jH4Wib3G2o/ZTQRSYPM="
}

Response

Parameter	Type (Size)	M/O	Description	Sample
MerchantCode	Varchar	M	The merchant code provided by e2pay and use to uniquely identify the merchant	EP00103
PaymentId	Integer	M	Unique payment channel id	7
RefNo	Varchar	M	Unique merchant transaction number	BL1912FDJRAMINV
Amount	Integer	M	Total value of the transaction	300000 (represent amount Rp 300.000)
Currency	Varchar	M	Indonesia Rupiah (IDR)	IDR
TransId	Varchar	M	Payment Transaction Unique ID degenerated by e2pay	T1295102400
AuthCode	Varchar	M	Specific code from acquirer/issuer defines transaction authorization status	RB5033786857
Status	Varchar	M	Payment transaction status as follow: ● Success ● Pending ● Failed	SUCCESS
ErrDesc	Varchar	M	Failure message from acquirer/issuer if there is	Payment fail
ErrorCode	Varchar	M	Error code Refer to Error Code	pge2101
UniqueId	Varchar	O	Unique Customer Id from Issuer	4f8b5361e1f130902574f5e 27616b10ef373b4c05b6139 ab1145abdf411db2c
Signature	Varchar	M	SHA1 signature	OSsMZwT0jH4Wib3G2o/ZT QRSYPM=

Response Sample

200 Content-Type : application/json Location : /api/payment

{
    "MerchantCode" : “EP00103”,
    "PaymentId" : 7,
    "RefNo " : “BL1912FDJRAMINV”,
    "Amount" : 30000000,
    "Currency" : “IDR”,
    "TransId" : “T1295102400”,
    "AuthCode" : “RB5033786857”,
    "Status" : "SUCCESS",
    "FailureMssage" : "",
    "ErrorCode" : “pge2101”,
    “UniqueId”:”4f8b5361e1f130902574f5e27616b10ef373b4c05b6139ab1145abdf411db2c”,
    "Signature” : “OSsMZwT0jH4Wib3G2o/ZTQRSYPM=”
}

Digital Signature

This signature must be included in the request of every transaction. This hash signature for a request is a hash of the following five fields:

Payment Request Signature

Parameter	Type (Size)	M/O
SecretKey	Varchar(12)	M
MerchantCode	Varchar(8)	M
RefNo	Varchar(20)	M
Amount	Integer	M
Currency	Varchar(5)	M

The fields must set in the following order: (SecretKey & MerchantCode & RefNo & Amount & Currency) Example : SecretKey = merchantkey MerchantCode = EP00005 RefNo = 19201970148AM Amount = 300000 (Note: 300000 represent amount Rp 300.000) Currency = IDR The hash would be calculated on the following string: merchantkeyEP0000519201970148AM300000IDR The resulting has signature value equals to (using SHA1 base64 hash algorithm) 01sh+jPUL2wdqCcWJTgiuNuiiTI=

Send Transaction Status Signature

Parameter	Type (Size)	M/O	Description	Sample
SecretKey	Varchar (12)	M	Provided by E2Pay. A private key that is used to make digital signature	merchantkey
MercantCode	Varchar (8)	M	The merhcant code provided by E2Pay and use to uniquely identify the merchant	EP00005
PaymentId	Integer	M	Unique payment channel id	7
RefNo	Varchar (20)	M	Unique merchant transaction number	19201970148AM
Amount	Integer	M	Total value of the transaction	300000 (represent amount Rp 300.000)
Currency	Varchar (5)	M	Indonesia Rupiah (IDR)	IDR
Status	Varchar (12)	M	Payment transaction status as follow : ● Success ● Pending ● Failed	SUCCESS

The fields must set in the following order: (SecretKey & MerchantCode & PaymentId & RefNo & Amount & Currency & Status) Example : SecretKey = merchantkey MerchantCode = EP00005 PaymentId = 7 RefNo = 19201970148AM Amount = 300000 (Note: 300000 represent amount Rp 300.000) Currency = IDR Status = SUCCESS The hash would be calculated on the following string: merchantkeyEP00005719201970148AM300000IDRSUCCESS The resulting has signature value equals to (using SHA1 base64 hash algorithm) OSsMZwT0jH4Wib3G2o/ZTQRSYPM=

Payment Re-Query Signature

Parameter	Type (Size)	M/O	Description	Sample
SecretKey	Varchar (12)	M	Provided by E2Pay. A private key that is used to make digital signature.	merchantKey
MerchantCode	Varchar (8)	M	The merchant code provided by E2Pay and use to uniquely identify the merchant	EP00005
PaymentId	Integer	M	Unique payment channel id	7
RefNo	Varchar (20)	M	Unique merchant transaction number	19201970148AM
TransId	Varchar (20)	M	Payment transaction Unique ID degenerated by E2Pay	P1293365900
Currency	Varchar (5)	M	Indonesia Rupiah (IDR)	IDR

The fields must set in the following order: (SecretKey & MerchantCode & PaymentId & RefNo & TransID & Currency) Example : SecretKey = merchantkey MerchantCode = EP00005 PaymentId = 7 RefNo = 19201970148AM TransID = P1293365900 Currency = IDR The hash would be calculated on the following string: merchantkeyEP00005719201970148AM P1293365900IDR The resulting has signature value equals to (using SHA1 base64 hash algorithm) +T/RZFXFPzdLuGp4LUfKljrb/eo=

Example

PHP

<?PHP
    function E2Pay_signature($source)
    {
        return base64_encode(hex2bin(sha1($source)));
    }
    
    function hex2bin($hexSource)
    {
        for ($i=0;$i<strlen($hexSource);$i=$i+2)
    {
            $bin .= chr(hexdec(substr($hexSource,$i,2)));
    }
        return $bin;
    }
?>

.NET

Public Shared Function ComputeHash(ByVal Key As String) As String
Dim objSHA1 As New SHA1CryptoServiceProvider()
objSHA1.ComputeHash(system.Text.Encoding.UTF8.GetBytes(Key.ToCharArray))
Dim buffer() As Byte = objSHA1.Hash
Dim HashValue As String = System.Convert.ToBase64String(buffer)
Return HashValue
End Function

JAVA

import java.security.*;
import sun.misc.BASE64Encoder;
import java.io.*;

public class test {
    public static String encrypt(String password) {

    MessageDigest md;

    try {
        md = MessageDigest.getInstance("SHA");
        md.update(password.getBytes("UTF-8")); // step 3
        byte raw[] = md.digest(); // step 4
        String hash = (new BASE64Encoder()).encode(raw); // step 5
        return hash; // step 6
    } 
        catch (NoSuchAlgorithmException e) 
    {
    } 
        catch (java.io.UnsupportedEncodingException e) 
    {}
        return null;
    }

    public static void main(String[] args) {
    System.out.println(encrypt("my password")); // string to hash is here
    }

}

JAVASCRIPT

var hexcase = 0; /* hex output format. 0 - lowercase; 1 - uppercase */
var b64pad = ""; /* base-64 pad character. "=" for strict RFC compliance */
var chrsz = 8; /* bits per input character. 8 - ASCII; 16 - Unicode */


/*
* These are the functions you'll usually want to call
* They take string arguments and return either hex or base-64 encoded strings
*/
function hex_sha1(s) { return binb2hex(core_sha1(str2binb(s), s.length * chrsz)); }
function e2paySignature(s) { return binb2b64(core_sha1(str2binb(s), s.length * chrsz)) + "="; }
function str_sha1(s) { return binb2str(core_sha1(str2binb(s), s.length * chrsz)); }
function hex_hmac_sha1(key, data) { return binb2hex(core_hmac_sha1(key, data)); }
function b64_hmac_sha1(key, data) { return binb2b64(core_hmac_sha1(key, data)); }
function str_hmac_sha1(key, data) { return binb2str(core_hmac_sha1(key, data)); }
/*
* Perform a simple self-test to see if the VM is working
*/
function sha1_vm_test() {
    return hex_sha1("abc") == "a9993e364706816aba3e25717850c26c9cd0d89d";
}

/*
* Calculate the SHA-1 of an array of big-endian words, and a bit length
*/
function core_sha1(x, len) {
    /* append padding */
    x[len >> 5] |= 0x80 << (24 - len % 32);
    x[((len + 64 >> 9) << 4) + 15] = len;
    var w = Array(80);
    var a = 1732584193;
    var b = -271733879;
    var c = -1732584194;
    var d = 271733878;
    var e = -1009589776;
    for (var i = 0; i < x.length; i += 16) {
        var olda = a;
        var oldb = b;
        var oldc = c;
        var oldd = d;
        var olde = e;
        for (var j = 0; j < 80; j++) {
            if (j < 16) w[j] = x[i + j];
            else w[j] = rol(w[j - 3] ^ w[j - 8] ^ w[j - 14] ^ w[j - 16], 1);
            var t = safe_add(safe_add(rol(a, 5), sha1_ft(j, b, c, d)),
                safe_add(safe_add(e, w[j]), sha1_kt(j)));
            e = d;
            d = c;
            c = rol(b, 30);
            b = a;
            a = t;
        }
        a = safe_add(a, olda);
        b = safe_add(b, oldb);
        c = safe_add(c, oldc);
        d = safe_add(d, oldd);
        e = safe_add(e, olde);
    }
    return Array(a, b, c, d, e);
}

/*
* Perform the appropriate triplet combination function for the current
* iteration
*/
function sha1_ft(t, b, c, d) {
    if (t < 20) return (b & c) | ((~b) & d);
    if (t < 40) return b ^ c ^ d;
    if (t < 60) return (b & c) | (b & d) | (c & d);
    return b ^ c ^ d;
}

/*
* Determine the appropriate additive constant for the current iteration
*/
function sha1_kt(t) {
    return (t < 20) ? 1518500249 : (t < 40) ? 1859775393 :
        (t < 60) ? -1894007588 : -899497514;
}

/*
* Calculate the HMAC-SHA1 of a key and some data
*/
function core_hmac_sha1(key, data) {
    var bkey = str2binb(key);
    if (bkey.length > 16) bkey = core_sha1(bkey, key.length * chrsz);
    var ipad = Array(16), opad = Array(16);
    for (var i = 0; i < 16; i++) {
        ipad[i] = bkey[i] ^ 0x36363636;
        opad[i] = bkey[i] ^ 0x5C5C5C5C;
    }
    var hash = core_sha1(ipad.concat(str2binb(data)), 512 + data.length * chrsz);
    return core_sha1(opad.concat(hash), 512 + 160);
}

/*
* Add integers, wrapping at 2^32. This uses 16-bit operations internally
* to work around bugs in some JS interpreters.
*/
function safe_add(x, y) {
    var lsw = (x & 0xFFFF) + (y & 0xFFFF);
    var msw = (x >> 16) + (y >> 16) + (lsw >> 16);
    return (msw << 16) | (lsw & 0xFFFF);
}

/*
* Bitwise rotate a 32-bit number to the left.
*/
function rol(num, cnt) {
    return (num << cnt) | (num >>> (32 - cnt));
}

/*
* Convert an 8-bit or 16-bit string to an array of big-endian words
* In 8-bit function, characters >255 have their hi-byte silently ignored.
*/
function str2binb(str) {
    var bin = Array();
    var mask = (1 << chrsz) - 1;
    for (var i = 0; i < str.length * chrsz; i += chrsz)
        bin[i >> 5] |= (str.charCodeAt(i / chrsz) & mask) << (32 - chrsz - i % 32);
    return bin;
}

/*
* Convert an array of big-endian words to a string
*/
function binb2str(bin) {
    var str = "";
    var mask = (1 << chrsz) - 1;
    for (var i = 0; i < bin.length * 32; i += chrsz)
        str += String.fromCharCode((bin[i >> 5] >>> (32 - chrsz - i % 32)) & mask);
    return str;
}

/*
* Convert an array of big-endian words to a hex string.
*/
function binb2hex(binarray) {
    var hex_tab = hexcase ? "0123456789ABCDEF" : "0123456789abcdef";
    var str = "";
    for (var i = 0; i < binarray.length * 4; i++) {
        str += hex_tab.charAt((binarray[i >> 2] >> ((3 - i % 4) * 8 + 4)) & 0xF) +
            hex_tab.charAt((binarray[i >> 2] >> ((3 - i % 4) * 8)) & 0xF);
    }
    return str;
}

/*
* Convert an array of big-endian words to a base-64 string
*/

function binb2b64(binarray) {
    var tab = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";

    var str = "";
    for (var i = 0; i < binarray.length * 4; i += 3) {
        var triplet = (((binarray[i >> 2] >> 8 * (3 - i % 4)) & 0xFF) << 16)
            | (((binarray[i + 1 >> 2] >> 8 * (3 - (i + 1) % 4)) & 0xFF) << 8)
            | ((binarray[i + 2 >> 2] >> 8 * (3 - (i + 2) % 4)) & 0xFF);
        for (var j = 0; j < 4; j++) {
            if (i * 8 + j * 6 > binarray.length * 32) str += b64pad;
            else str += tab.charAt((triplet >> 6 * (3 - j)) & 0x3F);
        }
    }
    return str;
}

1. Please upload the js file to your server.

2. Include the js file in your production payment page in order to use the signature function.

3. Concatenate the value to be hash

4. Call the following function in your javascript tag by passing in your string to hash to generate the signature..

   <script type="text/javascript" src="sha1.js"></script>

   <script language="javascript">

   document.write(e2paySignature(strToHash));

   </script>

5. Pass the signature generated to e2pay payment page in the form element call "Signature".

Error Code

Code	Message	Description
pge2101	Invalid parameters	Some parameter posted to E2Pay is invalid or empty
pge2103	Invalid merchant code	The merchant code does not exist or incorrect
pge2104	Duplicate reference member	Do not re-use Reference Number that previously payment success for transaction.
pge2203	Signature not match	Signature on request page which pass to E2Pay is incorrectly generated. Refer section 8 for more information about Signature for request page.

Payment ID

Payment Channel	Payment ID
E2Pay Checkout Page	0
Danamon	8
CIMB Rekpon	9
Mbayar Auth	18
Indomaret	19
CIMB Octo Mobile QRIS	42
Mbayar QR	21
Permata VA	22
Kredivo	23
Alfamart	24
LinkAja WCO	25
CIMB Octo Clicks	26
OVO	27
BNI VA	28
LinkAja Applink	29
LinkAja QRIS	30
DANA	32
ShopeePay QRIS	34
ShopeePay JumpApp	36
CIMB VA	37
BCA VA	38
BRI VA	40
Gopay	41
Mandiri VA	44

Additional Note for BRI Virtual Account

Minimum User Contact: 10 Character (Only Number)

Maximum User Contact: 14 Character (Only Number)