We’re doing all of our vault transactions using TransparentRedirect and everything works great except delete_customer. Each time we get the following response:

response=3&responsetext=Authentication Failed&authcode=&transactionid=0&avsresponse=&cvvresponse=&orderid=&type=&response_code=300

customer_vault=add_customer and customer_vault=update_customer all work fine using TransparentRedirect.

-Nathan @ Rocketship

Sorry for the confusion, you cannot currently delete a vault record using the transparent redirect. Our original rationale behind this was that delete would probably always be server-to-server using the Direct Post authentication. For consistencies sake, we will be adding this in the future. I’ll make sure to add this to the documentation.

Are there any other operations which are direct-post only?

The only other thing that does not operate via the TR is the query api. This shouldn’t be a problem because we don’t ever return PCI-Compliant data to you so you should always be able to do server-to-server communication.

Josh-

Any idea when delete will be a supported operation?

-Nathan

My best guess is several months, it’s a low priority change since a PCI-compliant solution already exists (deleting via direct-post authentication).