Card payment processing through Trust Payments hosted Payment Pages. The cardholder enters card details on a Trust-hosted page, so no PAN, expiry, or CVV data passes through the Mozarto API.Operations: Pay-In ✓ | Pay-Out - | Webhook ✓ Processing: Asynchronous - redirect the user to a hosted page, then receive settlement by webhook Payment type: Card (Visa, Mastercard), Apple Pay, and Google Pay, depending on what the site reference has enabled. All are collected on the Trust hosted Payment Pages.Fields marked with * are required.
The cashier call does not charge the card directly. It creates a transaction and returns a paymentUrl. Redirect the cardholder to that URL to complete payment on the Trust hosted page.
Your reference for the order, echoed back in the response and webhook
firstName
string
Cardholder first name, prefilled on the hosted page
lastName
string
Cardholder last name, prefilled on the hosted page
email
string
Cardholder email, prefilled on the hosted page
phone
string
Cardholder phone number, prefilled on the hosted page
countryCode
string
ISO 3166-1 alpha-2 country code, prefilled on the hosted page
address
object
Billing address prefill. See address fields below
hppSuccessUrl
string
URL the cardholder returns to after a successful payment. Overrides the configured siteUrl
hppFailureUrl
string
URL the cardholder returns to after a failed or cancelled payment. Overrides the configured siteUrl
Billing fields are optional. When supplied, they are forwarded to Trust to prefill the hosted page; they do not change whether the request is accepted.
Do not send card data (pan, expiry, cvv) to this endpoint. The cardholder enters card details on the Trust hosted Payment Pages.
Single-use URL to redirect the cardholder to. Expires five minutes after it is issued
transactionId
string
Mozarto transaction identifier. Use it to match the settlement webhook
merchantReference
string
Your reference from the request, or an empty string if none was sent
amount
number
The transaction baseamount
transaction_status
string
Always "Pending" at this point. The final outcome arrives by webhook
Redirect the cardholder to paymentUrl. It serves a self-submitting form that posts to the Trust hosted Payment Pages, where the card details are entered. The paymentUrl is single-use and expires five minutes after it is issued.
Once Trust settles the transaction, Mozarto sends a POST to your configured webhookUrl. The payload is the same shape for approvals and declines; read transaction_status for the outcome.
{"transaction_id":"64a1f2b3c4d5e6f7a8b9c0d1","psp_transaction_id":"<trust-transaction-reference>","user_id":"64a1f2b3c4d5e6f7a8b9c0d2","status":"SUCCESS","transaction_status":"Approved","message":"Transaction approved and successfully processed","amount":100,"merchantReference":"ORDER-REF-001"}
Field
Description
transaction_id
Mozarto transaction identifier returned by the Pay-In call
psp_transaction_id
Trust transaction reference
user_id
The userId from the Pay-In request
status
Raw Mozarto status (SUCCESS, FAILED, or CANCELLED)
transaction_status
Normalized outcome - Approved, Failed, or Cancelled. Use this for business logic
amount
Settled amount
merchantReference
Your reference from the Pay-In request
The request carries an Authorization header with a Mozarto-generated signature token. Verify it before applying any balance or state change. See Webhook setup.
The Pay-In call returns an error when the request cannot be set up. Transaction declines are reported later through the settlement webhook with transaction_status: "Failed", not on this call.
HTTP status
Response
When
400
message: "PSP Configuration not found. Please check you psp Configuration"
Trust sitereference is missing from the back office configuration
