The type of the encrypted value.

The category or specific nature of the encrypted value.

The date and time when the value was encrypted. This is a Unix timestamp in milliseconds. This field is currently only populated for values encrypted with a Data Role.

The data role of the encrypted value.

A unique identifier for the encrypted value.

Further metadata about the encrypted value. Returns different information based on the category of the data.

An array of Relays belonging to the App.

The domain in front of which you would like to configure a Relay

A collection of route configurations for the Relay.

Whether or not empty strings should be encrypted. Defaults to true.

The type of authentication required for the Relay.

The unique identifier for the Relay.

The domain in front of which the Relay should be configured.

The Evervault managed domain to which requests to be relayed to the destination domain should be sent.

A colletion of route configurations for the Relay.

The type of authentication required for the Relay. If this is null then the Relay is unauthenticated.

Whether or not empty strings should be encrypted.

The unique identifier for the app to which the Relay belongs.

The exact time, in epoch milliseconds, when this Relay was created.

The exact time, in epoch milliseconds, when this Relay was updated.

The unique identifier for the Relay.

The domain in front of which the Relay should be configured.

The Evervault managed domain to which requests to be relayed to the destination domain should be sent.

A colletion of route configurations for the Relay.

The type of authentication required for the Relay. If this is null then the Relay is unauthenticated.

Whether or not empty strings should be encrypted.

The unique identifier for the app to which the Relay belongs.

The exact time, in epoch milliseconds, when this Relay was created.

The exact time, in epoch milliseconds, when this Relay was updated.

A collection of route configurations for the Relay. Any existing route configurations will be replaced with the new configurations.

Whether or not empty strings should be encrypted.

The type of authentication required for the Relay.

The unique identifier for the Relay.

The domain in front of which the Relay should be configured.

The Evervault managed domain to which requests to be relayed to the destination domain should be sent.

A colletion of route configurations for the Relay.

The type of authentication required for the Relay. If this is null then the Relay is unauthenticated.

Whether or not empty strings should be encrypted.

The unique identifier for the app to which the Relay belongs.

The exact time, in epoch milliseconds, when this Relay was created.

The exact time, in epoch milliseconds, when this Relay was updated.

The customer managed domain to which requests to be relayed to your domain should be sent.

The unique identifier for the custom domain.

The customer managed domain to which requests to be relayed to your domain should be sent.

The ID of the Relay with which this custom domain is associated.

The status of the domains DNS verification.

Validation TXT record to be added on the _ev-custom-relay subdomain of your custom domain

The exact time, in epoch milliseconds, when this custom domain was created.

The exact time, in epoch milliseconds, when this custom domain was last updated.

The unique identifier for the custom domain.

The customer managed domain to which requests to be relayed to your domain should be sent.

The ID of the Relay with which this custom domain is associated.

The status of the domains DNS verification.

Validation TXT record to be added on the _ev-custom-relay subdomain of your custom domain

The exact time, in epoch milliseconds, when this custom domain was created.

The exact time, in epoch milliseconds, when this custom domain was last updated.

The data payload that the Function will use during its execution. Any encrypted values will be decrypted before being passed to the function.

If you want your Function to run asynchronously and notify a callback URL, this can be set to true and the API will queue your Function run and return a 202 response code.

A unique identifier representing this specific Function execution instance.

The outcome of the Function execution. A 'success' denotes successful execution, whereas a 'failure' indicates that the Function encountered an error.

This field represents the output returned by the Function. This is provided only when the Function execution status is 'success'.

This field details any error that occurred during Function execution. This is present only if the status is 'failure'.

The exact time, in epoch milliseconds, when this Function execution was triggered.

The action that the token should permit

The payload that the token must be used with

The expiry of the token in milliseconds format. Must be less than 10 minutes from now.

The id of the token

The token

The expiry of the token in unix millis format

The creation time of the token in unix millis format

The official name of the Merchant as recognized in transactions and communications. This name is used for display purposes and may be the company's trade name or a derived nickname.

The official website URL of the Merchant.

The 4-digit Merchant Category Code (MCC).

The business details of the Merchant.

The Merchant's Network Tokens configuration. This field should only be populated if the Merchant has already been enrolled in one of the Card Network programs and can use an existing Token Requestor ID (TRID).

A unique identifier assigned to each Merchant.

The official name of the Merchant as recognized in transactions and communications. This name is used for display purposes and may be the company's trade name or a derived nickname.

The official website URL of the Merchant.

The business details of the Merchant.

The 4-digit Merchant Category Code (MCC).

The Merchant's Network Token configuration.

A boolean value indicating whether the Merchant is in live mode (true) or in test mode (false).

The exact time, in epoch milliseconds, when this Merchant was created.

The exact time, in epoch milliseconds, when this Merchant was last updated.

A unique identifier assigned to each Merchant.

The official name of the Merchant as recognized in transactions and communications. This name is used for display purposes and may be the company's trade name or a derived nickname.

The official website URL of the Merchant.

The business details of the Merchant.

The 4-digit Merchant Category Code (MCC).

The Merchant's Network Token configuration.

A boolean value indicating whether the Merchant is in live mode (true) or in test mode (false).

The exact time, in epoch milliseconds, when this Merchant was created.

The exact time, in epoch milliseconds, when this Merchant was last updated.

The unique identifier of the Merchant previously created using the Evervault API. It denotes the Merchant to which the Network Token should be associated with.

A unique identifier representing a specific Network Token.

The unique number of the Network Token.

The expiry details of the Network Token.

The details of the underlying tokenized card.

The identifier of the Token Requestor (TRID) that requested the Network Token.

The Token Service Provider (TSP) that issued the Network Token.

The unique identifier of the Payment Account associated with this Network Token.

The status of the Network Token. Active means the Network Token is valid and can be used for payments.

The unique identifier of the Merchant associated with this Network Token.

A boolean value indicating whether the Network Token is in live mode (true) or in test mode (false).

The exact time, in epoch milliseconds, when this Network Token was created.

The exact time, in epoch milliseconds, when this Network Token was last updated.

A unique identifier representing a specific Network Token.

The unique number of the Network Token.

The expiry details of the Network Token.

The details of the underlying tokenized card.

The identifier of the Token Requestor (TRID) that requested the Network Token.

The Token Service Provider (TSP) that issued the Network Token.

The unique identifier of the Payment Account associated with this Network Token.

The status of the Network Token. Active means the Network Token is valid and can be used for payments.

The unique identifier of the Merchant associated with this Network Token.

A boolean value indicating whether the Network Token is in live mode (true) or in test mode (false).

The exact time, in epoch milliseconds, when this Network Token was created.

The exact time, in epoch milliseconds, when this Network Token was last updated.

A unique identifier representing a specific Network Token Cryptogram.

The value of the Network Token Cryptogram. This is the value that is used embedded in the Authorization request.

A boolean value indicating whether the Network Token Cryptogram is in live mode (true) or in test mode (false).

The exact time, in epoch milliseconds, when this Network Token Cryptogram was created.

The card number. This should be a valid Evervault encrypted card number or a valid plaintext card number.

The Evervault encrypted card number. This can be decrypted using Relay decryption or using a function.

The first 6 or 8 digits of the card number.

The last 4 digits of the card number.

The card brand associated with the payment card.

The card funding type specifies the method by which transactions are financed. debit refers to cards that draw funds directly from a linked bank account, typically used for immediate payment. credit indicates cards that provide a line of credit from which users can borrow funds for transactions, to be repaid later under the terms of the credit agreement. prepaid are cards loaded with a set amount of funds in advance and can be used until the balance is depleted. deferred-debit cards combine aspects of debit and credit cards, allowing transactions to be debited from a linked account at a later date, usually monthly. charge cards require full payment of the balance at the end of each billing cycle, but do not have a pre-set spending limit.

The card segment indicates the primary market or usage category of the card. Each segment caters to specific needs and functionalities: consumer for personal use cards, offering rewards and benefits for everyday purchases; commercial for cards used by large organizations or corporations with features like higher credit limits and expense tracking; business for small to medium-sized business use, providing simpler accounting integration and business spending rewards; government for cards used by government entities, complying with governmental financial regulations and controls; payouts for cards designed to disburse payments like payroll or cashback; and all for general-purpose cards not confined to a specific segment.

The country where the card was issued in lowercase ISO 3166-1 alpha-2 format.

The currency of the card in lowercase ISO 4217 format.

The name of the card issuer.

The current status of the card:

• active -- The card is active and can be used for transactions.
• replaced -- The card has been replaced by another card (e.g. expired, lost or stolen).
• closed -- The card account has been closed and can no longer be used for transactions.

The ID of the replacement card. This field is only present if the card has been replaced.

The status of Card Account Updater on this card.

The Unix timestamp of when the card was created.

The Unix timestamp of when the card was last updated.

The Evervault encrypted card number. This can be decrypted using Relay decryption or using a function.

The first 6 or 8 digits of the card number.

The last 4 digits of the card number.

The card brand associated with the payment card.

The card funding type specifies the method by which transactions are financed. debit refers to cards that draw funds directly from a linked bank account, typically used for immediate payment. credit indicates cards that provide a line of credit from which users can borrow funds for transactions, to be repaid later under the terms of the credit agreement. prepaid are cards loaded with a set amount of funds in advance and can be used until the balance is depleted. deferred-debit cards combine aspects of debit and credit cards, allowing transactions to be debited from a linked account at a later date, usually monthly. charge cards require full payment of the balance at the end of each billing cycle, but do not have a pre-set spending limit.

The card segment indicates the primary market or usage category of the card. Each segment caters to specific needs and functionalities: consumer for personal use cards, offering rewards and benefits for everyday purchases; commercial for cards used by large organizations or corporations with features like higher credit limits and expense tracking; business for small to medium-sized business use, providing simpler accounting integration and business spending rewards; government for cards used by government entities, complying with governmental financial regulations and controls; payouts for cards designed to disburse payments like payroll or cashback; and all for general-purpose cards not confined to a specific segment.

The country where the card was issued in lowercase ISO 3166-1 alpha-2 format.

The currency of the card in lowercase ISO 4217 format.

The name of the card issuer.

The current status of the card:

• active -- The card is active and can be used for transactions.
• replaced -- The card has been replaced by another card (e.g. expired, lost or stolen).
• closed -- The card account has been closed and can no longer be used for transactions.

The ID of the replacement card. This field is only present if the card has been replaced.

The status of Card Account Updater on this card.

The Unix timestamp of when the card was created.

The Unix timestamp of when the card was last updated.

Indicates whether there are more Webhook Endpoints to retrieve.

The URL of the Webhook Endpoint.

A list of Events that the Webhook Endpoint is subscribed to. The following events are supported:

• payments.merchant.updated: A Merchant was updated
• payments.network-token.updated: A Network Token was updated
• function.run.completed: An asynchronous Function Run was completed

A unique identifier representing a specific Webhook Endpoint.

The URL of the Webhook Endpoint.

A list of Events that the Webhook Endpoint is subscribed to. The Webhook will receive a POST request when any of these Events occur.

The exact time, in epoch milliseconds, when this Webhook Endpoint was created.

The exact time, in epoch milliseconds, when this Webhook Endpoint was last updated.

A unique identifier representing a specific Webhook Endpoint.

The URL of the Webhook Endpoint.

A list of Events that the Webhook Endpoint is subscribed to. The Webhook will receive a POST request when any of these Events occur.

The exact time, in epoch milliseconds, when this Webhook Endpoint was created.

The exact time, in epoch milliseconds, when this Webhook Endpoint was last updated.

A list of Events that the Webhook Endpoint is subscribed to. The following events are supported:

• *: All Events
• payments.merchant.updated: A Merchant was updated
• payments.network-token.updated: A Network Token was updated
• function.run.completed: An asynchronous Function Run was completed

A unique identifier representing a specific Webhook Endpoint.

The URL of the Webhook Endpoint.

A list of Events that the Webhook Endpoint is subscribed to. The Webhook will receive a POST request when any of these Events occur.

The exact time, in epoch milliseconds, when this Webhook Endpoint was created.

The exact time, in epoch milliseconds, when this Webhook Endpoint was last updated.