MIT Authorization
:::warning Batching and Rate limits ePay strongly recommends merchants to implement the **<a href="/api/mit-batch-authorization">MIT Batch Authorization</a>** endpoint over the single MIT authorization endpoint. Please review our <a href="/guides/rate-limits">rate limits</a> before you begin your implementation. ::: A MIT (Merchant-Initiated Transaction) is a payment initiated by the merchant, typically based on a previously established agreement, such as a subscription. You’ll receive the outcome of the payment on the `notificationUrl` you provide within the request, making it the primary way to track the result of this payment. [Webhooks](/api/create-webhook) can be used separately if you need broader, system-wide updates. Use a MIT authorization when the customer has agreed to let the merchant charge them automatically. For example, monthly subscription payments must be handled using MIT. MIT is not suitable when the customer starts the payment themselves, like clicking a “Pay Now” button. For more information about the differences between CIT (Customer-Initiated Transaction) and MIT, see our <a href="/get-started/core-concepts">Core Concepts</a> page. All MIT transactions are processed <b>asynchronously</b> and cannot run in real time. Most are completed within a few seconds, but ePay does not guarantee processing times. Some payment methods, such as Vipps MobilePay, may take several days to complete, depending on the method’s processing rules. If you want to offer your customers the ability to store their cards for faster checkout in the future, you must use CIT transactions. In such cases, you are required to provide a <code>customerId</code> when creating the payment. This ID links the stored card to the customer and enables quick-checkout functionality in future sessions. *We recommend a minimum timeout of 5 seconds.*
Authorization
BearerAuth In: header
Header Parameters
Ensures that a request can be safely retried without causing duplicate operations. Typically used for actions like payment creation and operations such as refund and void to prevent accidental double processing. - If a response is replayed due to using the same key, the response will include the header `Idempotent-Replayed: true`. - Idempotency keys are scoped by **[Key, Endpoint, HTTP Verb]**; the same key on a different endpoint or method will not replay the original response. - Responses are cached for **24 hours**. After that, the cache is cleared, so idempotency is only guaranteed within 24 hours of the initial request.
Request Body
application/json
MIT authorization request payload.
TypeScript Definitions
Use the request body type in TypeScript.
The ID of the subscription to charge
uuid"01929a94-5fce-7ccc-a7e4-7e9249133b39"Amount in minor units (e.g., 1095 = 10.95 DKK)
100The currency of the transaction. If set to null, then the same currency as the subscription was created for will be used.
^[A-Z]{3}$"DKK"The currency of the transaction. If set to null, then the same currency as the subscription was created for will be used.
^[A-Z]{3}$"DKK"The currency of the transaction. If set to null, then the same currency as the subscription was created for will be used.
^[A-Z]{3}$"DKK"The merchant reference for the payment. This is typically used for the order id.
"subscription-charge-1"If the payment should be captured instantly or not.<ul><li> `OFF` indicates that the payment should not be captured instantly.</li><li> `VOID` indicates that the payment should be captured instantly and if somehow the instant capture fails the payment is voided.</li><li> `NO_VOID` indicates that the payment should be captured instantly and if the capture fails the authorization is kept (no void is made)</li></ul>
"OFF""VOID""NO_VOID""OFF"The text to show on the cardholder bank statement. Many providers do not support long texts. Epay will cut the text to match the acquirer limitations.
1 <= length <= 39"WineBox subscription"The URL to receive the webhook with the transaction result
uri"https://example.com/epay/notification"A list of pass-through parameters that will be sent back on the notification URL
Response Body
application/json
application/json
application/json
application/json
API overview
Previous Page
MIT Batch Authorization
Rate limits Please review our rate limits before you begin your implementation. Create multiple MIT (Merchant-Initiated Transaction) authorizations in a single request. Each entry mirrors the single MIT endpoint and is processed asynchronously, supporting partial success across the batch. Each transaction is processed individually, if the transaction passes initial validation then a transaction is created for background processing and a transaction is returned. If the initial validation fails, instead an error is returned. You will receive one callback for each individual transaction. You’ll receive the outcome of each payment on the notificationUrl you provide within the request, making it the primary way to track the result of these payments. Webhooks can be used separately if you need broader, system-wide updates. Use a MIT authorization when the customer has agreed to let the merchant charge them automatically. For example, monthly subscription payments must be handled using MIT. MIT is not suitable when the customer starts the payment themselves, like clicking a “Pay Now” button. For more information about the differences between CIT (Customer-Initiated Transaction) and MIT, see our Core Concepts page. All MIT transactions are processed asynchronously and cannot run in real time. Most are completed within a few seconds, but ePay does not guarantee processing times. Some payment methods, such as Vipps MobilePay, may take several days to complete, depending on the method’s processing rules. When you match the returned transaction results back to your original batch request, the transaction order is preserved from request to response. This means you can always correlate each result to the original request item by using the array index. You can also provide a reference on each transaction in your request. When present, the same reference value is included in the returned result for that transaction, which gives you an explicit way to link results back to your own records. If you choose to rely on reference for correlation, make sure you send transaction.reference for every transaction in the batch. Otherwise, use the array index as the correlation key. If you want to offer your customers the ability to store their cards for faster checkout in the future, you must use CIT transactions. In such cases, you are required to provide a customerId when creating the payment. This ID links the stored card to the customer and enables quick-checkout functionality in future sessions. We recommend a minimum timeout of 10 seconds.