Skip to content

Encrypting Card Data

To pull money from an external card or to push to an external card, you need to register the card with connectFi first. The /transfer-to/card/register endpoint requires that the card data be encrypted. You will need to concatenate and encrypt the card PAN (full 16-digit card number), expiration date and CVV.

Here is a code snippet that performs the encryption using the standard node.js crypto module. This example uses the public key method sha256. There are many other implementations for other languages and platforms.

The input arguments required by crypto are the user's public key and the concatenated card data. The result is an encrypted string with a length of 256 bits.

Make sure to npm install --save base64url crypto fs if you do not have these dependencies already in your project.

const pan = '1234567890123456' // the 16 digit Primary Account Number for the card
const expiryYYYYMM = '202211' // the date of expiration for the card
const cvv = '123' // the cvv code on the back of the card
const base64url = require("base64url").default;
const fs = require("fs");
const crypto = require("crypto"); //node standard crypto
const myKey = fs.readFileSync("./public.key");
const rawData = `${pan}|${expiryYYYYMM}|${cvv}`; //1234567890123456|202211|123
const encryptedData = crypto.publicEncrypt({
    key: myKey,
    padding: crypto.constants.RSA_PKCS1_OAEP_PADDING,
    oaepHash: "sha256",
return base64url(encryptedData);