{"_id":"59dfa5868b51880010b74b06","category":{"_id":"59dfa5828b51880010b74ac2","version":"59dfa5828b51880010b74ab6","project":"57336fd5a6a9c40e00e13a0b","__v":0,"sync":{"url":"","isSync":false},"reference":false,"createdAt":"2015-10-15T16:20:51.519Z","from_sync":false,"order":11,"slug":"resources","title":"JSON Objects"},"project":"57336fd5a6a9c40e00e13a0b","user":"560d5913af97231900938124","parentDoc":null,"version":{"_id":"59dfa5828b51880010b74ab6","project":"57336fd5a6a9c40e00e13a0b","__v":1,"createdAt":"2017-10-12T17:25:22.850Z","releaseDate":"2017-10-12T17:25:22.850Z","categories":["59dfa5828b51880010b74ab7","59dfa5828b51880010b74ab8","59dfa5828b51880010b74ab9","59dfa5828b51880010b74aba","59dfa5828b51880010b74abb","59dfa5828b51880010b74abc","59dfa5828b51880010b74abd","59dfa5828b51880010b74abe","59dfa5828b51880010b74abf","59dfa5828b51880010b74ac0","59dfa5828b51880010b74ac1","59dfa5828b51880010b74ac2","59dfa5828b51880010b74ac3","59dfa5828b51880010b74ac4","59dfa5828b51880010b74ac5"],"is_deprecated":false,"is_hidden":false,"is_beta":false,"is_stable":false,"codename":"3.23 Release","version_clean":"8976.0.0-JSON","version":"8976-JSON"},"__v":0,"updates":[],"next":{"pages":[],"description":""},"createdAt":"2015-12-29T15:38:03.931Z","link_external":false,"link_url":"","githubsync":"","sync_unique":"","hidden":false,"api":{"results":{"codes":[]},"settings":"","auth":"required","params":[],"url":""},"isReference":false,"order":13,"body":"###Request\nN/A\n\n###Response\nThe `fraudEvents` object is returned in the [15011 FRAUD_DETECTED](doc:fraud-errors) error, which BlueSnap sends when a transaction triggers fraud rules. It includes these properties:\n[block:parameters]\n{\n  \"data\": {\n    \"h-0\": \"Property Name\",\n    \"h-1\": \"Type\",\n    \"h-2\": \"Description\",\n    \"0-0\": \"`fraudReferenceId`\",\n    \"0-2\": \"Reference ID for the BlueSnap fraud check, in case further investigation or information is required.\",\n    \"0-1\": \"*string*\",\n    \"1-0\": \"`fraudEvent`\",\n    \"1-1\": \"*array*\",\n    \"1-2\": \"Array containing one or more  <a href=\\\"#fraudevent\\\">fraud event</a> objects (one for each fraud rule triggered by the transaction).\"\n  },\n  \"cols\": 3,\n  \"rows\": 2\n}\n[/block]\n<a name=\"fraudevent\"></a>Each **fraud event** object within the `fraudEvent` array includes the properties described below.\n[block:parameters]\n{\n  \"data\": {\n    \"h-0\": \"Property Name\",\n    \"h-1\": \"Type\",\n    \"h-2\": \"Description\",\n    \"h-3\": \"Values\",\n    \"0-0\": \"`fraudEventCode`\",\n    \"1-0\": \"`fraudEventDecision`\",\n    \"2-0\": \"`fraudEventExpression`\",\n    \"0-1\": \"*string*\",\n    \"1-1\": \"*string*\",\n    \"2-1\": \"*string*\",\n    \"0-2\": \"The fraud rule or threshold that was triggered by the order.\\nValues:\\n\\n  * **AVS_ADDR_MISMATCH**: AVS address mismatch\\n  * **AVS_NAME_MISMATCH**:\\tAVS name mismatch\\n  * **AVS_ZIP_MISMATCH**: AVS zip code mismatch\\n  * **CVV_MISMATCH**: CVV mismatch\\n  * **ERROR_AVS_ADDR_NOT_VERIFIED**: AVS address not verified\\n  * **ERROR_AVS_ZIP_NOT_VERIFIED**: AVS zip not verified\\n  * **ERROR_CVV_NOT_VERIFIED**: CVV not verified\\n  * **blacklistIpCountryDecline**: Device IP country is on the Device IP Country Decline List\\n  * **blacklistNetworkTypeDecline**: Network type used by the shopper’s device is on the Network Type Decline List\\n  * **blacklistPaymentCountryDecline**: BIN country of the credit card is on the Payment Country Decline List\\n  * **blacklistShippingCountryDecline**: Shipping address country is on the Shipping Address Country Decline List \\n  * **cardPtokVelocityDecline**: Number of transactions with the same credit card in the last hour exceeds the Credit Card 1 Hour Count Decline Threshold\\n  * **deviceFingerprintVelocityDecline**: Number of transactions with the same device fingerprint in the last hour exceeds the Device Fingerprint 1 Hour Count Decline Threshold\\n  * **deviceIpVelocityDecline**: Number of transactions with the same device IP in the last hour exceeds the Device IP 1 Hour Count Decline Threshold\\n  * **deviceToBillingAddressDecline**: Distance from the device IP to the billing address exceeds the Device IP to Billing Distance Decline Threshold\\n  * **emailVelocityDecline**: Number of transactions with the same billing email address in the last 24 hours exceeds the Email Address 24 Hour Count Decline Threshold\\n  * **highRiskDecline**: Order risk score exceeds the High Fraud Risk Decline Filter\\n  * **orderTotalDecline**: Total amount (in USD) for the order exceeds the Total Amount Decline Threshold\",\n    \"1-2\": \"Action taken based on the fraud event code.\\nValues:\\n  * **D**: Decline\\n  * **R**: Review\",\n    \"1-3\": \"\",\n    \"2-2\": \"Explains why the rule/threshold triggered.\"\n  },\n  \"cols\": 3,\n  \"rows\": 3\n}\n[/block]","excerpt":"Contains information regarding fraud errors","slug":"fraud-event","type":"basic","title":"fraudEvents"}

fraudEvents

Contains information regarding fraud errors

Request

N/A

Response

The fraudEvents object is returned in the 15011 FRAUD_DETECTED error, which BlueSnap sends when a transaction triggers fraud rules. It includes these properties:

Property Name
Type
Description

fraudReferenceId

string

Reference ID for the BlueSnap fraud check, in case further investigation or information is required.

fraudEvent

array

Array containing one or more fraud event objects (one for each fraud rule triggered by the transaction).

Each fraud event object within the fraudEvent array includes the properties described below.

Property Name
Type
Description

fraudEventCode

string

The fraud rule or threshold that was triggered by the order.
Values:

  • AVS_ADDR_MISMATCH: AVS address mismatch
  • AVS_NAME_MISMATCH: AVS name mismatch
  • AVS_ZIP_MISMATCH: AVS zip code mismatch
  • CVV_MISMATCH: CVV mismatch
  • ERROR_AVS_ADDR_NOT_VERIFIED: AVS address not verified
  • ERROR_AVS_ZIP_NOT_VERIFIED: AVS zip not verified
  • ERROR_CVV_NOT_VERIFIED: CVV not verified
  • blacklistIpCountryDecline: Device IP country is on the Device IP Country Decline List
  • blacklistNetworkTypeDecline: Network type used by the shopper’s device is on the Network Type Decline List
  • blacklistPaymentCountryDecline: BIN country of the credit card is on the Payment Country Decline List
  • blacklistShippingCountryDecline: Shipping address country is on the Shipping Address Country Decline List
  • cardPtokVelocityDecline: Number of transactions with the same credit card in the last hour exceeds the Credit Card 1 Hour Count Decline Threshold
  • deviceFingerprintVelocityDecline: Number of transactions with the same device fingerprint in the last hour exceeds the Device Fingerprint 1 Hour Count Decline Threshold
  • deviceIpVelocityDecline: Number of transactions with the same device IP in the last hour exceeds the Device IP 1 Hour Count Decline Threshold
  • deviceToBillingAddressDecline: Distance from the device IP to the billing address exceeds the Device IP to Billing Distance Decline Threshold
  • emailVelocityDecline: Number of transactions with the same billing email address in the last 24 hours exceeds the Email Address 24 Hour Count Decline Threshold
  • highRiskDecline: Order risk score exceeds the High Fraud Risk Decline Filter
  • orderTotalDecline: Total amount (in USD) for the order exceeds the Total Amount Decline Threshold

fraudEventDecision

string

Action taken based on the fraud event code.
Values:

  • D: Decline
  • R: Review

fraudEventExpression

string

Explains why the rule/threshold triggered.