Prerequisites
To integrate Apple Pay into the Yuno solution, you must complete some steps covered on this page. Follow the steps described below before configuring Apple Pay in the Yuno dashboard.
Step 1: Create a merchant identifier
In the Apple Developer dashboard, register a merchant identifier by following the steps:
- Log in to the Apple developer.
- In Certificates, Identifiers & Profiles, select Register a new identifier.
- Select Merchant IDs and click Continue.
- Add a Description to describe the merchant you are registering, such as Apple Pay Integration. For the Identifier, enter the prefix
merchant.com.y.uno
.
- Click Continue
Step 2: Create a payment processing certificate
To start, create a new directory (e.g., Downloads/ApplePayFiles
) to store the files required for generating certificates. You must save certificates and other files from Apple Pay through the process.
To create a PaymentProcessingCertificate on your MacOS, follow the steps presented below:
- Open Keychain Access on your MacOS.
- In the Keychain Access application, navigate to Keychain Access > Certificate Assistant > Request a Certificate from a Certificate Authority.
- Fill in the certificate information according to the following instructions:
- Email Address: Enter your email address.
- Name: Enter a name for the private key (e.g., John Doe ProcessingCertificate).
- CA Email Address: Leave this field empty.
- Select Saved to disk.
- Select Let me specify key pair information.
- Click Continue.
- For the key pair, use the following configurations:
- Key Size: RSA 2048 bits
- Algorithm: EC
- Save the CSR with the name
CertificateSigningRequestPaymentProcessingCertificate.certSigningRequest
in the previously created directory. - Click Continue to finish creating the CSR.
Step 3: Get the payment processing certificate
After creating the CSR, you need to get and convert the certificate. Follow the steps:
- Access the Apple Developer portal.
- Select your Merchant ID, and click Create Certificate under Apple Pay Payment Processing Certificate.
- For Will payments associated with this Merchant ID be processed exclusively in China mainland?, select No.
- Click Upload a Certificate Signing Request, and select the previously created CSR named
CertificateSigningRequestPaymentProcessingCertificate.certSigningRequest
, and click Continue. - Download the signed certificate (
apple_pay.cer
) from Apple and save it in the previously created directory (ApplePayFiles).
- Convert the certificate using the following command:
openssl x509 -inform DER -in apple_pay.cer -out apple_pay.pem
Step 4: Export the private key information
- Access the Keychain Access on your computer.
- Find the entry previously created in Step 2 (e.g., John Doe ProcessingCertificate).
- Right-click and export the private key in
.p12
format (e.g.,JohnDoeProcessingCertificate.p12
). - Set a password (e.g., Yuno2024) and save it in the previously created directory. You will have to provide your computer password to export the
.p12
file. - After exporting, we need to convert the private key. Access the directory where you saved the private key, open the terminal, and run the following command:
openssl pkcs12 -in JohnDoeProcessingCertificate.p12 -nocerts -nodes | sed -ne '/-BEGIN PRIVATE KEY-/,/-END PRIVATE KEY-/p' > ProcessingCertificatePrivateKey.pem
The private key content will be available in the ProcessingCertificatePrivateKey.pem
file.
Step 5: Register the certificate and private
You can register the private key and the certificate into the Yuno Dashboard. Follow the steps below:
- Access the Yuno Dashboard.
- Upload the contents of
ProcessingCertificatePrivateKey.pem
to the Payment processing key field. - Upload the contents of
apple_pay.pem
to the Payment processing certificate field.
The following image presents where to add the information to the Yuno Dashboard.
Step 6: Create a merchant identity certificate
To create a MerchantIdentityCertificate on your MacOS, follow the steps presented below:
- Open Keychain Access on your MacOS.
- In the Keychain Access application, navigate to Keychain Access > Certificate Assistant > Request a Certificate from a Certificate Authority.
- Fill in the certificate information according to the following instructions:
- Email Address: Enter your email address.
- Name: Enter a name for the private key (e.g., John Doe MerchantIdentityCertificate).
- CA Email Address: Leave this field empty.
- Select Saved to disk.
- Select Let me specify key pair information.
- Click Continue.
- For the key pair, use the following configurations:
- Key Size: 256 bits
- Algorithm: EC
- Save the CSR with the name
CertificateSigningRequestMerchantIdentityCertificate.certSigningRequest
in the previously created directory. - Click Continue to finish creating the CSR.
Step 7: Get the merchant identity certificate
After creating the CSR, you need to get and convert the certificate. Follow the steps:
- Access the Apple Developer portal.
- Select your Merchant ID, and click Create Certificate under Merchant Certificate.
- Click Upload a Certificate Signing Request and select the certificate created in Step 6 (
CertificateSigningRequestMerchantIdentityCertificate.certSigningRequest
). - Click Continue.
- Download the signed certificate (
merchant_id.cer
) from Apple and save it in the previously created directory. - Access the directory where you saved the certificate, open the terminal, and run the following command to convert it to the required format:
openssl x509 -inform DER -in merchant_id.cer -out merchant_id.pem
Step 8: Export the merchant private key
- Access the Keychain Access on your computer.
- Find the entry previously created in Step 6 (e.g., John Doe MerchantIdentityCertificate).
- Right-click and export the private key in
.p12
format (e.g.,JohnDoeMerchantIdentityCertificate.p12
). - Set a password (e.g., Yuno2024) and save it in the previously created directory. You will have to provide your computer password to export the
.p12
file. - After exporting, we need to convert the private key. Access the directory where you saved the private key, open the terminal, and run the following command:
openssl pkcs12 -in JohnDoeMerchantIdentityCertificate.p12 -nocerts -nodes | sed -ne '/-BEGIN PRIVATE KEY-/,/-END PRIVATE KEY-/p' > MerchantIdentityCertificatePrivateKey.pem
The private key content will be available in the MerchantIdentityCertificatePrivateKey.pem
file.
Step 9: Register the merchant identity certificates
You can register the merchant's private key and certificate in the Yuno Dashboard. Follow the steps below:
- Access the Yuno Dashboard.
- Upload the contents of
MerchantIdentityCertificatePrivateKey.pem
to the Merchant Identity key field. - Upload the contents of
merchant_id.pem
to the Merchant Identity Password field.
The following image presents where to add the information to the Yuno Dashboard.
Step 10: Register merchant domains
As the last step, you have to register the merchant domains into the Apple Dashboard. Follow the steps below to complete the process:
- Access the Apple Developer.
- Select your Merchant ID, and click Add Domain under Merchant Domains.
- Enter the domain (e.g.,
demo.y.uno
) and click Save.
After finishing this step, you can start the Yuno solution integration. You can choose between the following options to integrate Yuno into your system:
Updated about 1 month ago