Langsung ke konten utama
Card payments are the foundation of online payments, accepted globally and trusted by customers worldwide. Dodo Payments supports all major card networks with built-in fraud protection and PCI compliance.

Supported Card Networks

Global Networks

Regional Networks

Configuration

Use these values in allowed_payment_method_types:
Include both credit and debit unless you have a specific reason to exclude one. Debit cards are preferred by many customers and often have lower fees.

3D Secure Authentication

3D Secure (3DS) adds an authentication layer that reduces fraud and chargebacks by verifying the cardholder’s identity.

When 3DS is Triggered

3DS is automatically triggered when:
  • Required by the card network
  • Required by regional regulations (e.g., PSD2 in Europe)
  • The transaction is flagged as high-risk

Force 3DS

You can require 3DS on all transactions:
Enabling 3DS for all transactions reduces fraud but may slightly decrease conversion as some customers abandon during authentication.

Handling Authentication Failures

When a payment needs 3DS authentication, the payment moves through intermediate states before it succeeds or fails: If authentication does not complete, the payment fails with one of these decline codes:
  • AUTHENTICATION_FAILURE — the customer could not be authenticated.
  • AUTHENTICATION_REQUIRED — authentication is required but was not performed.
  • AUTHENTICATION_TIMEOUT — the customer did not respond in time.
See the Transaction Failures reference for the recommended action for each.

At Checkout vs. on Renewal

  • At checkout (customer present): The customer is present, so the 3DS challenge is shown during checkout. If it fails, ask them to retry or use another card.
  • On subscription renewal (customer not present): The customer is not present, so a 3DS challenge cannot be displayed in real time. If a renewal requires authentication, the subscription moves to on_hold. Recover it by prompting the customer to return and update their payment method — see Handle Payment Failures and Subscription Dunning.

Saved Payment Methods

Customers can save their cards for faster future checkouts.

Tokenized

Original card numbers never stored.

PCI Compliant

Dodo handles all compliance.

Customer-Scoped

Cards tied to specific customers.

Enable Saved Cards

One-Click Purchases

Testing

Test cards only work in test mode. Never use them for production transactions.

Security & Compliance

Best Practices

Don’t restrict card types unless necessary. Customers expect their preferred card to work.
Show Visa, Mastercard, Amex logos on your checkout to build trust.
Show clear error messages. Don’t expose raw error codes to customers.
Saved payment methods significantly boost conversion for repeat purchases.

Troubleshooting

Causes: Insufficient funds, card expired, incorrect CVV, bank fraud protection.Solution: Ask customer to verify details or try a different card. Look up the specific decline Error Code and its recommended action in the Transaction Failures reference, and see Handle Payment Failures for programmatic handling.
Causes: Customer abandoned, bank system unavailable, timeout.Solution: Retry or ask customer to contact their bank. See Handling Authentication Failures for the payment states and decline codes involved.
Causes: Regional card not supported, prepaid restrictions.Solution: Customer should try a different card from a major network.

Payment Methods Overview

All supported payment methods.

Upsells & Downsells

One-click purchases with saved cards.

Testing Process

Complete testing guide.

Subscriptions

Recurring billing with cards.
Terakhir diubah pada 9 Juli 2026