1. Select Access Mode
Before accessing, merchants/institutions should first determine the access mode applicable to the registration areas of their companies. WeChat Cross-Border Pay currently provides three access modes: direct connection mode, institutional mode, and common service provider mode.
1.1. Direct connection mode
Merchants are directly connected to the WeChat Cross-Border Pay interface, and WeChat Pay settles the transaction amount with the merchants. Currently this access mode is only available in Hong Kong and Britain. For specific access procedure and qualification requirements, refer to the direct connection mode onboarding instructions.
1.2. Institutional Mode
In the institutional mode, the acquiring institution connects to the WeChat Pay API and provides the secondary encapsulation interface for the merchants. WeChat Pay settles the transaction amount with the acquiring institution, and the acquiring institution settles the transaction amount with the merchants. At present, this access mode can be used in all areas where WeChat Cross-Border Pay is available, and it is also the main connection method of WeChat Cross-Border Pay. For specific access procedure and qualification requirements, refer to the institutional mode onboarding instructions. If you would like to know the acquiring institutions in your area that has cooperated with WeChat Pay, click to view it.
1.3. Common service provider mode
In the common service provider mode, the common service provider connects to the WeChat Pay API and provides the secondary encapsulation interface for the merchant. The common service provider processes the transaction information flow only, and does not touch the cash flow. The transaction amount will be settled directly with the merchant. Currently this access mode is only available in Hong Kong. For specific access procedure and qualification requirements, refer to the common service provider mode onboarding instructions.
Select the access mode according to your actual situation and your country or region.
2. Application Guidelines
1Applying for merchant ID mch_id
When onboarded in WeChat Pay, all institutions or direct merchants need to apply for a collection account first, which is mch_id. The application address is as follows: Merchant ID Application Guidelines
After a merchant ID is applied for successfully, WeChat Pay will send a notification email to the contact email box filled in by the institution, including the mch_id successfully applied for and login account password. Please keep them properly. An example is as follows:
After a merchant ID is applied for successfully, WeChat Pay will send a notification email to the contact email box filled in by the institution, including the mch_id successfully applied for and login account password. Please keep them properly. An example is as follows:
Tips: One mch_id can only correspond to one settlement currency. If you need to use multiple currencies for collection, you need to apply for the corresponding number of mch_id.
2Applying for APPID
As all the product systems of WeChat Pay are built on the WeChat social system, when direct merchants or institutions access WeChat Cross-Border Pay, a WeChat social carrier is also needed, and its corresponding ID is APPID.
At present, the social carrier of institutions can only be an official account. Please apply for an official account through the following link: Official Account Application Guidelines
After an official account has been applied for successfully, the institution can log in to the official account platform to obtain the corresponding APPID. The specific directory for viewing is Development > Basic Configuration > Official Account development information, as shown in the figure below. Usually, one institution only needs to apply for one official account.
Tips: The application for official account APPID is independent of the application for mch_id, and they can be applied for at the same time.
3Binding MCHID and APPID
After both APPID and mch_id have been applied for, the binding relationship between them needs to be established.
The institution can log in to the merchant platform and select Dev Configuration on the top tab to enter the binding operation page. If the platform prompts that the binding has failed, contact the corresponding BD or assistant to complete the binding.
In the institutional mode, multiple mch_id can be bound under one APPID, but one mch_id can only be bound to one APPID.
An example is provided below for easy understanding:
APPID is a social carrier, which can be imagined as an individual entity.
Then, mch_id is the collection account, which can be imagined as a bank account number.
One individual entity can have multiple bank accounts, but one bank account can only be owned by one individual entity.
The institution can log in to the merchant platform and select Dev Configuration on the top tab to enter the binding operation page. If the platform prompts that the binding has failed, contact the corresponding BD or assistant to complete the binding.
In the institutional mode, multiple mch_id can be bound under one APPID, but one mch_id can only be bound to one APPID.
An example is provided below for easy understanding:
APPID is a social carrier, which can be imagined as an individual entity.
Then, mch_id is the collection account, which can be imagined as a bank account number.
One individual entity can have multiple bank accounts, but one bank account can only be owned by one individual entity.
4Sub-merchant onboarding
After the above steps are completed, the sub-merchant onboarding permission will be opened to the institution.
Institutions can log in to the merchant platform and enter the Institution interface to complete the onboarding of sub-merchants, or use the onboarded sub-merchant API to complete the onboarding.
5Confirm that the direct merchant/sub-merchant possesses the following qualifications
The following three conditions must be met at the same time:
1.The merchant, institution, and common service provider have no violation records.
2.The direct merchant/sub-merchant does not fall into the following industries: Digital Goods: Games (MCC:5816), Large Digital Goods Merchant (MCC:5818), Computer programming, data processing and integrated systems design services (MCC:7372)
3.The direct merchant/sub-merchant does not belong to the following countries: Indonesia, Cambodia, and Laos.
6Fill in the H5 payment application information, sign the agreement, and submit the information for review.
Log in to the overseas merchant platform, go to the H5 application page, find the direct merchant/sub-merchant for applying for H5 payment permission, fill in and submit the qualification information according to the page guidelines, and sign the H5 payment commitment letter with WeChat Pay.
Direct connection mode
a) Log in to the overseas merchant platform, and select Account Setting > Products Application > H5 Payment to enter the H5 payment application page (currently merchants in Indonesia, Cambodia, or Laos cannot apply for H5 payment ); click Apply to initiate the H5 payment permission application for the merchant.
b) Submit the corresponding qualification information according to the prompt on the page (the qualification information to be submitted for the merchant may vary with the industry. E-commerce merchants are taken as an example on the following page).
c) After filling in the information, click Confirm and the H5 Payment Commitment Letter will pop up. Read and sign the commitment letter, and click Submit to submit the H5 payment application.
Institutional mode/common service provider mode
a) Log in to the overseas merchant platform, and select Institution > H5 Payment Application for the institutional mode or select Service Provider > Products Application > H5 Payment in the common service provider mode to enter the H5 payment application page (currently merchants in Indonesia, Cambodia, or Laos cannot apply for H5 payment).
b) On the H5 payment permission status list page, you can search for a sub-merchant who plans to apply for H5 Payment permission. Click Apply to initiate the H5 payment permission application for the sub-merchant.
c) Submit the corresponding qualification information according to the prompt on the page (the qualification information to be submitted for the merchant may vary with the industry. E-commerce merchants are taken as an example on the following page).
d) After filling in the information, click Confirm and the H5 Payment Commitment Letter will pop up. Read and sign the commitment letter, and click Submit to submit the H5 payment application.
7After the permission is approved, the system automatically enables the H5 payment permission for the sub-merchant, and automatically configures the H5 payment authorization domain name filled in at the time of submitting the application.
8Merchants can also modify or configure new H5 payment domain names.
• Direct connection mode
After the permission is successfully applied for direct merchants, to configure new/modify/delete an H5 payment domain name, select Account Setting > Products Application > H5 Payment > Config or Dev Configuration to perform the corresponding operation.
• Institutional mode/common service provider mode
After successfully applying for the H5 permission for a sub-merchant, if the institution/common service provider wants to:
a) To configure new/modify/delete an H5 payment domain name for the sub-merchant, select Institution > Merchant > Sub-Merchant, select the sub-merchant, and click Config to add, delete, or modify the H5 payment domain name (only effective for the sub-merchant).
b) To configure new/modify/delete an H5 payment domain name for itself, it can enter the Dev Configuration menu to add, delete, or modify an H5 payment authorized domain (effective for all sub-merchants).
8finish
3. Configure Development Parameters
3.1. Configuring API Key v3
WeChat Pay API Key v3 is used to encrypt and decrypt sensitive information in interface transmission. For specific encryption and decryption rules, refer to Encrypting and Decrypting Sensitive Information.
Follow the steps below to configure API Key v3:
1
Log in to WeChat Merchant Platform, select Account Settings > API Security >Set APIv3 Secret, and click Set APIv3 secret.
2
Enter API Key v3, which consists 32 characters, including numbers and upper and lower case letters. Click Confirm to go to the next step.
3
Enter set pin code to get the SMS verification code. Enter the verification code and click OK to complete the settings.
4 Click Confirm to exit the dialog box.
5Finish
3.2. Downloading and configuring the merchant certificate
The merchant certificate is used for signing and signature verification during content transmission by institutions/direct merchants.
Institutions can log in to WeChat Merchant Platform, and select Account Settings > API Security > API Certificate to download the certificate.
Follow the steps below to download the certificate:
1At the end of 2018, the newly onboarded institutions and merchants of WeChat Pay started to use the certificates issued by the CA. Click Apply on the certificate application page.
2Click the Download button in the pop-up window to download the certificate tool.
3Install the certificate tool and open it. Select the path where the certificate needs to be stored and click Request Certificate.
4
Select Apply API Certificate > Observer Certificate Signing Request in the pop-up window on the merchant platform,
and click click here to copy the merchant information.
5In the certificate tool, paste the copied merchant information and click Next.
6Get the request string.
Step 1In the certificate tool Copy request string, click Copy to copy the request string.
Step 2Select Apply API Certificate > Obtain Certificate Signing Request in the pop-up window on the merchant platform, paste the request string into the input box.
Step 3Select Apply API Certificate > Obtain Certificate Signing Request in the pop-up window on the merchant platform, enter the SMS verification code and login password.
Step 4Select Apply API Certificate > Obtain Certificate Signing Request in the pop-up window on the merchant platform, click Next to enter the Get certificate page.
7Getting the certificate string
Step 1Select Apply API Certificate > Get Certificate in the pop-up window on the merchant platform, click Copy to get the certificate string.
Step 2In the certificate tool Copy request string, click Next to enter the Paste certificate string page.
Step 3In the certificate tool Paste certificate string, click Paste to paste the certificate string copied from the pop-up window on the platform.
Step 4In the certificate tool Paste certificate string, click Next to generate a certificate.
8 In the certificate tool Generate certificate, this page indicates that the certificate has been applied for successfully.
Click View folder to open the path where the certificate is saved to verify the certificate.
Click View folder to open the path where the certificate is saved to verify the certificate.
9Finish
3.3 Configure an H5 payment authorized domain name
The H5 payment product capability completes the payment by pulling up the WeChat client from the browser outside the WeChat client. The domain name of the page where the WeChat client is pulled up must be configured and authorized on the WeChat Pay Merchant Platform, otherwise the H5 payment cannot be pulled up.
Operating instructions
• In the case of a direct merchant, log in to the WeChat Pay Merchant Platform, enter the Development Configuration menu, and configure the H5 Payment Authorized Domain in the Payment Authorization Config
• In the institutional mode, if the webpages used by the sub-merchants under the institution to pull up the WeChat client cash register belong to the same directory, the payment directory can be configured under the institution’s merchant ID, and it will be effective and available to all sub-merchants. Then, log in to the WeChat Pay Merchant Platform and enter the Development Configuration menu, configure the H5 Payment Authorized Domain in the Payment Authorization Config The specific page is shown below:
• In the institutional mode, if the webpages used by the sub-merchants under the institution to pull up the WeChat client cash register belong to different directories, the payment directory can be configured under the sub-merchant ID, and it will be effective to this sub-merchant ID only. Then, log in to the WeChat Pay Merchant Platform, select Institution > Sub-Merchant > Application, find the specific sub-merchant to configure, click Config to enter the configuration page, and find the Payment Authorization Config area to configure the H5 Payment Authorized Domain for the sub-merchant. The specific page is shown below:
Note for payment domain name configuration:
• We recommend configuring the main domain. By doing so, all sub-domains of the main domain will be authorized. If only a sub-domain is configured, the other sub-domains will not be authorized. For example, if qq.com is configured, both www.qq.com and music.qq.com will be authorized. If www.qq.com is configured, only www.qq.com will be authorized, while music.qq.com and pay.qq.com will not.
Webpage navigation
