# Verified Tokens

Verified Tokens ensures that your customer's payment details are valid and CIT compliant when creating a token.

__Authentication header__

  ```
    Authorization: {your_credentials}
  ```
  Replace `{your_credentials}` with your base64-encoded Basic Auth username and password given to you by your Implementation Manager.
  <br /> <br />
  You **must** use the `Authorization` header for any request you send to our Verified Tokens API.
  <br /><br />
  __Accept header__
  ```
    Accept: application/vnd.worldpay.verified-tokens-v3.hal+json
  ```

We use the Accept header to identify which version of our API you are using. You must use the Accept header for any request you send to our Verified Tokens API.
<br /><br />
__DNS whitelisting__

Whitelist the following URLs:
* `https://try.access.worldpay-bsh.securedataplatform.com/`
* `https://access.worldpay-bsh.securedataplatform.com/`

Please ensure you use DNS whitelisting, not explicit IP whitelisting. When you make a request within Access Worldpay, you should always cache the response returned.

Version: v3
Metadata:
  - category: ["Tokens"]
  - business: ["Enterprise"]
  - catalog-list: true
  - generated-openapi: false

## Servers

Test (Try)
```
https://try.access.worldpay-bsh.securedataplatform.com
```

Live
```
https://access.worldpay-bsh.securedataplatform.com
```

## Security

### BasicAuth

Type: http
Scheme: basic

## Download OpenAPI description

[Verified Tokens](https://developer.worldpay-bsh.securedataplatform.com/_bundle/products/verified-tokens/@v3/openapi.yaml)

## Other

### Verified Tokens cardOnFile resource

 - [POST /verifiedTokens/cardOnFile](https://developer.worldpay-bsh.securedataplatform.com/products/verified-tokens/openapi/other/cardonfile.md): Create a verified cardOnFile token by sending a request to cardOnFile resource. A cardOnFile verified token allows you to take payments that are made by the customer using a stored verified token, such as in one-click or in-app purchases.

### Verified Tokens oneTime resource

 - [POST /verifiedTokens/oneTime](https://developer.worldpay-bsh.securedataplatform.com/products/verified-tokens/openapi/other/onetime.md): Create a verified oneTime token by sending a request to oneTime resource. A oneTime verified token allows you to take payments that are made by the customer using a stored verified token, such as in one-click or in-app purchases.