Contents

Establish a connection with Apple Pay

 

Sign the certificates

SQUARE ST
You will need to contact our Support team to enable Apple Pay on your Trust Payments account. You will be asked to provide the following information as part of this process:

 

  • Your site reference(s).
  • The domain of your payment page.
  • Your Apple Pay Merchant ID(s).
  • Your Webservices Username.
SQUARE Response
The Support team will return two certificates per Merchant ID (in CSR format), and you will need to follow the steps below for each Merchant ID to enable Apple Pay on your account.

 


 

Preparing the Payment Processing Certificate

1
Sign into the Apple Developer Center:

https://developer.apple.com/account/

2
From the navigation, click “Merchant IDs”.

 

3
Click the Apple Pay Merchant ID you provided to Support earlier, and then click “Edit”.

 

4
Under “Apple Pay Payment Processing Certificate” click “Create Certificate”.

 

Create Payment Processing certificate
Info
If you are asked “Will payments associated with this Merchant ID be processed exclusively in China?”, select “No” and click “Continue”.

 

5
A summary of the certificate generation process will be displayed. Click “Continue”.

 

Certificate signing summary as displayed on the developer portal
6
Upload the Payment Processing CSR file emailed to you by the Support team earlier and click “Continue”.

 

CSR upload
SQUARE Response
Apple will prompt you to download a new Apple Pay certificate.

Download this certificate and keep this safe – you will need this later!

Do not change the name of this CER file.

 

Download the certificate

 

 


 

Preparing the Merchant Identity Certificate

1
From the navigation, click “Merchant IDs”.

 

2
Click the Apple Pay Merchant ID you provided to Support earlier, and then click “Edit”.

 

3
Under “Apple Pay Merchant Identity Certificate” click “Create Certificate”.

 

Create Merchant Identity certificate
4
A summary of the certificate generation process will be displayed. Click “Continue”.

 

Certificate signing summary as displayed on the developer portal
5
Upload the Merchant Identity CSR file emailed to you by the Support team earlier and click “Continue”.

 

CSR upload
SQUARE Response
Apple will prompt you to download a new Apple Pay certificate.

Download this certificate and keep this safe – you will need this later!

Do not change the name of this CER file.

 

Download the certificate

 


 

Contact Support with the certificates

Warning
You must ensure you send the certificates in a .zip file when emailing Support.

 


 

Validate your domain

SQUARE Apple
Apple requires that your domain is validated before payments can be processed. This can be completed by signing in to the Apple developer portal and following the instructions below.
1
From the navigation, click “Merchant IDs”.

 

2
Click the Apple Pay Merchant ID you provided to Support earlier, and then click “Edit”.

 

3

Beneath the header “Apple Pay on the Web” and within a frame titled “Merchant Domains”, click the “Add Domain” button to begin the validation process.

 

4
You will be prompted for your domain name e.g. “example.com”. Once you have entered this, click “Continue”.

 

5
The next page is titled “Verify”. Click “Download” to download the validation file for the domain that is to be validated.

 

 

Notes:

  • Each time you click “Download”, Apple generates a new validation file. (The same file cannot be downloaded multiple times)
  • Once a validation file has been generated, you will have 24 hours to verify the domain, otherwise you will need to generate an entirely new validation file by clicking “Download” again.
  • Once validated, the validation file will expire the same time as the SSL certificate on the domain.
6
Upload this validation file to your webserver, using the path displayed within the developer portal (under “We’ll look for your file at the following location”).

 

Important:

  • You must use the exact path provided by Apple.
  • Ensure the file and parent directory are given read and execute permissions. (For Unix, this is typically done by using the command “chmod 755 <filename or folder>”).
7
Once the validation file is hosted and can be accessed externally, you can click the “Verify” button on the developer portal, to allow Apple to connect to your webserver and validate the domain.

Having problems validating your domain?

 

If you receive the following error message when validating the domain while on Apple’s Developer Portal:

 

Verification failed for domain
Unable to establish a secure connection to ‘https://yourdomain.com/.well-known/apple-developer-merchantid-domain-association.txt’
Domain certificate is untrusted.

 

Solution
Apple requires that the server receives a high security rating in order to successfully validate a domain.
(For example, if using SSL Labs to check your certificate, an A grade would be required as a minimum: https://www.ssllabs.com/ssltest/index.html)

Status good
Now you have set up the certificates and have had your domain validated by Apple, you can update your checkout to process Apple Pay transactions.

Click here to continue >>>