Skip to contentSkip to navigationSkip to topbar
Rate this page:
On this page

How to capture payment during a voice call (Generic Pay Connector)


In this tutorial, you will create an interactive voice response (IVR) that collects payment details from a customer and passes the information in a PCI-compliant manner to your payment processor of choice. This tutorial uses a TwiML Bin with the <Pay> verb and a Generic Pay Connector.

In this tutorial, you will learn how to:

  1. Enable PCI Mode on your account
  2. Install and configure a Generic Pay Connector
  3. Create a TwiML Bin with <Pay>
  4. Create a TwiML Bin to be executed after <Pay>
  5. Purchase a Twilio phone number
  6. Configure a Twilio number to use a TwiML Bin for incoming calls
  7. Create a mock payment processor using Twilio Serverless Functions
  8. Test capturing credit card details
(error)

Danger

Generic Pay Connectors only handle sending payment details to a payment processor. It is up to the payment processor of your choosing to process a transaction and return a response to Twilio in the required format.

In this tutorial, we will create a mock payment processor that is not PCI compliant and not production-ready.

Depending on your real-life use case, you may choose to create your own PCI-compliant payment processor application or use another, existing payment processor. If you choose an existing payment processor, they will need to write custom code to interface with Twilio's Generic Pay Connectors.

Twilio also offers branded Pay Connectors that are already designed to integrate with the following payment processors/gateways: Stripe, CardConnect, Base Commerce, Chase Paymentech, Braintree, and Adyen.


Prerequisites

prerequisites page anchor

Before you continue with this tutorial, you should familiarize yourself with the <Pay> and Generic Pay Connector docs.


In order to use any of Twilio's Pay Connectors, you must enable PCI mode on your Twilio account. This ensures that Twilio will capture the payment details from your customers in a PCI-compliant manner and redact any sensitive PCI information from any call logs.

(warning)

Warning

PCI Mode will redact sensitive information from ALL of your account's logs. Turning on PCI Mode cannot be undone.

If you want to avoid redacting information from all logs on an account, consider creating another Twilio account, enable PCI Mode on that account, and use that account when collecting payments with <Pay> or Agent Assist/Payment API.

To enable PCI Mode, complete the following steps:

  1. Navigate to the Twilio Voice Settings(link takes you to an external page) in the Twilio Console. (In the left navigation pane, click on Voice > Settings > General .)
  2. Click on the Enable PCI Mode button.

    Enable PCI Mode.
  3. Click on I Agree on the pop up to accept Twilio's Terms of Service.
  4. Click on the Save button.

2. Install and configure a Generic Pay Connector

2-install-and-configure-a-generic-pay-connector page anchor

In order for Twilio to send payment information to your payment processor, you must install the Generic Pay Connector on your Twilio Account.

  1. In the Twilio Console, navigate to the Pay Connectors(link takes you to an external page) page. (In the left hand navigation pane, click on Voice > Manage > Pay Connectors .)
  2. Click on the Generic Pay Connector tile.

    Generic Pay Connector Console tile.
  3. Click on Install .
  4. Give the Generic Pay Connector a UNIQUE NAME of " My_Pay_Connector "
  5. In the USERNAME and PASSWORD field, you can put any fake credentials. This is where you would put the credentials used by your payment processor.
  6. For now, set the ENDPOINT URL to https://example.com(link takes you to an external page). This is the endpoint where your payment processor will receive HTTPS POST requests from Twilio. We will create a Twilio Function endpoint to handle these POST requests later in this tutorial.

    Generic Pay Connector Tutorial Configuration.
  7. Click the Save button. Leave this tab open, as we'll need it later.

3. Create a TwiML Bin with <Pay>

3-create-a-twiml-bin-with-pay page anchor

Next, we'll use a TwiML Bin to provide Twilio with the <Pay> TwiML instruction. When Twilio executes the <Pay> verb, a customer will hear prompts to enter their payment information.

  1. Open a new browser tab and navigate to the TwiML Bins page in your Twilio Console(link takes you to an external page) .
  2. Click on the blue + button to create a new TwiML Bin
  3. Give the TwiML Bin a FRIENDLY NAME of " Generic Pay Connector Tutorial <Pay> "
  4. Copy and paste the following TwiML into the TWIML input box:


    _10
    <?xml version="1.0" encoding="UTF-8"?>
    _10
    <Response>
    _10
    <Pay paymentConnector="My_Pay_Connector" action="" chargeAmount="10.00" />
    _10
    </Response>

    Notice how the <Pay> verb has three attributes: paymentConnector, action, and chargeAmount.
    The paymentConnector attribute's value is the Pay Connector you want to use with this <Pay> verb. In this case, it's the Generic Pay Connector you just created called "My_Pay_Connector".
    The action attribute is left blank for now. This attribute will be a URL. Upon the completion of a <Pay> transaction, Twilio will send a webhook to your action URL to get a new set of TwiML instructions. We'll create another TwiML Bin with a new set of TwiML instructions for Twilio to execute after a completed <Pay> transaction and put that new TwiML Bin's URL in this action attribute.
    The chargeAmount attribute is set to 10.00, representing a charge of $10.00. (If you wanted to create a tokenize transaction, you would set this attribute value to 0 or omit the attribute altogether.)

  5. Click the Save button at the bottom of the page.

4. Create a TwiML Bin to be executed after <Pay>

4-create-a-twiml-bin-to-be-executed-after-pay page anchor
  1. Navigate to the TwiML Bin page in your Twilio Console by clicking My TwiML Bins at the top of the page of the TwiML Bin you created in the previous section. (You can also search for "TwiML Bins" at the top of the Twilio Console.)
  2. Click on the blue + button to create a new TwiML Bin.
  3. Give this TwiML Bin a FRIENDLY NAME of " Generic Pay Tutorial Action"
  4. In the TWIML input box, paste the follwing TwiML:


    _10
    <?xml version="1.0" encoding="UTF-8"?>
    _10
    <Response>
    _10
    <Say>Thank you for entering your payment information.</Say>
    _10
    {{#PaymentError}}
    _10
    <Say>Sorry. There was an error: {{PaymentError}}</Say>
    _10
    {{/PaymentError}}
    _10
    <Hangup />
    _10
    </Response>

    When Twilio executes this TwiML Bin, a caller will hear "Thank you for entering your payment information." and the call will end.

    If Twilio's webhook request to this TwiML Bin contains a PaymentError property (meaning that an error occurred), the caller will also hear "Sorry. There was an error." along with a description of the error before the call ends. (This TwiML Bin uses a conditional content template. Read more about TwiML Templates on the "How to use templates with TwiML Bins" support page(link takes you to an external page).)

  5. Click on the blue Save button at the bottom of the screen. (You'll be asked to confirm due to "invalid" TwiML syntax. It is valid, so ignore this bug.)
  6. Find the URL field at the top of the page for this TwiML Bin and copy the URL by clicking on the Copy button (on the right side of the URL field). You will set this URL as the action attribute for the other TwiML Bin you created, so that Twilio will execute this set of TwiML instructions after the <Pay> verb has completed in your other TwiML Bin.
  7. Click on My TwiML bins at the top of the page.
  8. Click on the Generic Pay Connector Tutorial <Pay> TwiML Bin.
  9. Paste the copied URL between the action attribute's quotation marks. Your TwiML Bin should look something like this:


    _10
    <?xml version="1.0" encoding="UTF-8"?>
    _10
    <Response>
    _10
    <Pay paymentConnector="My_Pay_Connector" action="https://handler.twilio.com/twiml/EHXXXXXXXXXXXXXXXXXXXXXXXXX" chargeAmount="10.00" />
    _10
    </Response>

  10. Click the blue Save button at the bottom of the page.

5. Purchase a Twilio phone number

5-purchase-a-twilio-phone-number page anchor

If you don't already own a Twilio Voice-enabled phone number, complete the following steps:

  1. In the Twilio Console, navigate to the Buy a Number(link takes you to an external page) page.
  2. Make sure the "Voice" checkbox is checked and click the Search button.

    Search for a Number - Click on the 'Search' button.
  3. You'll see a list of available phone numbers and their capabilities. Find a number that you like and click the Buy button.

    Buy a phone number - click on the 'Buy' button on the right side of the screen.
  4. In the"Review Phone Number" pop-up, review the information and click on Buy (xxx) xxx-xxxx to confirm your purchase.

6. Configure a Twilio number to use your <Pay> TwiML Bin for incoming calls

6-configure-a-twilio-number-to-use-your-pay-twiml-bin-for-incoming-calls page anchor

Now you'll navigate to the configuration page for the phone number and configure it to use your Generic Pay Connector Tutorial <Pay> TwiML Bin when someone calls the number.

  1. If you see the Number Purchased modal from the last step, click on Configure (xxx) xxx-xxxx . (If you navigated away from the previous step, navigate to Phone Numbers > Active numbers in the left navigation pane and select the phone number you just bought.)
  2. Give the phone number a FRIENDLY NAME of " Generic Pay Connector Tutorial ".
  3. Scroll down to the Voice & Fax section.
  4. Find the A CALL COMES IN label.
  5. Click on the dropdown (it currently says "Webhook") and select TwiML Bin .
  6. In the dropdown that says Select a TwiML Bin (directly under the dropdown from the previous step), select Generic Pay Connector Tutorial <Pay> .
  7. Click the blue Save button at the bottom of the page.

At this point, you can call your Twilio phone number from another phone. You should hear "Please enter your credit card number."

You can try entering the following test card details:

  • Credit card number: 4111 1111 1111 1111
  • Expiration date (MM/YY): 12 25 (or any date in the future)
  • Zip code: 94105
  • CVC security code: 333

You should hear: "Thank you for entering your payment information. Sorry. There was an error: Payment Gateway rejected charge creation. Got malformed response from Payment Provider."

This makes sense, given that our Generic Pay Connector's Endpoint URL was configured to be "https://example.com(link takes you to an external page)". That's not a real payment processor.

In the next section, we'll create a very basic endpoint that will be able to handle the POST request that Twilio would send to a payment processor. This is just to illustrate the flow of information between your caller, Twilio, and the payment processor's endpoint.


7. Create a mock payment processor using Twilio Serverless Functions

7-create-a-mock-payment-processor-using-twilio-serverless-functions page anchor

When <Pay> has completed gathering valid payment information from the caller, the Generic Pay Connector will initiate an HTTPS POST request to the endpoint URL specified in the Pay Connector's configuration.

In an actual, production situation, this is the step where a PCI-compliant payment processor would send the payment information and transaction details (i.e. whether the transaction is a tokenize or charge transaction) with the payment gateway, handle any timeouts or failures from the payment gateway, process any errors, and send back a response to Twilio in Twilio's required format.

For this tutorial, we will create an endpoint that will:

  • accept the POST request from Twilio with the transaction information and payment details
  • log the request from Twilio so you can understand what Twilio is sending to the payment processor
  • return a fake successful response to Twilio

You will use Twilio's Serverless Functionsto write and host this code. Twilio Functions allow you deploy Node.js-based applications without needing to install anything locally on your own machine.

  1. Navigate to the Functions > Services page(link takes you to an external page) in your Twilio Console.
  2. Click on the Create Service button to create a new Functions service.
  3. In the Name your Service pop up, give your service the name mock-payment-processor
    Give Twilio Serverless Service the name 'mock-payment-processor' in the Console.
  4. Click Next on the Name your Service pop up.
  5. Click on the Add + button in the top left corner of the page and then click on Add Function.

    Click on 'Add +' button to add a new Function to your mock-payment-processor Functions Service.
  6. In the Functions pane on the top left, find the input that contains /path_1 and change it to /pay and hit Enter.

    Rename the default endpoint to '/pay'.
  7. Next to the /pay path name, you should see Protected. Click on the downward arrow next to Protected and then Public.

    Change the /pay path from Protected to Public in top left 'Functions' pane using the arrow dropdown.
  8. Select all of the provided sample code and delete it .
  9. Copy and paste the following code into the code editor of your /pay function:


    _15
    exports.handler = (context, event, callback) => {
    _15
    console.log('POST request from Twilio received:');
    _15
    _15
    console.log(event);
    _15
    _15
    console.log('Authorization Headers: ', event.request.headers.authorization);
    _15
    _15
    const sampleResponse = {
    _15
    charge_id: "some_id",
    _15
    error_code: null,
    _15
    error_message: null
    _15
    };
    _15
    _15
    return callback(null, sampleResponse);
    _15
    };

  10. Click on the blue Save button at the bottom of the code editor pane.
  11. Click the Deploy All button at the bottom of the page. This deploys your Twilio Function to the internet.
  12. Click on the Enable live logs switch so that you'll see live logs when your /pay endpoint receives a request from Twilio.

    Click on 'Enable Live Logs' toggle located at the top right corner of the logs pane.
  13. Now, copy the URL for your new endpoint by clicking on Copy URL (below the code editor pane).
  14. Go to your browser tab with the Generic Pay Connector's configuration page. (Or in a new tab, navigate to Voice > Manage > Pay Connectors > Generic Pay Connector in the left navigation pane of your Twilio Console.)
  15. Paste your Twilio Function's URL into the ENDPOINT URL field.

    Update your Generic Pay Connector Endpoint URL with the URL of your mock-payment-processor Twilio Function URL.
  16. Click the Save button.

8. Test capturing credit card details

8-test-capturing-credit-card-details page anchor

Before you call your Twilio phone number, review what should happen:

  • You dial your Twilio phone number
  • The phone number's configuration points to the "Generic Pay Connector Tutorial <Pay>" TwiML Bin.
  • Twilio executes the <Pay> verb, so you hear prompts to enter your payment details.
  • You enter your payment details.
  • Twilio sends a request to your Twilio Functions endpoint URL (because your <Pay> verb's paymentConnector attribute pointed to your Generic Pay Connector called "My_Pay_Connector", which is configured with your Twilio Functions URL).
  • Your Twilio Function (your fake payment processor) returns a response object to Twilio.
  • The response object doesn't contain an error, so you hear "Thank you for entering your payment information" and the call ends. This is because once Twilio received a response from your fake payment processor, it sent a POST request to your "Generic Pay Tutorial Action" TwiML Bin. (Remember, the the <Pay> verb in the other TwiML Bin had an action attribute that pointed to this TwiML Bin.)

Test it out

test-it-out page anchor
  1. Make sure you can see your Twilio Functions Console page for your mock-payment-processor function.
  2. Make sure you've clicked on the Enable live logs toggle (it should now be blue and say "Disable live logs").
  3. Call your Twilio number.
  4. Enter your test payment information:

    • Credit card number: 4111 1111 1111 1111
    • Expiration date (MM/YY): 12 25 (or any date in the future)
    • Zip code: 94105
    • CVC security code: 333
  5. In your Twilio Functions log, you should see the logs of your Twilio Function print out something like the following:


    _10
    _10
    POST request from Twilio received:
    _10
    _10
    { request: '[Object]', transaction_id: '72500aba-328c-445c-a12e-da5700e10b17',
    _10
    cardnumber: '4111111111111111', cvv: '333', expiry_month: '12',
    _10
    expiry_year: '25', description: '[Object]', amount: '10.00',
    _10
    currency_code: 'USD', postal_code: '94150', method: 'charge',
    _10
    parameters: '[Object]' }
    _10
    _10
    Authorization Headers: Basic bXlfY29ubmVjdG9yX3VzZXJuYW1lOnRlc3RpbmcxMjM=

    Notice that the card information is not redacted, since it is presumed that the payment processor is PCI-compliant.
    Also, you can see that the request that Twilio sends to the payment processor contains an Authorization header that conforms to HTTP Basic Authentication. It contains the credentials you used in your Generic Pay Connector's configuration in Base64-encoded form. (The above example decoded is: my_connector_username:testing123.)
    Your mock-payment-processor Function also returns an object in the format that Twilio expects:


    _10
    {
    _10
    charge_id: "some_id",
    _10
    error_code: null,
    _10
    error_message: null
    _10
    }

  6. To see what Twilio sends to your <Pay> verb's action URL, you can go to your Call Logs in your Twilio Console.

    1. In the left navigation pane of your Twilio Console, click on the Monitor tab, then click on Logs > Calls .
    2. On the Call Logs page, click on your most recent Call SID .
    3. Click on + Expand All on the right side of the page under the Request Inspector heading. You should see two POST requests.
    4. Twilio made its first POST request to your Generic Pay Connector Tutorial <Pay> TwiML Bin. (Look at the Response Body to verify this.)
    5. Twilio made a second POST request to the action URL from your <Pay> verb. (Remember that your action URL pointed to your Generic Pay Connector Tutorial Action TwiML Bin.) Inspect the Parameters in this POST Request and see the parameters related to this <Pay> transaction:

      • PaymentCardNumber
      • PaymentConfirmationCode
      • Result
      • SecurityCode
      • PaymentCardType
      • ExpirationDate
      • PaymentCardPostalCode
      • PaymentToken
      • PaymentError

Congratulations! You completed a mock payment with <Pay> and a Generic Pay Connector. You should now understand the flow of information between a caller (your customer), Twilio, and your payment processor.

In order to become production-ready, you'll need to create your own PCI-compliant payment processor or find an existing, PCI-compliant payment processor that can properly respond to Twilio requests, process charge and tokenize transactions with a payment gateway, and handle timeouts and retries.

If you've already chosen a payment processor to work with, you can share the Generic Pay Connector docs with them so they can customize their code to work with Twilio's Generic Pay Connectors.


Rate this page: