Skip to main content

Concepts

xpanse is structured around a few key concepts.

Provider

A provider is a service that processes payments. This could be a credit card payment gateway (eg Stripe, Braintree), PayPal or a Buy Now Pay Later provider (eg Zip Money, Afterpay).

Environments

xpanse has two environments:

  • Sandbox - for testing setup and configuration
  • Production - to accept real payments

If you're using one of our server SDKs then you can just specify the environment on setup.

If you're using our REST API directly:

Transaction or Charge

A transaction or charge is a payment against a provider.

Payment Token

A payment token is a representation of payment details that have been securely converted to a token. You can use a payment token to create a transaction. Tokens are specific to a single provider. Each token can be used only once. To charge the same credit card multiple times, create a Customer with one or more Payment Methods.

Payment Method

A Payment method is something you can use to accept a payment with a Provider. This could be a credit card, or another payment method like PayPal.

Customer

A customer in xpanse represents a customer for your services. A customer can have a number of Payment Methods.

Secret Key

This is use for server to server authentication to the xpanse platform. This should never be shared with anyone else.

Public Key

This is use for client authentication to xpanse, typically used by the Client SDK.

Subscription

A subscription in xpanse represents a recurring payment plan for a customer. Subscriptions are used to automatically charge customers at regular intervals (e.g., daily, monthly) for a service or product. Each subscription is linked to a payment method, ensuring seamless and automated billing. xpanse also supports configuring retries for failed subscription payments. You can set the interval (e.g., hour, day), frequency, and maximum number of retries. This ensures that if a payment fails, it will be retried according to the specified policy, increasing the chances of successful payment processing.

Vault

The Vault in xpanse is a secure storage system where card numbers are stored. To ensure the highest level of security, card numbers are encrypted using AWS Key Management Service (KMS). This encryption ensures that sensitive payment information is protected and complies with industry standards.

We also run key rotation regularly to further enhance security and minimize risks associated with long-term key usage.

The Vault is designed to securely tokenize and store card details, allowing you to process payments without directly handling sensitive card information. This reduces your PCI compliance scope and enhances the overall security of your payment processing system.