# FraudSight

Request a risk assessment and prevent fraud with this standalone API.<br><br>

__Authentication header__

  ```
    Authorization: {your_credentials}
  ```
  Replace `{your_credentials}` with your base64-encoded Basic Auth username and password given to you by your Worldpay Implementation Manager.
  <br /> <br />
  You **must** use the `Authorization` header for any request you send to our FraudSight API.
  <br /><br />
  __Accept and Content-Type headers__
  ```
  Content-Type: application/vnd.worldpay.fraudsight-v1.hal+json
  Accept: application/vnd.worldpay.fraudsight-v1.hal+json
  ```

We use the Accept header to identify which version of our API you are using. You must use the Accept header for any request you send to our FraudSight API.
<br /><br />
We require the Content-Type header if the request you're sending includes a request body, and if the HTTP method is a POST or a PUT.
<br /><br />
__DNS whitelisting__

Whitelist the following URLs:
* `https://try.access.worldpay.com/`
* `https://access.worldpay.com/`

Please ensure you use DNS whitelisting, not explicit IP whitelisting. When you make a request within Access Worldpay, you should always cache the response returned.

{% admonition type="danger" name="Linking the payment" %}
You must apply the `riskProfile` from the FraudSight assessment response in the [Card Payments API](/products/card-payments/authorize-a-payment#fraudsight) to link the Worldpay payment. This allows the data model to mature and identify fraudulent transactions. Alternatively make additional [FraudSight update](/products/fraudsight/update) requests. 

See [linking the FraudSight assessment](/products/fraudsight/assessment#linking-the-fraudsight-assessment) for details.
{% /admonition %}

Version: v1
Metadata:
  - category: ["Risk Assessments"]
  - business: ["Enterprise"]
  - catalog-list: true
  - generated: false

## Servers

Test (Try)
```
https://try.access.worldpay.com
```

Live
```
https://access.worldpay.com
```

## Security

### BasicAuth

Type: http
Scheme: basic

## Download OpenAPI description

[FraudSight](https://worldpay-portal.eu.redocly.app/access/_bundle/products/fraudsight/@v1/openapi.yaml)

## Update

### Provide details of the payment outcome

 - [POST /fraudsight/update/payment](https://worldpay-portal.eu.redocly.app/access/products/fraudsight/openapi/update/updatepayment.md): Provide payment outcome information.

__Note:__ This should only be provided if using a different gateway for the payment.

### Provide details of a payment that resulted in fraud

 - [POST /fraudsight/update/fraud](https://worldpay-portal.eu.redocly.app/access/products/fraudsight/openapi/update/updatefraud.md): Provide payment fraud information.

### Provide details of a payment that resulted in a chargeback

 - [POST /fraudsight/update/chargeback](https://worldpay-portal.eu.redocly.app/access/products/fraudsight/openapi/update/updatechargeback.md): Provide payment chargeback information.

## Other

### Fraud assessment

 - [POST /fraudsight/assessment](https://worldpay-portal.eu.redocly.app/access/products/fraudsight/openapi/other/assessment.md): Request a risk assessment