You're viewing our website for the India edition. Switch to the US edition to explore Zoho Payments in your region.
Switch to US Website
Stay Here
Zoho Payments Logo
🇮🇳 India

Signature Verification

Zoho Payments generates a signature to ensure the security and integrity of the transaction data. Signature verification confirms that the data has not been tampered with and authenticates the payment details received after a transaction. Signature verification can be performed for payments received via:

Widget Response

After initiating the payment successfully, the checkout widget will return a response with the payment_id and a signature. The signature will be included only if you’ve generated a signing key under Settings > Developer Space. Once the payment is completed, the widget returns the following parameters:

Parameter Description
payment_session_id A unique identifier for the payment session.
payment_id A unique identifier for payments made through Zoho Payments.
signature A signature generated using your Signing Key to verify the widget response.

To verify the signature:

  1. Use the following parameters, concatenate them in this order, and use a pipe (|) as the separator:

payment_id | payment_session_id

  1. Generate an HMAC-SHA256 signature using the concatenated string and your signing key.

  2. Compare the generated signature with the signature parameter for validation.

Successful validation confirms that the data is secure and has not been tampered with.

Return URL

Signature verification for the return URL ensures data integrity and confirms the authenticity of the response returned via payment links. The parameters shown in the table below are sent through the return URL, which is the page the customer is redirected to after a successful payment.

Parameter Description
payment_link_id A unique identifier for the payment link.
payment_id A unique identifier for payments made through Zoho Payments.
amount The payment amount.
status The status of the payment.
payment_link_reference An alphanumeric identifier for the link provided during link creation. This is an optional parameter and will not be included in the return_url unless specified.
signature A signature to verify the authenticity of the parameters in the return_url.

To verify the signature:

  1. Extract the following parameters from the return URL and concatenate in this order and use period (.) as a separator:

payment_link_id.payment_id.amount.status.payment_link_reference

  1. Generate an HMAC-SHA256 signature using the concatenated string and your signing key.

  2. Compare the generated signature with the signature parameter from the return URL.

Successful validation confirms that the data is secure and has not been tampered with.

Let us simplify payments

Our product experts will tailor the session to your business needs to ensure you get the maximum value from the conversation.

What to expect in the demo

  • Tick icon Walkthrough of Zoho Payments personalized to your business needs
  • Tick icon How it integrates within your existing business ecosystem
  • Tick icon Answers to any specific questions you may have

Request a demo

Please enter your name

Please enter your organization name

Please enter your email address.

Please enter a valid mobile number

Please enter a convenient date and time.

Example: May 30, 9.00-11.00AM IST

Please select your industry type.

Please enter a brief description of your payments processing needs.

Type the characters you see in the picture

Captcha Refresh Captcha

By submitting this form, you agree to our Privacy Policy.