Card Customer — Card Operations
Get Secure Card View URL
Generate a short-lived hosted URL that displays sensitive card data (PAN, CVV, expiry, PIN) to the cardholder — no SDK integration required
POST
Yativo hosts the card data page and handles all cryptography internally. Your backend requests a URL, then passes it to your customer via your app, an email, or an iframe. The cardholder opens it in any browser or WebView.
The response includes
pin_set — the last known state from the physical.card.pin.changed webhook (not from a direct card network API lookup). Use it to decide whether to prompt the cardholder to set their PIN. To show the PIN setup or change form, request enabled_views: ["pin"]. Your theme customization applies to the PIN page as well.Bearer token:
Bearer YOUR_ACCESS_TOKENThe customer’s
yativo_card_id.The card ID to display.
Which panels to show. Options:
"data" (PAN, CVV, expiry) and "pin". Defaults to ["data", "pin"].If
true, the cardholder must enter a code before card data is revealed.The access code the cardholder must enter. Setting this automatically enables
require_access_code.Customize the hosted page to match your brand.

