What They Store
Each PSP requires different credential fields. A stored credential set includes:- PSP type. Which payment processor (Stripe, Adyen, Worldpay, etc.).
- Account credentials. The PSP-specific authentication fields (API keys, merchant IDs, terminal IDs, passwords, etc.).
- Credential ID. A unique reference you assign when storing (typically combining the PSP name and a customer or merchant identifier).
How to Use Stored Credentials
Setup workflow
- Retrieve the credential structure for your PSP. The API returns the exact fields required for that gateway, which you can use to build a collection form.
- Store your credentials by submitting the required fields with a unique credential ID.
- Reference the credential ID in your UPG requests using the
credentialsIdquery parameter.
API operations
Inline vs Stored Credentials
You can provide PSP credentials in two ways when making a UPG request:- Stored (recommended). Pre-save credentials as described above and pass the
credentialsIdin your request. Keeps credentials out of your transaction code entirely. - Inline. Include the PSP name and credential key-value pairs directly in the request body. Useful for testing or one-off transactions.
Benefits
- Security. PSP credentials stored in PCI Booking’s secure environment, not in your systems.
- PSP portability. Switch processors by creating new credentials and updating the ID in your requests. No code changes.
- Multi-PSP support. Store credentials for multiple PSPs and select which to use per transaction.
- Same token, any PSP. A single card token can be sent to any PSP by changing the credential ID.
Next Steps
Universal Payment Gateway
Process payments using stored credentials
Charge
Example requests with both inline and stored credentials
Gateway Guidance
PSP-specific parameter requirements
Credential Management API Reference
Full API documentation

