# Card fraud alerts The report is vital for merchants, providing detailed fraud-related information such as order IDs, amounts, and timings, along with specific fraud types and reason codes, crucial for swiftly identifying, analyzing, and formulating effective strategies to enhance transaction security. The created_at as the default parameter is used to unload fraud alert data. It specifies the exact time when a fraud alert was created. Endpoint: POST /card-orders/fraud-alerts Version: 1.0.0 Security: MerchantID ## Header parameters: - `merchant` (string, required) Unique public key provided upon registration and must be shared for identification purposes. Example: "api_pk_7b197...ba108f842" - `signature` (string, required) Request signature that allows verification of merchant authenticity on the payment gateway server. Example: "M2E3OTkyNzcz...xMmExODI4" ## Request fields (application/json): - `filter` (string) Filtering criteria for the report data. Enum: "updated_at", "created_at" - `date_from` (string, required) Start datetime for the report stated in UTC+0. Example: "2025-08-15 11:00:00" - `date_to` (string, required) End datetime for the report stated in UTC+0. Example: "2025-08-18 11:00:00" - `limit` (integer) Limit value indicates the maximum number of items to be returned. Example: 2000 - `next_page_iterator` (string) Pagination helps in managing large datasets by dividing them into smaller, manageable chunks. If this value is null, it indicates that all available data has been successfully retrieved by the merchant. Example: "eyJzdWJzY3JpcHRpb25faWQiOiI5ODlkCJkYXRlX3RvIjoiMjAyMC0wOS0xNyAxNDoxMDowMCJ9" ## Response 200 fields (application/json): - `body` (object) — one of: - Success: - `alerts` (array, required) List of alerts, each containing detailed attributes such as order identifier, creation, update, and report dates, amounts in original currency and USD, fraud type, card scheme, and reason code description. - `alerts.order_id` (string) Unique order identifier defined by the merchant. - `alerts.created_at` (string) Datetime when the fraud alert was created by Solidgate. - `alerts.updated_at` (string) Datetime when the fraud alert was updated Solidgate. - `alerts.fraud_amount` (integer) Amount of the fraud reported. - `alerts.fraud_currency` (string) Three-letter ISO-4217 currency code of the fraud amount. - `alerts.fraud_amount_usd` (integer) Amount of the fraud reported in USD. It can be used for the risk monitoring purposes. - `alerts.fraud_report_date` (string) Datetime when fraud was reported by the issuer. In the fraud alert webhooks, fraud_report_day field has an identical meaning. - `alerts.fraud_type` (string) Type of fraud detected, categorizing the nature of the fraudulent activity. - `alerts.card_scheme` (string) Card scheme associated with the transaction like Visa or Mastercard, providing context on the payment network involved. - `alerts.reason_code_description` (string) Detailed explanation of the reason code associated with the fraud alert, offering insights into why the fraud was flagged. - `metadata` (object, required) Metadata object containing pagination and count information. - `metadata.next_page_iterator` (string, required) Pagination helps in managing large datasets by dividing them into smaller, manageable chunks. If this value is null, it indicates that all available data has been successfully retrieved by the merchant. - `metadata.count` (integer, required) Number of alerts on the page. - Authentication failed: - `error` (object, required) Error object. - `error.code` (string, required) Unauthorized access due to invalid credentials. Example: "1.01" - `error.messages` (array, required) Array of error messages applied to the decline payment. Example: ["Authentication failed"]