ePayServices OpenApi (v1)
Download OpenAPI specification:Download
Welcome to the ePayServices Open API!
Here you will find all the information to get started with our API.
We offer both a REST JSON API and fallback html interface for screen scraping. This API and html interface can be used to access the accounts of customers and to create internal P2p transfers.
Download OpenAPI specification.
All endpoints require authentication via Bearer token in Authorization header.
To become authenticated you will need to sign up as a developer and to generate a new OAuth2 application from the developer's panel.
Afterwards, you'll be able to get an ACCESS TOKEN by following Open ID Connect authentication flow.
You'll find the necessary endpoints information at the OpenID Connect Discovery endpoint
oauth2
Visit the developer's panel to get client_id and client_secret.
| Security scheme type: | OAuth2 |
|---|---|
| authorizationCode OAuth Flow | Authorization URL: https://online.epayservices.com/open_api/oauth/authorize Token URL: https://online.epayservices.com/open_api/oauth/token Scopes:
|
Both REST JSON API and screen scraping interfaces requires the use of the QWAC client certificates to identify the TPP and have a mutual TLS connection.
During development TPP could issue a temporary QWAC certificate to be used with the ePayServices Sandbox endpoints.
In production TPP is required to have a valid QWAC certificate issued by any Qualified Trust Service Provider.
To generate the development QWAC certificate, TPP should register in the ePayServices Sandbox and create an application.
Afterwards TPP will be able to generate the certificate on the application page.
To test OAuth2 authentication, TPP could use predefined user credentials: user / 123123123.
Every P2P payment requires a prior SCA consent from the PSU.
To get the consent, TPP should redirect the PSU to /open_api/sca/new page with its client_id and the payment's amount, current and beneficiary (receiver_account_number in case of p2p) GET parameters.
After the PSU authorization, TPP will receive the redirect to sca_redirect_uri url with the consent status. (either ok or denied).
If the returned status is ok, then TPP could send the actual p2p payment with the same amount, currency and beneficiary as the consent's.
Retrieve a list of operations
Retrieve a list of operations for given account
Authorizations:
path Parameters
| account_id required | integer Example: 1 |
Responses
List of operations
Invalid token
Invalid TPP certificate
Account not found
Sandbox Server
Live Server
Request samples
- Shell
curl https://online.epayservices.com/open_api/account_history?account_id=1 \ -H "Authorization: Bearer <ACCESS_TOKEN>"
Response samples
- 200
- 401
- 403
- 404
- {
- "id": 3,
- "account_id": 2,
- "type_act": "out",
- "description": "To Ivan Ivanov (card: 4242**4242)",
- "comment": "Loan return",
- "status": "paid",
- "amount": "100.55",
- "tax": "0.5",
- "currency": "EUR",
- "created_at": "2019-03-28 14:40:51 +0300",
- "transaction_type": "Cash Remittance",
- "available_balance": "900.45"
Retrieve a list of accounts
Retrieve a list of all active user's accounts.
Authorizations:
Responses
List of accounts
Invalid token
Invalid TPP certificate
Sandbox Server
Live Server
Request samples
- Shell
curl https://online.epayservices.com/open_api/accounts \ -H "Authorization: Bearer <ACCESS_TOKEN>"
Response samples
- 200
- 401
- 403
- {
- "id": 2,
- "type": "REGULAR",
- "balance": "1000.5",
- "name": "Euro Wallet #2",
- "number": "1001773430400555",
- "currency": "USD",
- "currency_label": "WMZ",
- "payment_provider_code": "MTACCEU",
- "favorite": true,
- "epscard": {
- "id": 1,
- "status": "active",
- "currency": "EUR",
- "exp_y": "22",
- "exp_m": "03",
- "masked_number": "4242********4242",
- "is_virtual": true,
- "is_reloadable": false,
- "limits_group": "string"
Retrieve a single account
Retrieve a single account by its unique ID
Authorizations:
path Parameters
| id required | integer Example: 1 |
Responses
Account found
Invalid token
Invalid TPP certificate
Account not found
Sandbox Server
Live Server
Request samples
- Shell
curl https://online.epayservices.com/open_api/accounts/1 \ -H "Authorization: Bearer <ACCESS_TOKEN>"
Response samples
- 200
- 401
- 403
- 404
- "id": 2,
- "type": "REGULAR",
- "balance": "1000.5",
- "name": "Euro Wallet #2",
- "number": "1001773430400555",
- "currency": "USD",
- "currency_label": "WMZ",
- "payment_provider_code": "MTACCEU",
- "favorite": true,
- "epscard": {
- "id": 1,
- "status": "active",
- "currency": "EUR",
- "exp_y": "22",
- "exp_m": "03",
- "masked_number": "4242********4242",
- "is_virtual": true,
- "is_reloadable": false,
- "limits_group": "string"
Create internal p2p transfer
Send money to other ePayService account.
Scope: p2p_out.
Authorizations:
Request Body schema: application/json
| sender_account_id required | integer Unique ID of the sender's account. |
| receiver_account_number required | string Account number of the receiving user. It must have the same currency as the sender's account |
| amount required | string Amount to transfer. Length: between 5 and 32 characters. |
| comment required | string [ 5 .. 32 ] characters Purpose of payment |
| protection_code | string Optional password protection for the transfer |
| protection_days | integer Number of days until p2p is automatically cancelled |
Responses
Transfer created
Invalid token
Invalid TPP certificate
Validation error
Sandbox Server
Live Server
Request samples
- Payload
- Shell
- "sender_account_id": 101,
- "receiver_account_number": "1001773430400555",
- "amount": "100.10",
- "comment": "Loan return",
- "protection_code": "SECRET",
- "protection_days": 14
Response samples
- 201
- 401
- 403
- 422
- "id": 1,
- "status": "wait",
- "sender_account_number": "1001773430400555",
- "receiver_account_number": "2001224100100230",
- "amount": "300.00",
- "tax": "1.5",
- "currency": "EUR",
- "comment": "Loan return",
- "created_at": "2019-03-28 15:40:51 +0300",
- "finished_at": "2019-04-01 12:40:00 +0300",
- "protected": true,
- "protection_time": "2019-04-10 13:00:00 +0300"
Retrieve a single P2p transfer
Retrieve a single instant internal P2p transfer by its unique ID
Scope: p2p_out.
Authorizations:
path Parameters
| id required | integer Example: 1 |
Responses
Transfer found
Invalid token
Invalid TPP certificate
Transfer not found
Sandbox Server
Live Server
Request samples
- Shell
curl https://online.epayservices.com/open_api/out/p2ps/1 \ -H "Authorization: Bearer <ACCESS_TOKEN>"
Response samples
- 200
- 401
- 403
- 404
- "id": 1,
- "status": "wait",
- "sender_account_number": "1001773430400555",
- "receiver_account_number": "2001224100100230",
- "amount": "300.00",
- "tax": "1.5",
- "currency": "EUR",
- "comment": "Loan return",
- "created_at": "2019-03-28 15:40:51 +0300",
- "finished_at": "2019-04-01 12:40:00 +0300",
- "protected": true,
- "protection_time": "2019-04-10 13:00:00 +0300"
Calculate a fee
Calculate a transaction fee for a single P2p transfer.
Scope: p2p_out.
Authorizations:
query Parameters
| account_id required | integer Example: account_id=1 Sender account unique ID |
| amount | string Example: amount=50.0 Transfered amount |
| receiver_account_number | string Example: receiver_account_number=2001224100100230 Pass receiver account number to apply special optional fee rates |
Responses
Fee calculated
Invalid token
Invalid TPP certificate
Sandbox Server
Live Server
Request samples
- Shell
curl https://online.epayservices.com/open_api/out/p2ps/fee?amount=50.0&account_id=1 \ -H "Authorization: Bearer <ACCESS_TOKEN>"
Response samples
- 200
- 401
- 403
- "amount": {
- "value": "100.0",
- "currency": "EUR"
- "fee": {
- "value": "100.0",
- "currency": "EUR"
- "total": {
- "value": "100.0",
- "currency": "EUR"