Payments
Payment Statuses
The current stage of a payment lifecycle is represented in
status
field. The status of a payment can be one of the following:
| Name | Description |
|---|---|
| processing | Salt Edge PSD2 Compliance is processing the request or response. |
| redirect | Provider requires a redirect for authentication. |
| waiting_confirmation | Provider is waiting for the consent of Customer. |
| waiting_confirmation_code | Provider is waiting for a confirmation code, be it OTP for authentication or Dynamic linking for performing a payment. |
| closed | Session is closed. |
Create
Create a payment order on behalf of PSU
CURL
![]()
curl -i \
-H "Authorization: Bearer eyJhbGciOiJSUzI1NiJ9.eyJkYXRhIjp7InJlZGlyZWN0X3VybCI6Imh0dHBzOi8vdXNlci53aWxsLmJlL3JlZGlyZWN0ZWQvaGVyZSIsImJlbmVmaWNpYXJ5X2lkIjozODMsImZvcmNlX3NjYSI6dHJ1ZSwiZXh0cmEiOnt9LCJ0ZW1wbGF0ZV9pZCI6ODI0LCJwYXltZW50X2F0dHJpYnV0ZXMiOnsiZnJvbV9hY2NvdW50IjoiOTU0MjM0MjMxMiIsInRvX2FjY291bnQiOiIzNDU4OTc5NTcwIiwiYW1vdW50IjoiMTUwLjAwIiwiZGVzY3JpcHRpb24iOiJUZXN0IHBheW1lbnQuIn0sInByb3ZpZGVyX2NvZGUiOiJkZW1vYmFuayJ9LCJleHAiOjE3NjE4MDU4MDYsImlzcyI6InByaW9yYS5zYWx0ZWRnZS5jb20ifQ.mgMvdGj3SQpSVeBqYZSs7_fix59sSeIH8ewuEzT-sXQffA6rRP3byleJ2lj3gbunBW5EndUrYgSpWEpQzRQTm3AM4_akoEVwOL7wCNbUsU70910DG9ODqCJkL7-BwS7_Y2SZRe_9OF6p5E8nCTCnGKvCbPe-Cy-hOVoA72dgXYEm06nVKwRPNX2pHgLYQzNaCsHkIwn9pNZ-SO7ijeeGZpZQBEmW7Oupq89SpTmQpigfMpyzkUyZAgjRwIXNWTxgZK_q8u9GYnWwtKUPJ4nxPSAZLN5dtBE0jR_BPnZvOeekam4Oh4a1C_-HZMScK-P28ht9br4C5myvr7hJRE4OTg" \
-H "App-Id: pRhi4X5YXwmccpgmDsLb1w" \
-H "App-Secret: dszz3LNHbWnqz9HnnH8DhA" \
-H "Access-Token: aacd4e18fab5b180b5e3cc4d35f8600ec08e1be219e5ec9400bc819357928a9283e8d6941215742aaa127d9076496bf210044545cbc1dc00489f295024c926c8" \
-H "Client-Request-Id: 17" \
-X POST "/api/v2/payments"
Example of request parameters
![]()
{"data":{"redirect_url":"https://user.will.be/redirected/here","beneficiary_id":383,"force_sca":true,"extra":{},"template_id":824,"payment_attributes":{"from_account":"9542342312","to_account":"3458979570","amount":"150.00","description":"Test payment."},"provider_code":"demobank"},"exp":1574093209}
Example of response
![]()
{"data":{"status":"pending","description":"Internal payment.","fees":[{"amount":0.25,"description":"Bank fee.","currency_code":"EUR"},{"amount":0.1,"description":"Payment fee.","currency_code":"EUR"}],"updated_at":"2019-11-18T16:04:50.320Z","id":997,"payment_attributes":{"from_account":"9542342312","to_account":"3458979570","amount":"150.00","description":"Test payment."},"session":{"fail_message":"","id":611,"secret":"x2xxJojJkQ9u56EyU_NS","status":"processing","events":[{}],"success_at":"2019-11-18T16:04:50.320Z","expires_at":"2019-11-18T17:04:50.320Z","fail_at":""},"created_at":"2019-11-18T16:04:50.320Z"}}
Request
POST
/api/v2/payments
Headers
| Header | Type | Description |
|---|---|---|
Authorization
|
string, required |
JSON Web Token containing payload, signed using RSA256 and application.private_key.
Can raise:
AuthorizationMissing
|
App-Id
|
string, required |
Application’s app_id from connection details tab.
Can raise:
OauthAppNotFound, CertificateNotFound
|
App-Secret
|
string, required |
Application’s app_secret from connection details tab.
|
Access-Token
|
string, required | Token for which we are requesting info. Can raise: TokenMissing, TokenNotFound, TokenRevoked, TokenExpired |
Client-Request-Id
|
string, optional |
Request identifier. If present, it will be returned within meta field in response.
|
Unpacked Request Authorization
Response
Upon successful request, 200 status code will be returned. See ‘Related Errors’ table for other possibilities.
Related Errors
| Class | Code | Description |
|---|---|---|
| TokenMissing | 400 | This request cannot be performed without Access_Token header. |
| AccessDenied | 401 | Action you want to perform is not allowed. More in error_message
|
| AuthorizationMissing | 401 | Authorization header is missing. |
| TokenRevoked | 401 | Token specified in request is revoked and cannot be used anymore. |
| TokenExpired | 401 | Token specified in request is expired and cannot be used. |
| ProviderNotFound | 404 | Provider specified in request does not exist or cannot be retrieved. |
| TrustedBeneficiaryNotFound | 404 | Trusted Beneficiary specified in request does not exist or cannot be retrieved. |
| TemplateNotFound | 404 | Template specified in request does not exist or cannot be retrieved. |
| OauthAppNotFound | 404 | OAuth Application specified in request does not exist or cannot be retrieved. |
| CertificateNotFound | 404 | Certificate has no permissions. |
| TokenNotFound | 404 | Token specified in request does not exist or cannot be retrieved. |
Show
Endpoint used to fetch all data relevant to a payment including fees, status and other.
CURL
![]()
curl -i \
-H "Authorization: Bearer eyJhbGciOiJSUzI1NiJ9.eyJkYXRhIjp7ImlkIjo5NjF9LCJleHAiOjE3NjE4MDU4MDYsImlzcyI6InByaW9yYS5zYWx0ZWRnZS5jb20ifQ.YQGY_cwk1c16LyuUsKqQ1BhcLlNusDcmxXLxFEeA_Fj5vFngEN41DFEkexonS0ItUkygdUBcgJStUMhcLIHsQCY532ItVBcOFx6APcYYP0Z3qmX93EYUwu_rmGTwWTKWbxDqCx21W2g2CIsFUJkQLOZ1-62SLSswgTFQ2XExssmmLTMpxQnoOrDIGcJkzgUyI6ERGyqxa1jTHMPk9Hh4v7EapiSa8zizj6ZSS0EF9wdjETeIM8PpjcMQhuUwNW_F9nW2lfbhGVgJBCSh_R42fwa06ejbQ_igjDy1FBjZJPZ5-o3etaX44e8W-q8o4rm-xQ1-Fvo_zj5I1weNY6Tnxg" \
-H "App-Id: xiPaOjVpBugwMgcYacdZtA" \
-H "App-Secret: -vhQNUkweQ8udbSof_w-Fg" \
-H "Access-Token: 057b31e63213d7c1f825398fb26de481c5d97ff2d89caad409c2b765418f84ca398f9338df21012f3e004d4c73fef623ce8464e829ce9e58ffc52fdbc48da467" \
-H "Client-Request-Id: 17" \
-X GET "/api/v2/payments/:id"
Example of request parameters
![]()
{"data":{"id":961},"exp":1574093210,"id":141}
Example of response
![]()
{"data":{"status":"closed","description":"Test payment","fees":[{"amount":0.25,"description":"Bank fee.","currency_code":"EUR"},{"amount":0.1,"description":"Payment fee.","currency_code":"EUR"}],"updated_at":"2019-11-18T16:04:50.451Z","id":305,"payment_attributes":{"from_account":"9542342312","to_account":"3458979570","amount":"150.00","description":"Test payment."},"interactive_step_instruction":{"interactive_field":"sms_pincode","instruction":{}},"session":{"fail_message":"","id":501,"secret":"oxL4oeiCApNvSKQYKGoi","status":"processing","events":[{}],"success_at":"2019-11-18T16:04:51.450Z","expires_at":"2019-11-18T17:04:50.450Z","fail_at":""},"created_at":"2019-11-18T16:04:50.451Z"}}
Request
GET
/api/v2/payments/:id
Headers
| Header | Type | Description |
|---|---|---|
Authorization
|
string, required |
JSON Web Token containing payload, signed using RSA256 and application.private_key.
Can raise:
AuthorizationMissing
|
App-Id
|
string, required |
Application’s app_id from connection details tab.
Can raise:
OauthAppNotFound, CertificateNotFound
|
App-Secret
|
string, required |
Application’s app_secret from connection details tab.
|
Access-Token
|
string, required | Token for which we are requesting info. Can raise: TokenMissing, TokenNotFound, TokenRevoked, TokenExpired |
Client-Request-Id
|
string, optional |
Request identifier. If present, it will be returned within meta field in response.
|
Unpacked Request Authorization
Response
Upon successful request, 200 status code will be returned. See ‘Related Errors’ table for other possibilities.
Related Errors
| Class | Code | Description |
|---|---|---|
| TokenMissing | 400 | This request cannot be performed without Access_Token header. |
| AuthorizationMissing | 401 | Authorization header is missing. |
| TokenRevoked | 401 | Token specified in request is revoked and cannot be used anymore. |
| TokenExpired | 401 | Token specified in request is expired and cannot be used. |
| PaymentNotFound | 404 | Payment specified in request does not exist or cannot be retrieved. |
| OauthAppNotFound | 404 | OAuth Application specified in request does not exist or cannot be retrieved. |
| CertificateNotFound | 404 | Certificate has no permissions. |
| TokenNotFound | 404 | Token specified in request does not exist or cannot be retrieved. |
Confirm
This endpoint is used for processing additional interactive steps in the process of payment creation.
CURL
![]()
curl -i \
-H "Authorization: Bearer eyJhbGciOiJSUzI1NiJ9.eyJkYXRhIjp7ImNyZWRlbnRpYWxzIjp7InNtc19waW5jb2RlIjoiMTIzNDU2In19LCJleHAiOjE3NjE4MDU4MDYsImlzcyI6InByaW9yYS5zYWx0ZWRnZS5jb20ifQ.n9hvZxP6Lpzn6LxPZ55MK-L146JixeqLrb8VLbCK1t_7IRqbB4fV0YA7Q8plMz48bGyAJpVZjIDwfl1zBouwxC0fw6dKBiik-aPMJuq79z8VkV_nTQYs66sWz4IrBZA2JRulIkrTLdY2ZQ0Mz72QiZjhS9ECf9zwyM4CWcr7BxM86T7W8R48nWBt1frpl_9dLKd_v1dupFK22xSexgZAty-coPCOSbbQzew8boW-DwaPEDlfagbYidEmRmc_lcxJ0jQ3nwOeHxsMEAHXkn05kfDrEV_tgGJJkrioa-3_07CKDZ5HyZ6BuFE1csIPdoKYBV_XCOHsRfbsfzc2CDfAQA" \
-H "App-Id: kai5JbcoWosdVUzLG2ib1A" \
-H "App-Secret: H9EhmbtXlqm73MML5Z8E8w" \
-H "Access-Token: 19561f4a7115f1c8cd6818748e4f2f90aafa24ac42c139a0c99c92784a786e70eb7755be5582867fca28c78addd743f17c2758de65b0c69eb8ef78c049c62af6" \
-H "Client-Request-Id: 17" \
-X PUT "/api/v2/payments/:id"
Example of request parameters
![]()
{"data":{"credentials":{"sms_pincode":"123456"}},"exp":1574093209,"id":794}
Example of response
![]()
{"data":{"status":"good","description":"Internal transfer.","fees":[{"amount":0.25,"description":"Bank fee.","currency_code":"EUR"},{"amount":0.1,"description":"Payment fee.","currency_code":"EUR"}],"updated_at":"2019-11-18T16:04:50.249Z","id":691,"payment_attributes":{"from_account":"9542342312","to_account":"3458979570","amount":"150.00","description":"Test payment."},"session":{"fail_message":"","id":461,"secret":"yua36KyKycry_hAPQQVQ","status":"processing","events":[],"success_at":"","expires_at":"2019-11-18T16:04:50.249Z","fail_at":""},"created_at":"2019-11-18T16:04:50.249Z"}}
Request
PUT
/api/v2/payments/:id
Headers
| Header | Type | Description |
|---|---|---|
Authorization
|
string, required |
JSON Web Token containing payload, signed using RSA256 and application.private_key.
Can raise:
AuthorizationMissing
|
App-Id
|
string, required |
Application’s app_id from connection details tab.
Can raise:
OauthAppNotFound, CertificateNotFound
|
App-Secret
|
string, required |
Application’s app_secret from connection details tab.
|
Access-Token
|
string, required | Token for which we are requesting info. Can raise: TokenMissing, TokenNotFound, TokenRevoked, TokenExpired |
Client-Request-Id
|
string, optional |
Request identifier. If present, it will be returned within meta field in response.
|
Unpacked Request Authorization
Response
Upon successful request, 200 status code will be returned. See ‘Related Errors’ table for other possibilities.
Related Errors
| Class | Code | Description |
|---|---|---|
| SessionClosed | 400 | Session specified in request is already closed and cannot be modified. |
| TokenMissing | 400 | This request cannot be performed without Access_Token header. |
| SessionExpired | 401 | Found session is expired and cannot be processed anymore. |
| AuthorizationMissing | 401 | Authorization header is missing. |
| TokenRevoked | 401 | Token specified in request is revoked and cannot be used anymore. |
| TokenExpired | 401 | Token specified in request is expired and cannot be used. |
| PaymentNotFound | 404 | Payment specified in request does not exist or cannot be retrieved. |
| OauthAppNotFound | 404 | OAuth Application specified in request does not exist or cannot be retrieved. |
| CertificateNotFound | 404 | Certificate has no permissions. |
| TokenNotFound | 404 | Token specified in request does not exist or cannot be retrieved. |
Destroy
Cancel the payment that is in the process of creation, meaning it has not been confirmed yet.
CURL
![]()
curl -i \
-H "Authorization: Bearer eyJhbGciOiJSUzI1NiJ9.eyJkYXRhIjp7fSwiZXhwIjoxNzYxODA1ODA2LCJpc3MiOiJwcmlvcmEuc2FsdGVkZ2UuY29tIn0.FtOZZL1isT4gLYU8ppv0e37lFt20opbiS2DNBF-4VhVslKCQVamBmXNT3Z917o5sWYj7VUGtSk0p1ysE-pHAhGx01HGy1urPMAjOft01wK9TsE2t5tIjl0dZOG-iBAZyp90WaD0hOZXB9a0NV0dXFvzVkP6uqWH82PJEJ-TAtmTzNwuRFt_ZI6OMpG3ft8qSUg-XCGEzcdRXipofwlASGnejVezMP8WnRYMd5-FvFyeufviIHpb174SYNupVrZOyUIpYVg49vYQLyYecWJVhVCMrrrYftmVHPVO8TvnT9aw5uI_0yWs9WwZ5bBMsKrhdVCKed4m2faJ8XLnefYb27g" \
-H "App-Id: DZ8IEYmbfDvS3eMeLhA-Lw" \
-H "App-Secret: 5FXgZCioWalfvTGVHqNe0g" \
-H "Access-Token: 55de2eb27669505499da9cdfd7d8f9dccbc61b3c2d158df4959c35d01fc0dc856505986f750f4d84b6bee0b85d4e6dfb3e6309e59078ec81832274c72bb62d1a" \
-H "Client-Request-Id: 17" \
-X DELETE "/api/v2/payments/:id"
Example of request parameters
![]()
{"data":{},"exp":1574093210,"id":546}
Example of response
![]()
{"data":{"payment_id":324}}
Request
DELETE
/api/v2/payments/:id
Headers
| Header | Type | Description |
|---|---|---|
Authorization
|
string, required |
JSON Web Token containing payload, signed using RSA256 and application.private_key.
Can raise:
AuthorizationMissing
|
App-Id
|
string, required |
Application’s app_id from connection details tab.
Can raise:
OauthAppNotFound, CertificateNotFound
|
App-Secret
|
string, required |
Application’s app_secret from connection details tab.
|
Access-Token
|
string, required | Token for which we are requesting info. Can raise: TokenMissing, TokenNotFound, TokenRevoked, TokenExpired |
Client-Request-Id
|
string, optional |
Request identifier. If present, it will be returned within meta field in response.
|
Unpacked Request Authorization
Response
Upon successful request, 200 status code will be returned. See ‘Related Errors’ table for other possibilities.
Related Errors
| Class | Code | Description |
|---|---|---|
| SessionClosed | 400 | Session specified in request is already closed and cannot be modified. |
| TokenMissing | 400 | This request cannot be performed without Access_Token header. |
| SessionExpired | 401 | Found session is expired and cannot be processed anymore. |
| AuthorizationMissing | 401 | Authorization header is missing. |
| TokenRevoked | 401 | Token specified in request is revoked and cannot be used anymore. |
| TokenExpired | 401 | Token specified in request is expired and cannot be used. |
| PaymentNotFound | 404 | Payment specified in request does not exist or cannot be retrieved. |
| OauthAppNotFound | 404 | OAuth Application specified in request does not exist or cannot be retrieved. |
| CertificateNotFound | 404 | Certificate has no permissions. |
| TokenNotFound | 404 | Token specified in request does not exist or cannot be retrieved. |