Overview
\nThe Original Credit Transaction (OCT), commonly referred to as Push to Card, enables merchants to facilitate near-instantaneous fund transfers directly to a customer’s eligible Visa or Mastercard debit or credit card. Unlike traditional refund processes that can only return funds from a previous purchase, OCT allows for independent disbursements of funds to a cardholder's account.
\nThis feature is designed for high-velocity industries that require frictionless, real-time payouts, such as:
\n- \n
Gaming & Betting: Real-time withdrawal of player winnings.
\n \nMarketplaces: Payouts to sellers or service providers.
\n \nCorporate Disbursements: Instant insurance claims, rebates, or compensation payments.
\n \nMerchant Settlements: Faster access to processed funds for sub-merchants.
\n \n
By utilizing the Paybomb /payout API with the PAYOUT-CARDS method, you benefit from a unified orchestration layer that handles the complexities of card network routing, ensuring high success rates and global reach while maintaining the same security standards as your standard payment integrations.
\n
Integration Steps
\n- \n
Enable OCT: Ensure \"Push to Card\" permissions are enabled for your merchant account in the Paybomb Merchant Portal.
\n \nCollect Card Details: Use a secure method to collect the recipient's card number and expiry date or can you Paybomb's cashier to do that.
\n \nExecute Payout: Call the
\n/payoutendpoint with the OCT-specific payout method. \nHandle Webhooks: Listen for the
\npaidorfailureevents to update your internal records. \n
Mandatory parameters in the request body:
\nNote:
\nIf the merchant is not PCI DSS compliant then they will need to use our cashier and asking the user to enter the card details there. Check the cashier section for more details. If the merchant is PCI DSS compliant then they can use the payout API and send the card details as shown above.
\nIf the merchant wants to use token_reference for doing a payout, then please have a look at the Network Tokenisation Section.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"90ea93fb-a535-4243-bd42-deba195cc075","id":"90ea93fb-a535-4243-bd42-deba195cc075","name":"APIs","type":"folder"}},"urlObject":{"path":["payout",""],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"98bda83b-fcda-4c9b-b970-b62768757137","name":"Success","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"body":{"mode":"raw","raw":"{\r\n \"client\": {\r\n \"email\": \"rahul@gmail.com\",\r\n \"country\": \"GB\",\r\n \"city\": \"London\",\r\n \"stateCode\": \"QLD\",\r\n \"full_name\": \"Rahul Jain\",\r\n \"street_address\": \"10 New Burlington Street Apt. 214\",\r\n \"zip_code\": \"W1S 3BE\",\r\n \"phone\": \"+44 9876543210\",\r\n \"gender\": \"M\",\r\n \"date_of_birth\": \"1970-07-10\"\r\n },\r\n \"purpose\": \"Testing cards payout\",\r\n \"currency\": \"GBP\",\r\n \"merchantRef\": \"YOUR ORDER ID\", // optional\r\n \"payoutMethod\": \"PAYOUT-CARDS\",\r\n \"amount\": 100.0,\r\n \"success_redirect\": \"https://your.success.redirect.com\",\r\n \"pending_redirect\": \"https://your.pending.redirect.com\",\r\n \"failure_redirect\": \"https://your.failure.redirect.com\",\r\n \"success_callback\": \"https://your.success.callback.com\",\r\n \"failure_callback\": \"https://your.failure.callback.com\",\r\n \"extraParam\": {\r\n \"cardNumber\": \"5431240006334004\",\r\n \"cardHolderName\": \"Rahul Agarwal\",\r\n \"expiryYear\": \"2030\",\r\n \"expiryMonth\": \"11\"\r\n }\r\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/payout/"},"status":"Accepted","code":202,"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\r\n \"payoutId\": \"6977137755e0628e3600c562\",\r\n \"client\": {\r\n \"email\": \"rahul@gmail.com\",\r\n \"country\": \"GB\",\r\n \"city\": \"London\",\r\n \"stateCode\": \"QLD\",\r\n \"full_name\": \"Rahul Jain\",\r\n \"street_address\": \"10 New Burlington Street Apt. 214\",\r\n \"zip_code\": \"W1S 3BE\",\r\n \"phone\": \"+44 9876543210\",\r\n \"gender\": \"M\",\r\n \"date_of_birth\": \"1970-07-10\"\r\n },\r\n \"updated_on\": 1769411447,\r\n \"extraParam\": {\r\n \"cardNumber\": \"5431240006334004\",\r\n \"cardHolderName\": \"Rahul Agarwal\",\r\n \"expiryYear\": \"2030\",\r\n \"expiryMonth\": \"11\"\r\n },\r\n \"payoutMethod\": \"PAYOUT-CARDS\",\r\n \"amountUnit\": \"MAJOR\",\r\n \"amount\": 100.0,\r\n \"errorMsg\": \"\",\r\n \"purpose\": \"Testing cards payout\",\r\n \"created_on\": 1769411447,\r\n \"merchantRef\": \"YOUR ORDER ID\",\r\n \"status\": \"PAID\",\r\n \"status_history\": [\r\n {\r\n \"status\": \"created\",\r\n \"timestamp\": 1769411447\r\n },\r\n {\r\n \"status\": \"payout_in_process\",\r\n \"timestamp\": 1769411447\r\n },\r\n {\r\n \"status\": \"paid\",\r\n \"timestamp\": 1769411447\r\n },\r\n\r\n ],\r\n \"currency\": \"GBP\",\r\n \"extraFee\": \"0\",\r\n \"paymentOn\": 0,\r\n \"checkout_url\": \"https://test4.paymentsclub.net/payout/092e59f94279a3742fa3715fe9a2112a/\",\r\n \"taxAmount\": 0.0,\r\n \"taxPercent\": 0.0,\r\n \"success_redirect\": \"https://your.success.redirect.com\",\r\n \"pending_redirect\": \"https://your.pending.redirect.com\",\r\n \"failure_redirect\": \"https://your.failure.redirect.com\",\r\n \"success_callback\": \"https://your.success.callback.com\",\r\n \"failure_callback\": \"https://your.failure.callback.com\"\r\n \"redirectType\": \"POST\",\r\n \"sessionId\": \"\",\r\n \"surcharge\": 0.0,\r\n \"surchargeType\": \"\",\r\n \"trxMethod\": \"CARDS\",\r\n \"success_callback\": \"\",\r\n \"failure_callback\": \"\"\r\n}"},{"id":"24b2f78b-5208-423a-a643-0ef19be61054","name":"Error","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"body":{"mode":"raw","raw":"{\r\n \"client\": {\r\n \"email\": \"rahul@gmail.com\",\r\n \"country\": \"GB\",\r\n \"city\": \"London\",\r\n \"stateCode\": \"QLD\",\r\n \"full_name\": \"Rahul Jain\",\r\n \"street_address\": \"10 New Burlington Street Apt. 214\",\r\n \"zip_code\": \"W1S 3BE\",\r\n \"phone\": \"+44 9876543210\",\r\n \"gender\": \"M\",\r\n \"date_of_birth\": \"1970-07-10\"\r\n },\r\n \"purpose\": \"Testing cards payout\",\r\n \"currency\": \"GBP\",\r\n \"merchantRef\": \"YOUR ORDER ID\", // optional\r\n \"payoutMethod\": \"PAYOUT-CARDS\",\r\n \"amount\": 100.0,\r\n \"success_redirect\": \"https://your.success.redirect.com\",\r\n \"pending_redirect\": \"https://your.pending.redirect.com\",\r\n \"failure_redirect\": \"https://your.failure.redirect.com\",\r\n \"success_callback\": \"https://your.success.callback.com\",\r\n \"failure_callback\": \"https://your.failure.callback.com\",\r\n \"extraParam\": {\r\n \"cardNumber\": \"5431240006334004\",\r\n \"cardHolderName\": \"Rahul Agarwal\",\r\n \"expiryYear\": \"2030\",\r\n \"expiryMonth\": \"11\"\r\n }\r\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/payout/"},"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\r\n \"payoutId\": \"6977137755e0628e3600c562\",\r\n \"client\": {\r\n \"email\": \"rahul@gmail.com\",\r\n \"country\": \"GB\",\r\n \"city\": \"London\",\r\n \"stateCode\": \"QLD\",\r\n \"full_name\": \"Rahul Jain\",\r\n \"street_address\": \"10 New Burlington Street Apt. 214\",\r\n \"zip_code\": \"W1S 3BE\",\r\n \"phone\": \"+44 9876543210\",\r\n \"gender\": \"M\",\r\n \"date_of_birth\": \"1970-07-10\"\r\n },\r\n \"updated_on\": 1769411447,\r\n \"extraParam\": {\r\n \"cardNumber\": \"5431240006334004\",\r\n \"cardHolderName\": \"Rahul Agarwal\",\r\n \"expiryYear\": \"2030\",\r\n \"expiryMonth\": \"11\"\r\n },\r\n \"payoutMethod\": \"PAYOUT-CARDS\",\r\n \"amountUnit\": \"MAJOR\",\r\n \"amount\": 100.0,\r\n \"errorMsg\": \"\",\r\n \"purpose\": \"Testing cards payout\",\r\n \"created_on\": 1769411447,\r\n \"merchantRef\": \"YOUR ORDER ID\",\r\n \"status\": \"error\",\r\n \"status_history\": [\r\n {\r\n \"status\": \"created\",\r\n \"timestamp\": 1769411447\r\n },\r\n {\r\n \"status\": \"error\",\r\n \"timestamp\": 1769411447\r\n },\r\n\r\n ],\r\n \"currency\": \"GBP\",\r\n \"extraFee\": \"0\",\r\n \"paymentOn\": 0,\r\n \"checkout_url\": \"https://test4.paymentsclub.net/payout/092e59f94279a3742fa3715fe9a2112a/\",\r\n \"taxAmount\": 0.0,\r\n \"taxPercent\": 0.0,\r\n \"success_redirect\": \"https://your.success.redirect.com\",\r\n \"pending_redirect\": \"https://your.pending.redirect.com\",\r\n \"failure_redirect\": \"https://your.failure.redirect.com\",\r\n \"success_callback\": \"https://your.success.callback.com\",\r\n \"failure_callback\": \"https://your.failure.callback.com\"\r\n \"redirectType\": \"POST\",\r\n \"sessionId\": \"\",\r\n \"surcharge\": 0.0,\r\n \"surchargeType\": \"\",\r\n \"trxMethod\": \"BANKTRANSFER\",\r\n \"success_callback\": \"\",\r\n \"failure_callback\": \"\"\r\n}"}],"_postman_id":"26518286-bbc7-4c36-9e9c-d584039d3994"}],"id":"90ea93fb-a535-4243-bd42-deba195cc075","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"221f3b39-56b1-4f1c-810e-f6d5cb26aaf9"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"b7cbefe1-d1ca-4c8e-9d59-8c9425672933"}}],"_postman_id":"90ea93fb-a535-4243-bd42-deba195cc075","description":""}],"id":"b1d59495-e887-499f-96b9-1358c52e79c9","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"exec":[""],"id":"ca558a24-913f-40df-a0ca-05290c210518"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"exec":[""],"id":"b479be32-7aba-4e69-a88d-f3605660de22"}}],"_postman_id":"b1d59495-e887-499f-96b9-1358c52e79c9","description":""},{"name":"💰 APMs (Alternative Payment Methods)","item":[{"name":"🌎 Google Pay Redirect","item":[{"name":"Concepts","item":[],"id":"33d9cd54-f387-4c78-8d28-7be6bc7c41ba","description":"Overview
\nGoogle Pay enables customers to make payments on a merchant’s website or app using credit or debit cards securely stored in their Google Account. During checkout, Google Pay presents a payment sheet where customers can select their preferred card and confirm the transaction.
\nCustomers add their payment cards to the Google Pay wallet, which securely stores the card details. When making a purchase, they simply choose Google Pay as the payment method and complete the payment using a saved card—eliminating the need to enter card information repeatedly.
\n\n
Features
\n- \n
Convenient: Customers can pay using cards already saved in Google Pay, reducing friction during checkout.
\n \nSecure: Uses tokenization to ensure sensitive card information is never exposed during the payment flow.
\n \n3D Secure support: The payment handle created through the integration supports 3D Secure authentication when required, enabling secure transactions.
\n \nWide coverage: Supported across multiple regions and currencies.
\n \n
\n
By integrating Google Pay through the Paybomb API, you can offer your customers a fast, secure, and seamless payment experience.
\n\n
Note
\nThis is a redirection-based payment method. During the payment flow, the user is redirected to a third-party application or interface, where the Google Pay button is displayed for completing the transaction.
\n","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"76da24b6-23ae-42b8-bfc0-d0fb21a4346e"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"c8161120-823e-4964-9c32-42693beea2ef"}}],"_postman_id":"33d9cd54-f387-4c78-8d28-7be6bc7c41ba"},{"name":"APIs","item":[{"name":"Purchases","id":"2b3ad128-9889-4cd0-a2e2-129edc8ab63f","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json"},{"key":"Authorization","value":"Bearer Token"}],"body":{"mode":"raw","raw":"{\r\n \"client\": {\r\n \"email\": \"rahultest@gmail.com\",\r\n \"country\": \"GB\",\r\n \"city\": \"London\",\r\n \"stateCode\": \"RJ\",\r\n \"street_address\": \"10 New Burlington StreetApt. 214\",\r\n \"zip_code\": \"W1S 3BE\",\r\n \"date_of_birth\": \"1994-31-04\",\r\n \"phone\": \"+91 9634088561\",\r\n \"full_name\": \"Rahul Agarwal\"\r\n },\r\n \"purchase\": {\r\n \"currency\": \"EUR\",\r\n \"products\": [\r\n {\r\n \"name\": \"gaming cards \",\r\n \"price\": 10\r\n }\r\n ]\r\n },\r\n \"brand_id\": \"your-brandid\",\r\n \"paymentMethod\": \"GOOGLEPAY-REDIRECT\",\r\n \"success_redirect\": \"https://your-redirect-url?issucces=true\",\r\n \"pending_redirect\": \"https://your-redirect-url?ispending=true\",\r\n \"failure_redirect\": \"https://your-redirect-url?isfailure=true\",\r\n \"success_callback\": \"https://your-webhook-url\",\r\n \"failure_callback\": \"https://your-webhook-url\"\r\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/purchases/","description":"To Initiate a payment, the very first call to make is /purchases with the required data in the request body.
To generate a Purchase, you are required to provide the Brand ID (in the request body) and API key (in the header) Both can be located in the Dashboard section of your merchant account login.
The request body structure is shown on the request body of the example request shown here.
\nThe following (see table below) are the mandatory parameters that are required to create a purchase request.
\nParameters in the request body:
\nOptional Parameters
\nexpireInMin
\nThis parameter, when passed in the PayIn request, sets the time window within which a customer should make the Interac payment through their bank's app. If a customer doesn't complete the payment within the configured time window, the status of the payment will be marked as 'EXPIRED' in Paybomb.
\nHowever, in certain cases, a payment made outside of this window could still be successful i.e. customer's account may be debited which would result in inconsistencies among Paybomb's, merchant's and customer's status of the transaction. To avoid such cases it is advised to set the expiry time limit appropriately and advise the customers to make payment within this window. However, if there is an inconsistency between the status at Paybomb and at customer's Bank, the merchant and Paybomb will reconcile the amounts during the settlement.
\nmerchantRef
\nThe merchantRef parameter, although not mandatory, is strongly advised for merchants to specify. Its inclusion offers two significant advantages for the merchant:
- \n
Prevention of Duplicate Requests: When a
\nmerchantRefis utilized, it acts as a unique identifier. This means that if a second purchase request is made using the samemerchantRef(reference number), the system will recognize it and prevent duplicate transactions from occurring. This prevents unintended or duplicate purchases. \nFacilitation of Transaction Retrieval: In situations where the response from the initial purchase request times out or the 'purchaseId' isn't received, having the
\nmerchantRefallows the merchant to retrieve detailed transaction information. This ensures they can track and access the specific purchase details related to that reference, even if the immediate response was not received. \n
However, if the merchant does not specify the 'merchantRef' parameter, the platform will automatically assign and use an internal 'purchaseId' as a reference for that transaction.
\npaymentMethod
\nThe paymentMethod parameter identifies which payment solution merchant wants to use to perform a transaction. If parameter is provided, then Paybomb will perform direct payment with the selected payment method instead of loading Paybomb URL.
OVERVIEW
\nThe createSession API is designed to initiate a payment session for a customer after their profile has been created via the createCustomer API. The session is automatically generated at the backend on the merchant’s checkout URL. This session allows the customer to continue with their transaction without having to manually interact with the session URL, and ensures the session remains active until the payment is completed or the session expires.
This API improves the user experience by reducing transaction failures and enhancing the overall payment process, thus reducing transaction churn rates.
\nMandatory Parameters
\nUsage Flow
\n- \n
Customer completes the
\ncreateCustomerAPI: Once the customer is created via thecreateCustomerAPI, the merchant proceeds to call thecreateSessionAPI to generate a session. \nMerchant sends
\ncreateSessionrequest: The merchant sends aPOSTrequest to thecreateSessionAPI with the customer’scustomerIdand the merchant’sbrandId. \nSession created automatically on the checkout URL: Paybomb creates the session and associates it with the merchant’s checkout page. This session remains active on the backend, allowing the customer to continue the payment process without interruption.
\n \nCustomer proceeds to checkout: The customer is redirected to the checkout page as part of the merchant's payment flow, where the session is automatically validated. The session remains active for a set period, allowing the customer to complete the payment without needing to manually interact with the session URL.
\n \nSession Expiry: The session expires after the set expiration time (
\nexpiryOn), ensuring the payment process is completed within the defined window. Default is 15 mins from the creation time. \n
\n
Benefits
\n- \n
Seamless Checkout: The session URL is automatically generated and active at the backend, ensuring a smoother and uninterrupted customer experience.
\n \nReduced Transaction Failures: By ensuring the session remains active during the payment process, the chances of transaction failures due to session timeouts are minimized.
\n \nImproved User Experience: The customer does not need to click on a session URL or navigate away from the page, leading to faster and more secure payment processing.
\n \n
This API tells you about all the details of a purchase (PayIn), including its history
\nMandatory
\nyou need to pass the PurchaseID in the API URL
Possible Value of Status
\nResponse Examples
\nIn the response examples you can see instances of both Paid and Error Status purchases.
Error Details
\nIf there are any issues on the Purchase you can get more details from the transaction_data.attempts.error attribute of the response object
Errors
\nIf there are any errors then it'll be in the format of :
\n{\n \"message\": \"descriptive error message\",\n \"code\": \"error_code\"\n}\n\nPlease see the Status Code section for further details.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"7e4346a7-1c22-4378-bb36-3f70a3998bbd","id":"7e4346a7-1c22-4378-bb36-3f70a3998bbd","name":"APIs","type":"folder"}},"urlObject":{"path":["purchases","{purchaseId}",""],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"b07253b9-59cd-4eff-8e75-3e01adb33d1c","name":"Purchase - success","originalRequest":{"method":"GET","header":[{"key":"Content-Type","value":"application/json"},{"key":"Authorization","value":"Bearer Token"}],"url":"https://app.paybomb.tech/api/v1/purchases/{purchaseId}/"},"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\r\n \"purchaseId\": \"69634df44549cbd3547ac750\",\r\n \"client\": {\r\n \"customerId\": \"NA\",\r\n \"email\": \"rahultest@gmail.com\",\r\n \"phone\": \"+91 9634088561\",\r\n \"full_name\": \"Rahul Agarwal\",\r\n \"date_of_birth\": \"1994-31-04\",\r\n \"street_address\": \"10 New Burlington StreetApt. 214\",\r\n \"country\": \"GB\",\r\n \"city\": \"London\",\r\n \"zip_code\": \"W1S 3BE\",\r\n \"cc\": [],\r\n \"bcc\": [],\r\n \"stateCode\": \"RJ\"\r\n },\r\n \"updated_on\": 1768115701,\r\n \"type\": \"purchase\",\r\n \"paymentMethod\": \"GOOGLEPAY-REDIRECT\",\r\n \"amountUnit\": \"MAJOR\",\r\n \"errorMsg\": \"\",\r\n \"errorCode\": \"NA\",\r\n \"force_recurring\": false,\r\n \"created_on\": 1768115700,\r\n \"merchantRef\": \"69634df44549cbd3547ac750\",\r\n \"purchase\": {\r\n \"currency\": \"EUR\",\r\n \"products\": [\r\n {\r\n \"name\": \"gaming cards\",\r\n \"quantity\": 1.0,\r\n \"price\": 1.0,\r\n \"discount\": 0,\r\n \"tax_percent\": \"0.00\"\r\n }\r\n ],\r\n \"total\": 1.0,\r\n \"requestAmount\": 1.0,\r\n \"language\": \"en\",\r\n \"notes\": \"\",\r\n \"debt\": 0,\r\n \"total_formatted\": 1.0,\r\n \"taxAmount\": 0.0,\r\n \"taxPercent\": 0.0,\r\n \"request_client_details\": [],\r\n \"email_message\": \"\"\r\n },\r\n \"payment\": {\r\n \"is_outgoing\": false,\r\n \"payment_type\": \"PURCHASE\",\r\n \"amount\": 1.0,\r\n \"currency\": \"EUR\",\r\n \"net_amount\": 1.0,\r\n \"fee_amount\": 0.0,\r\n \"pending_amount\": 0.0,\r\n \"pending_unfreeze_on\": null,\r\n \"description\": \"\",\r\n \"paid_on\": 1768115700,\r\n \"remote_paid_on\": 1768115700\r\n },\r\n \"issuer_details\": {\r\n \"website\": \"\",\r\n \"legal_street_address\": \"\",\r\n \"legal_country\": \"\",\r\n \"legal_city\": \"\",\r\n \"legal_zip_code\": \"\",\r\n \"bank_accounts\": [\r\n {}\r\n ],\r\n \"legal_name\": \"Testing\",\r\n \"brand_name\": \"Testing\",\r\n \"registration_number\": \"\",\r\n \"tax_number\": \"\"\r\n },\r\n \"transaction_data\": {\r\n \"payment_method\": \"\",\r\n \"flow\": \"payform\",\r\n \"extra\": {\r\n \"amount\": 1.0,\r\n \"masked_pan\": \"GOOGLEPAY-REDIRECT\"\r\n },\r\n \"country\": \"\",\r\n \"attempts\": [\r\n {\r\n \"client_ip\": \"183.83.53.41\",\r\n \"type\": \"execute\",\r\n \"payment_method\": \"GOOGLEPAY-REDIRECT\",\r\n \"flow\": \"payform\",\r\n \"successful\": true,\r\n \"country\": \"GOOGLEPAY-REDIRECT\",\r\n \"processing_time\": 1768115700,\r\n \"extra\": {\r\n \"amount\": 1.0,\r\n \"masked_pan\": \"GOOGLEPAY-REDIRECT\"\r\n }\r\n }\r\n ]\r\n },\r\n \"status\": \"PAID\",\r\n \"status_history\": [\r\n {\r\n \"status\": \"created\",\r\n \"timestamp\": 1768115700\r\n },\r\n {\r\n \"status\": \"pending_execute\",\r\n \"timestamp\": 1768115700\r\n },\r\n {\r\n \"status\": \"payment_in_process\",\r\n \"timestamp\": 1768115701\r\n },\r\n {\r\n \"status\": \"paid\",\r\n \"timestamp\": 1768115701\r\n }\r\n ],\r\n \"is_test\": false,\r\n \"brand_id\": \"59c5ed48-caf9-464a-ba54-26e1e02bc1bc\",\r\n \"send_receipt\": false,\r\n \"is_recurring_token\": false,\r\n \"skip_capture\": false,\r\n \"reference_generated\": \"PS363\",\r\n \"issued\": \"2026-01-11\",\r\n \"due\": 1768115700,\r\n \"refund_upto\": 1783664101,\r\n \"cc_descriptor\": \"\",\r\n \"fraudScore\": \"0\",\r\n \"trustScore\": \"1\",\r\n \"extraFee\": \"0\",\r\n \"pix_payload\": {},\r\n \"payInDetails\": {},\r\n \"paidOn\": 0,\r\n \"receivedAmt\": 0.0,\r\n \"taxAmount\": 0.0,\r\n \"surcharge\": 0.0,\r\n \"surchargeType\": \"\",\r\n \"sessionId\": \"\",\r\n \"refund_availability\": \"NONE\",\r\n \"refundable_amount\": 1.0,\r\n \"success_redirect\": \"https://your-redirect-url?issucces=true\",\r\n \"pending_redirect\": \"https://your-redirect-url?ispending=true\",\r\n \"failure_redirect\": \"https://your-redirect-url?isfailure=true\",\r\n \"success_callback\": \"https://your-webhook-url\",\r\n \"failure_callback\": \"https://your-webhook-url\"\r\n \"platform\": \"API\",\r\n \"created_from_ip\": \"183.83.53.41\",\r\n \"checkout_url\": \"https://api.choicepay.ca/payments/deb852445bd4b0fa6c4587f652174ab9/\",\r\n \"payoutProcess\": false\r\n}"},{"id":"8cd73b95-1ee7-4012-9ca5-2fccf71a5791","name":"Purchase - failure","originalRequest":{"method":"GET","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"url":"https://app.paybomb.tech/api/v1/purchases/{purchaseId}/"},"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\r\n \"message\": \"Error Message\",\r\n \"code\": \"error_code\"\r\n}"}],"_postman_id":"79c53474-af6f-46df-9213-c7d659bac7a3"}],"id":"7e4346a7-1c22-4378-bb36-3f70a3998bbd","description":"API Flow
\n- \n
The merchant initiates the purchase via the create purchase API and passing the appropriate payment method. If successful, they receive a checkout URL in the response JSON.
\n \nUpon utilizing the checkout URL, the user will be presented with a screen where he will be shown a button to pay via Googlepay.
\n \nAfter clicking the button, the user will see all the cards stored in the google wallet and he can choose one of the cards to make the purchase.
\n \nAfter a successful or failed payment by the end user, an appropriate webhook would be sent to the merchant. The user would also be redirected to the appropriate redirect URL.
\n \n
Overview
\nApple Pay enables customers to make payments on a merchant’s website or app using credit or debit cards securely stored in their Apple Wallet. During checkout, Apple Pay presents a payment sheet where customers can select their preferred card and confirm the payment using Touch ID, Face ID, or their device passcode.
\nCustomers add their payment cards to Apple Wallet, which securely stores the card information. When making a purchase, they simply select Apple Pay as the payment method and complete the transaction using a saved card—eliminating the need to manually enter card details for each payment.
\n\n
Features
\n- \n
Convenient: Customers can pay using cards already saved in Apple Pay, reducing checkout friction.
\n \nSecure: Uses device-specific tokenization (DPAN/MPAN) to protect sensitive card data during the payment process.
\n \n3D Secure support: The payment handle created through the integration supports 3D Secure authentication when required, ensuring secure transactions.
\n \nWide coverage: Supported across multiple regions and currencies.
\n \n
\n
By integrating Apple Pay through the Paybomb API, you can provide your customers with a fast, secure, and seamless payment experience.
\n\n
Note
\nThis is a redirection-based payment method. During the payment flow, the user is redirected to a third-party application or interface, where the Apple Pay button is displayed to complete the payment.
\n","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"1b7aceca-e751-4ff9-b22b-d6d0e0d7e6ef"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"9ca5d849-b4ce-4be2-b065-4dff0c437490"}}],"_postman_id":"cf44b219-2bea-459a-bdf6-eb6134ae883d"},{"name":"APIs","item":[{"name":"Purchases","id":"464b5ca3-ff57-43ef-9117-15f2c675f744","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json"},{"key":"Authorization","value":"Bearer Token"}],"body":{"mode":"raw","raw":"{\r\n \"client\": {\r\n \"email\": \"rahultest@gmail.com\",\r\n \"country\": \"GB\",\r\n \"city\": \"London\",\r\n \"stateCode\": \"RJ\",\r\n \"street_address\": \"10 New Burlington StreetApt. 214\",\r\n \"zip_code\": \"W1S 3BE\",\r\n \"date_of_birth\": \"1994-31-04\",\r\n \"phone\": \"+91 9634088561\",\r\n \"full_name\": \"Rahul Agarwal\"\r\n },\r\n \"purchase\": {\r\n \"currency\": \"EUR\",\r\n \"products\": [\r\n {\r\n \"name\": \"gaming cards \",\r\n \"price\": 10\r\n }\r\n ]\r\n },\r\n \"brand_id\": \"your-brandid\",\r\n \"paymentMethod\": \"APPLEPAY-REDIRECT\",\r\n \"success_redirect\": \"https://your-redirect-url?issucces=true\",\r\n \"pending_redirect\": \"https://your-redirect-url?ispending=true\",\r\n \"failure_redirect\": \"https://your-redirect-url?isfailure=true\",\r\n \"success_callback\": \"https://your-webhook-url\",\r\n \"failure_callback\": \"https://your-webhook-url\"\r\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/purchases/","description":"To Initiate a payment, the very first call to make is /purchases with the required data in the request body.
To generate a Purchase, you are required to provide the Brand ID (in the request body) and API key (in the header) Both can be located in the Dashboard section of your merchant account login.
The request body structure is shown on the request body of the example request shown here.
\nThe following (see table below) are the mandatory parameters that are required to create a purchase request.
\nParameters in the request body:
\nOptional Parameters
\nexpireInMin
\nThis parameter, when passed in the PayIn request, sets the time window within which a customer should make the Interac payment through their bank's app. If a customer doesn't complete the payment within the configured time window, the status of the payment will be marked as 'EXPIRED' in Paybomb.
\nHowever, in certain cases, a payment made outside of this window could still be successful i.e. customer's account may be debited which would result in inconsistencies among Paybomb's, merchant's and customer's status of the transaction. To avoid such cases it is advised to set the expiry time limit appropriately and advise the customers to make payment within this window. However, if there is an inconsistency between the status at Paybomb and at customer's Bank, the merchant and Paybomb will reconcile the amounts during the settlement.
\nmerchantRef
\nThe merchantRef parameter, although not mandatory, is strongly advised for merchants to specify. Its inclusion offers two significant advantages for the merchant:
- \n
Prevention of Duplicate Requests: When a
\nmerchantRefis utilized, it acts as a unique identifier. This means that if a second purchase request is made using the samemerchantRef(reference number), the system will recognize it and prevent duplicate transactions from occurring. This prevents unintended or duplicate purchases. \nFacilitation of Transaction Retrieval: In situations where the response from the initial purchase request times out or the 'purchaseId' isn't received, having the
\nmerchantRefallows the merchant to retrieve detailed transaction information. This ensures they can track and access the specific purchase details related to that reference, even if the immediate response was not received. \n
However, if the merchant does not specify the 'merchantRef' parameter, the platform will automatically assign and use an internal 'purchaseId' as a reference for that transaction.
\npaymentMethod
\nThe paymentMethod parameter identifies which payment solution merchant wants to use to perform a transaction. If parameter is provided, then Paybomb will perform direct payment with the selected payment method instead of loading Paybomb URL.
OVERVIEW
\nThe createSession API is designed to initiate a payment session for a customer after their profile has been created via the createCustomer API. The session is automatically generated at the backend on the merchant’s checkout URL. This session allows the customer to continue with their transaction without having to manually interact with the session URL, and ensures the session remains active until the payment is completed or the session expires.
This API improves the user experience by reducing transaction failures and enhancing the overall payment process, thus reducing transaction churn rates.
\nMandatory Parameters
\nUsage Flow
\n- \n
Customer completes the
\ncreateCustomerAPI: Once the customer is created via thecreateCustomerAPI, the merchant proceeds to call thecreateSessionAPI to generate a session. \nMerchant sends
\ncreateSessionrequest: The merchant sends aPOSTrequest to thecreateSessionAPI with the customer’scustomerIdand the merchant’sbrandId. \nSession created automatically on the checkout URL: Paybomb creates the session and associates it with the merchant’s checkout page. This session remains active on the backend, allowing the customer to continue the payment process without interruption.
\n \nCustomer proceeds to checkout: The customer is redirected to the checkout page as part of the merchant's payment flow, where the session is automatically validated. The session remains active for a set period, allowing the customer to complete the payment without needing to manually interact with the session URL.
\n \nSession Expiry: The session expires after the set expiration time (
\nexpiryOn), ensuring the payment process is completed within the defined window. Default is 15 mins from the creation time. \n
\n
Benefits
\n- \n
Seamless Checkout: The session URL is automatically generated and active at the backend, ensuring a smoother and uninterrupted customer experience.
\n \nReduced Transaction Failures: By ensuring the session remains active during the payment process, the chances of transaction failures due to session timeouts are minimized.
\n \nImproved User Experience: The customer does not need to click on a session URL or navigate away from the page, leading to faster and more secure payment processing.
\n \n
This API tells you about all the details of a purchase (PayIn), including its history
\nMandatory
\nyou need to pass the PurchaseID in the API URL
Possible Value of Status
\nResponse Examples
\nIn the response examples you can see instances of both Paid and Error Status purchases.
Error Details
\nIf there are any issues on the Purchase you can get more details from the transaction_data.attempts.error attribute of the response object
Errors
\nIf there are any errors then it'll be in the format of :
\n{\n \"message\": \"descriptive error message\",\n \"code\": \"error_code\"\n}\n\nPlease see the Status Code section for further details.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"fbcf6289-1ca0-4e35-9756-6ea0c5abb7a8","id":"fbcf6289-1ca0-4e35-9756-6ea0c5abb7a8","name":"APIs","type":"folder"}},"urlObject":{"path":["purchases","{purchaseId}",""],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"7ad37dad-df16-473e-81cc-c584704820a2","name":"Purchase - success","originalRequest":{"method":"GET","header":[{"key":"Content-Type","value":"application/json"},{"key":"Authorization","value":"Bearer Token"}],"url":"https://app.paybomb.tech/api/v1/purchases/{purchaseId}/"},"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\r\n \"purchaseId\": \"69634df44549cbd3547ac750\",\r\n \"client\": {\r\n \"customerId\": \"NA\",\r\n \"email\": \"rahultest@gmail.com\",\r\n \"phone\": \"+91 9634088561\",\r\n \"full_name\": \"Rahul Agarwal\",\r\n \"date_of_birth\": \"1994-31-04\",\r\n \"street_address\": \"10 New Burlington StreetApt. 214\",\r\n \"country\": \"GB\",\r\n \"city\": \"London\",\r\n \"zip_code\": \"W1S 3BE\",\r\n \"cc\": [],\r\n \"bcc\": [],\r\n \"stateCode\": \"RJ\"\r\n },\r\n \"updated_on\": 1768115701,\r\n \"type\": \"purchase\",\r\n \"paymentMethod\": \"APPLEPAY-REDIRECT\",\r\n \"amountUnit\": \"MAJOR\",\r\n \"errorMsg\": \"\",\r\n \"errorCode\": \"NA\",\r\n \"force_recurring\": false,\r\n \"created_on\": 1768115700,\r\n \"merchantRef\": \"69634df44549cbd3547ac750\",\r\n \"purchase\": {\r\n \"currency\": \"EUR\",\r\n \"products\": [\r\n {\r\n \"name\": \"gaming cards\",\r\n \"quantity\": 1.0,\r\n \"price\": 1.0,\r\n \"discount\": 0,\r\n \"tax_percent\": \"0.00\"\r\n }\r\n ],\r\n \"total\": 1.0,\r\n \"requestAmount\": 1.0,\r\n \"language\": \"en\",\r\n \"notes\": \"\",\r\n \"debt\": 0,\r\n \"total_formatted\": 1.0,\r\n \"taxAmount\": 0.0,\r\n \"taxPercent\": 0.0,\r\n \"request_client_details\": [],\r\n \"email_message\": \"\"\r\n },\r\n \"payment\": {\r\n \"is_outgoing\": false,\r\n \"payment_type\": \"PURCHASE\",\r\n \"amount\": 1.0,\r\n \"currency\": \"EUR\",\r\n \"net_amount\": 1.0,\r\n \"fee_amount\": 0.0,\r\n \"pending_amount\": 0.0,\r\n \"pending_unfreeze_on\": null,\r\n \"description\": \"\",\r\n \"paid_on\": 1768115700,\r\n \"remote_paid_on\": 1768115700\r\n },\r\n \"issuer_details\": {\r\n \"website\": \"\",\r\n \"legal_street_address\": \"\",\r\n \"legal_country\": \"\",\r\n \"legal_city\": \"\",\r\n \"legal_zip_code\": \"\",\r\n \"bank_accounts\": [\r\n {}\r\n ],\r\n \"legal_name\": \"Testing\",\r\n \"brand_name\": \"Testing\",\r\n \"registration_number\": \"\",\r\n \"tax_number\": \"\"\r\n },\r\n \"transaction_data\": {\r\n \"payment_method\": \"\",\r\n \"flow\": \"payform\",\r\n \"extra\": {\r\n \"amount\": 1.0,\r\n \"masked_pan\": \"APPLEPAY-REDIRECT\"\r\n },\r\n \"country\": \"\",\r\n \"attempts\": [\r\n {\r\n \"client_ip\": \"183.83.53.41\",\r\n \"type\": \"execute\",\r\n \"payment_method\": \"APPLEPAY-REDIRECT\",\r\n \"flow\": \"payform\",\r\n \"successful\": true,\r\n \"country\": \"APPLEPAY-REDIRECT\",\r\n \"processing_time\": 1768115700,\r\n \"extra\": {\r\n \"amount\": 1.0,\r\n \"masked_pan\": \"APPLEPAY-REDIRECT\"\r\n }\r\n }\r\n ]\r\n },\r\n \"status\": \"PAID\",\r\n \"status_history\": [\r\n {\r\n \"status\": \"created\",\r\n \"timestamp\": 1768115700\r\n },\r\n {\r\n \"status\": \"pending_execute\",\r\n \"timestamp\": 1768115700\r\n },\r\n {\r\n \"status\": \"payment_in_process\",\r\n \"timestamp\": 1768115701\r\n },\r\n {\r\n \"status\": \"paid\",\r\n \"timestamp\": 1768115701\r\n }\r\n ],\r\n \"is_test\": false,\r\n \"brand_id\": \"59c5ed48-caf9-464a-ba54-26e1e02bc1bc\",\r\n \"send_receipt\": false,\r\n \"is_recurring_token\": false,\r\n \"skip_capture\": false,\r\n \"reference_generated\": \"PS363\",\r\n \"issued\": \"2026-01-11\",\r\n \"due\": 1768115700,\r\n \"refund_upto\": 1783664101,\r\n \"cc_descriptor\": \"\",\r\n \"fraudScore\": \"0\",\r\n \"trustScore\": \"1\",\r\n \"extraFee\": \"0\",\r\n \"pix_payload\": {},\r\n \"payInDetails\": {},\r\n \"paidOn\": 0,\r\n \"receivedAmt\": 0.0,\r\n \"taxAmount\": 0.0,\r\n \"surcharge\": 0.0,\r\n \"surchargeType\": \"\",\r\n \"sessionId\": \"\",\r\n \"refund_availability\": \"NONE\",\r\n \"refundable_amount\": 1.0,\r\n \"success_redirect\": \"https://your-redirect-url?issucces=true\",\r\n \"pending_redirect\": \"https://your-redirect-url?ispending=true\",\r\n \"failure_redirect\": \"https://your-redirect-url?isfailure=true\",\r\n \"success_callback\": \"https://your-webhook-url\",\r\n \"failure_callback\": \"https://your-webhook-url\"\r\n \"platform\": \"API\",\r\n \"created_from_ip\": \"183.83.53.41\",\r\n \"checkout_url\": \"https://api.choicepay.ca/payments/deb852445bd4b0fa6c4587f652174ab9/\",\r\n \"payoutProcess\": false\r\n}"},{"id":"ee484eed-a2b4-48c1-a801-7f19c57b4127","name":"Purchase - failure","originalRequest":{"method":"GET","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"url":"https://app.paybomb.tech/api/v1/purchases/{purchaseId}/"},"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\r\n \"message\": \"Error Message\",\r\n \"code\": \"error_code\"\r\n}"}],"_postman_id":"e6dd61c4-6ca3-4cb3-bc16-76a6467d083e"}],"id":"fbcf6289-1ca0-4e35-9756-6ea0c5abb7a8","description":"API Flow
\n- \n
The merchant initiates the purchase via the create purchase API and passing the appropriate payment method. If successful, they receive a checkout URL in the response JSON.
\n \nUpon utilizing the checkout URL, the user will be presented with a screen where he will be shown a button to pay via Applepay.
\n \nAfter clicking the button, the user will see all the cards stored in the Apple wallet and he can choose one of the cards to make the purchase.
\n \nAfter a successful or failed payment by the end user, an appropriate webhook would be sent to the merchant. The user would also be redirected to the appropriate redirect URL.
\n \n
Get started
\nPaybomb’s Server-to-Server (S2S) integration for Google Pay allows merchants to process Google Pay transactions securely from their backend systems. In this model, merchants are responsible for generating the Google Pay payment token on their client application and sending it to their server, which then communicates with Paybomb APIs.
\nThis integration uses DIRECT tokenization, where payment data is securely generated by Google Pay and passed to Paybomb for processing.
\nThis integration is recommended for merchants who require:
\n- \n
Integration with Google Pay wallets
\n \nSecure handling of tokenized payment data
\n \nFlexibility in choosing PCI scope (encrypted vs decrypted flow)
\n \n
\n
How it works
\nThe Google Pay S2S payment flow follows a two-step process:
\n1. Generate Google Pay Token (Client-side)
\nThe merchant integrates Google Pay SDK (Web/Android) to generate a payment token using DIRECT flow.
\n2. Submit Token via S2S
\nThe merchant server sends the Google Pay token (encrypted or decrypted) to Paybomb via the /purchase API.
\n\n
Supported Tokenization Type
\nPaybomb supports DIRECT flow only.
\nPAYMENT_GATEWAY flow is not supported yet.
\n\n
Google Pay Processing Overview
\nGoogle Pay transactions are processed as card-not-present payments using tokenized card data (PAN/DPAN) along with a cryptogram provided by Google Pay.
\nThese transactions go through:
\n- \n
Card network (Visa, Mastercard, etc.)
\n \nIssuing bank authorization
\n \nRisk and fraud checks
\n \n
\n
Integration Options
\nPaybomb supports two integration modes:
\n\n
1. Encrypted Token Flow (Recommended)
\nIn this flow, the merchant sends the encrypted Google Pay token to Paybomb. Paybomb decrypts and processes the payment.
\nKey Characteristics
\n- \n
Merchant does not handle PAN
\n \nReduced PCI scope
\n \nRecommended for most merchants
\n \n
PCI Impact
\nMerchants can significantly reduce PCI DSS scope since sensitive card data is handled by Paybomb.
\n\n
2. Decrypted Token Flow
\nIn this flow, the merchant decrypts the Google Pay token and sends decrypted token details to Paybomb.
\nKey Characteristics
\n- \n
PAN is available at merchant side
\n \nFaster processing
\n \nFull control over payment data
\n \n
PCI Impact
\nMerchants must be PCI DSS compliant (SAQ D) as they handle raw card data.
\n\n
Before you begin
\nEnsure the following prerequisites are met:
\n- \n
You have received your API credentials from Paybomb.
\n \nYou have a valid Google Merchant ID
\n \nYou have integrated Google Pay SDK to generate tokens
\n \nYou have configured DIRECT tokenization in Google Pay
\n \nYour server can make secure HTTPS requests
\n \nYou have a valid brand_id provided by Paybomb
\n \n
Additional Requirements (Encrypted Flow)
\n- \n
Generate EC key pair (P-256 / secp256r1)
\n \nRegister public key in Google Pay Console
\n \nShare private key securely with Paybomb
\n \n
Additional Requirements (Decrypted Flow)
\n- \n
Implement token decryption using Google Tink library
\n \nEnsure full PCI DSS compliance
\n \n
To process a Google Pay transaction, a Purchase must first be created using the /purchases API. The Google Pay token must be included in the request under extraParam.googlepay_param.
\nTo generate a Purchase, you are required to provide the Brand ID (in the request body) and API key (in the header) Both can be located in the Dashboard section of your merchant account login.
The request body structure is shown on the request body of the example request shown here.
\nThe following (see table below) are the mandatory parameters that are required to create a purchase request.
\nParameters in the request body:
\nOptional Parameters
\nexpireInMin
\nThis parameter, when passed in the PayIn request, sets the time window within which a customer should make the Interac payment through their bank's app. If a customer doesn't complete the payment within the configured time window, the status of the payment will be marked as 'EXPIRED' in Paybomb.
\nHowever, in certain cases, a payment made outside of this window could still be successful i.e. customer's account may be debited which would result in inconsistencies among Paybomb's, merchant's and customer's status of the transaction. To avoid such cases it is advised to set the expiry time limit appropriately and advise the customers to make payment within this window. However, if there is an inconsistency between the status at Paybomb and at customer's Bank, the merchant and Paybomb will reconcile the amounts during the settlement.
\nmerchantRef
\nThe merchantRef parameter, although not mandatory, is strongly advised for merchants to specify. Its inclusion offers two significant advantages for the merchant:
- \n
Prevention of Duplicate Requests: When a
\nmerchantRefis utilized, it acts as a unique identifier. This means that if a second purchase request is made using the samemerchantRef(reference number), the system will recognize it and prevent duplicate transactions from occurring. This prevents unintended or duplicate purchases. \nFacilitation of Transaction Retrieval: In situations where the response from the initial purchase request times out or the 'purchaseId' isn't received, having the
\nmerchantRefallows the merchant to retrieve detailed transaction information. This ensures they can track and access the specific purchase details related to that reference, even if the immediate response was not received. \n
However, if the merchant does not specify the 'merchantRef' parameter, the platform will automatically assign and use an internal 'purchaseId' as a reference for that transaction.
\npaymentMethod
\nThe paymentMethod parameter identifies which payment solution merchant wants to use to perform a transaction. If parameter is provided, then Paybomb will perform direct payment with the selected payment method instead of loading Paybomb URL.
Flow Diagram:
\nTo process a Google Pay transaction, a Purchase must first be created using the /purchases API. The Google Pay token must be included in the request under extraParam.googlepay_param.
\nTo generate a Purchase, you are required to provide the Brand ID (in the request body) and API key (in the header) Both can be located in the Dashboard section of your merchant account login.
The request body structure is shown on the request body of the example request shown here.
\nThe following (see table below) are the mandatory parameters that are required to create a purchase request.
\nParameters in the request body:
\nOptional Parameters
\nexpireInMin
\nThis parameter, when passed in the PayIn request, sets the time window within which a customer should make the Interac payment through their bank's app. If a customer doesn't complete the payment within the configured time window, the status of the payment will be marked as 'EXPIRED' in Paybomb.
\nHowever, in certain cases, a payment made outside of this window could still be successful i.e. customer's account may be debited which would result in inconsistencies among Paybomb's, merchant's and customer's status of the transaction. To avoid such cases it is advised to set the expiry time limit appropriately and advise the customers to make payment within this window. However, if there is an inconsistency between the status at Paybomb and at customer's Bank, the merchant and Paybomb will reconcile the amounts during the settlement.
\nmerchantRef
\nThe merchantRef parameter, although not mandatory, is strongly advised for merchants to specify. Its inclusion offers two significant advantages for the merchant:
- \n
Prevention of Duplicate Requests: When a
\nmerchantRefis utilized, it acts as a unique identifier. This means that if a second purchase request is made using the samemerchantRef(reference number), the system will recognize it and prevent duplicate transactions from occurring. This prevents unintended or duplicate purchases. \nFacilitation of Transaction Retrieval: In situations where the response from the initial purchase request times out or the 'purchaseId' isn't received, having the
\nmerchantRefallows the merchant to retrieve detailed transaction information. This ensures they can track and access the specific purchase details related to that reference, even if the immediate response was not received. \n
However, if the merchant does not specify the 'merchantRef' parameter, the platform will automatically assign and use an internal 'purchaseId' as a reference for that transaction.
\npaymentMethod
\nThe paymentMethod parameter identifies which payment solution merchant wants to use to perform a transaction. If parameter is provided, than Paybomb will perform direct payment with the selected payment method instead of loading Paybomb URL.
Flow Diagram:
\nThis API tells you about all the details of a purchase (PayIn), including its history
\nMandatory
\nyou need to pass the PurchaseID in the API URL
Possible Value of Status
\nResponse Examples
\nIn the response examples you can see instances of both Paid and Error Status purchases.
Error Details
\nIf there are any issues on the Purchase you can get more details from the transaction_data.attempts.error attribute of the response object
Errors
\nIf there are any errors then it'll be in the format of :
\n{\n \"message\": \"descriptive error message\",\n \"code\": \"error_code\"\n}\n\nPlease see the Status Code section for further details.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"10a74d03-6fd9-44fa-855a-b85154a1da10","id":"10a74d03-6fd9-44fa-855a-b85154a1da10","name":"APIs","type":"folder"}},"urlObject":{"path":["purchases","{purchaseId}",""],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"ff790ecb-5ce6-4b09-8e1b-35a1c268b106","name":"Purchase - success","originalRequest":{"method":"GET","header":[{"key":"Content-Type","value":"application/json"},{"key":"Authorization","value":"Bearer Token"}],"url":"https://app.paybomb.tech/api/v1/purchases/{purchaseId}/"},"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\r\n \"purchaseId\": \"69cce01f5bae56fd5547a993\",\r\n \"client\": {\r\n \"customerId\": \"NA\",\r\n \"email\": \"himanshu1@paybomb.tech\",\r\n \"full_name\": \"OpHM\",\r\n \"date_of_birth\": \"1800-01-01\",\r\n \"street_address\": \"SB-124\",\r\n \"country\": \"BR\",\r\n \"city\": \"DLJPR\",\r\n \"zip_code\": \"110001\",\r\n \"cc\": [],\r\n \"bcc\": [],\r\n \"stateCode\": \"DL\"\r\n },\r\n \"updated_on\": 1775034399,\r\n \"type\": \"purchase\",\r\n \"paymentMethod\": \"GOOGLEPAY\",\r\n \"amountUnit\": \"MAJOR\",\r\n \"errorMsg\": \"\",\r\n \"errorCode\": \"NA\",\r\n \"force_recurring\": false,\r\n \"created_on\": 1775034399,\r\n \"merchantRef\": \"69cce01f5bae56fd5547a993\",\r\n \"purchase\": {\r\n \"currency\": \"USD\",\r\n \"products\": [\r\n {\r\n \"name\": \"e-commerce\",\r\n \"quantity\": 1.0,\r\n \"price\": 10.0,\r\n \"discount\": 0,\r\n \"tax_percent\": \"0.00\"\r\n }\r\n ],\r\n \"total\": 10.0,\r\n \"requestAmount\": 10.0,\r\n \"language\": \"en\",\r\n \"notes\": \"\",\r\n \"debt\": 0,\r\n \"total_formatted\": 1.0,\r\n \"taxAmount\": 0.0,\r\n \"taxPercent\": 0.0,\r\n \"request_client_details\": [],\r\n \"email_message\": \"\"\r\n },\r\n \"issuer_details\": {\r\n \"website\": \"\",\r\n \"legal_street_address\": \"\",\r\n \"legal_country\": \"\",\r\n \"legal_city\": \"\",\r\n \"legal_zip_code\": \"\",\r\n \"bank_accounts\": [\r\n {}\r\n ],\r\n \"legal_name\": \"Omega Pixel\",\r\n \"brand_name\": \"Omega Pixel\",\r\n \"registration_number\": \"\",\r\n \"tax_number\": \"\"\r\n },\r\n \"transaction_data\": {\r\n \"payment_method\": \"\",\r\n \"flow\": \"payform\",\r\n \"extra\": {},\r\n \"country\": \"\",\r\n \"attempts\": []\r\n },\r\n \"status\": \"CREATED\",\r\n \"status_history\": [\r\n {\r\n \"status\": \"created\",\r\n \"timestamp\": 1775034399\r\n }\r\n ],\r\n \"is_test\": false,\r\n \"brand_id\": \"f1764688-d991-481b-be63-9ee7f33dcd31\",\r\n \"send_receipt\": false,\r\n \"is_recurring_token\": false,\r\n \"skip_capture\": false,\r\n \"reference_generated\": \"PS1032\",\r\n \"issued\": \"2026-04-01\",\r\n \"due\": 1775034399,\r\n \"refund_upto\": 0,\r\n \"cc_descriptor\": \"\",\r\n \"fraudScore\": \"NA\",\r\n \"trustScore\": \"NA\",\r\n \"extraFee\": \"0\",\r\n \"paidOn\": 0,\r\n \"receivedAmt\": 0.0,\r\n \"taxAmount\": 0.0,\r\n \"surcharge\": 0.0,\r\n \"surchargeType\": \"\",\r\n \"sessionId\": \"\",\r\n \"refund_availability\": \"NONE\",\r\n \"refundable_amount\": 0.0,\r\n \"success_redirect\": \"https://google.com/\",\r\n \"failure_redirect\": \"https://facebook.com/\",\r\n \"pending_redirect\": \"https://app.paybomb.tech\",\r\n \"cancel_redirect\": \"\",\r\n \"success_callback\": \"https://your.success.callback.com\",\r\n \"failure_callback\": \"https://your.failure.callback.com\",\r\n \"platform\": \"API\",\r\n \"created_from_ip\": \"103.80.161.238\",\r\n \"checkout_url\": \"https://api.choicepay.ca/payments/6b5a5977ac8e022facb31f3346f61ed0/\",\r\n \"direct_post_url\": \"https://api.choicepay.ca/api/v1/p/69cce01f5bae56fd5547a993/\",\r\n \"payoutProcess\": false\r\n}"},{"id":"f39db69b-b3d7-46aa-8e82-f3675be063d0","name":"Purchase - failure","originalRequest":{"method":"GET","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"url":"https://app.paybomb.tech/api/v1/purchases/{purchaseId}/"},"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\r\n \"message\": \"Error Message\",\r\n \"code\": \"error_code\"\r\n}"}],"_postman_id":"7394ccf0-c709-4e4a-8936-d43545aab895"}],"id":"10a74d03-6fd9-44fa-855a-b85154a1da10","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"f7b7015d-25c5-4b0e-8d9c-e6344b9a8b89"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"68cabbf7-255d-4e6a-8439-caae758e5bfe"}}],"_postman_id":"10a74d03-6fd9-44fa-855a-b85154a1da10","description":""}],"id":"de62fb1c-d00b-4fb8-ad45-931ff1045a45","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"912fd6dd-9379-432e-bd83-45e3741e045d"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"d1292fbb-1e90-4b10-b78c-c05083be33b2"}}],"_postman_id":"de62fb1c-d00b-4fb8-ad45-931ff1045a45","description":""},{"name":"🌎 Apple Pay (Seamless)","item":[{"name":"Concepts","item":[],"id":"78613d1e-3429-4750-9b9e-6d6a2c4343f9","description":"Get started
\nPaybomb’s Server-to-Server (S2S) integration for Apple Pay allows merchants to process Apple Pay transactions securely from their backend systems. In this model, merchants are responsible for generating the Apple Pay payment token on their client application and sending it to their server, which then communicates with Paybomb APIs.
\nThis integration uses DIRECT tokenization, where payment data is securely generated by Apple Pay and passed to Paybomb for processing.
\nThis integration is recommended for merchants who require:
\n- \n
Integration with Apple Pay wallets
\n \nSecure handling of tokenized payment data
\n \nFlexibility in choosing PCI scope (encrypted vs decrypted flow)
\n \n
\n
How it works
\nThe Apple Pay S2S payment flow follows a two-step process:
\n1. Generate Apple Pay Token (Client-side)
\nThe merchant integrates Apple Pay SDK (Web/Android) to generate a payment token using DIRECT flow.
\n2. Submit Token via S2S
\nThe merchant server sends the Apple Pay token (encrypted or decrypted) to Paybomb via the /purchase API.
\n\n
Apple Pay Processing Overview
\nApple Pay transactions are processed as card-not-present payments using:
\n- \n
Tokenized card data (DPAN)
\n \nCryptogram generated by Apple
\n \nDevice-based authentication (Face ID / Touch ID / Passcode)
\n \n
These transactions go through:
\n- \n
Card network (Visa, Mastercard, Amex, etc.)
\n \nIssuing bank authorization
\n \nRisk and fraud checks
\n \n
\n
Integration Options
\nPaybomb supports two integration modes:
\n\n
1. Encrypted Token Flow (Recommended)
\nIn this flow, the merchant sends the encrypted Apple Pay token to Paybomb. Paybomb decrypts and processes the payment.
\nKey Characteristics
\n- \n
Merchant does not handle PAN
\n \nReduced PCI scope
\n \nRecommended for most merchants
\n \n
PCI Impact
\nMerchants can significantly reduce PCI DSS scope since sensitive card data is handled by Paybomb.
\n\n
2. Decrypted Token Flow
\nIn this flow, the merchant decrypts the Apple Pay token and sends card details to Paybomb.
\nKey Characteristics
\n- \n
PAN/DPAN available at merchant side
\n \nFull control over payment data
\n \n
PCI Impact
\nMerchants must be PCI DSS compliant (SAQ D) as they handle raw card data.
\n\n
Before you begin
\nEnsure the following prerequisites are met:
\n- \n
You have received your API credentials from Paybomb
\n \nYou have an Apple Merchant ID
\n \nYou have configured Apple Pay on your domain/app
\n \nYour server can make secure HTTPS requests
\n \nYou have a valid brand_id provided by Paybomb
\n \n
\n
Additional Requirements (Encrypted Flow)
\n- \n
Configure Apple Pay certificates (Payment Processing Certificate)
\n \nShare certificate details securely with Paybomb (if required)
\n \n
\n
Additional Requirements (Decrypted Flow)
\n- \n
Implement Apple Pay token decryption
\n \nUse Apple’s Payment Processing certificate and private key
\n \nEnsure full PCI DSS compliance
\n \n
To process an Apple Pay transaction, a Purchase must be created using the /purchases API. The Apple Pay token must be included under extraParam.applepay_param.
\nTo generate a Purchase, you are required to provide the Brand ID (in the request body) and API key (in the header) Both can be located in the Dashboard section of your merchant account login.
The request body structure is shown on the request body of the example request shown here.
\nThe following (see table below) are the mandatory parameters that are required to create a purchase request.
\nParameters in the request body:
\nOptional Parameters
\nexpireInMin
\nThis parameter, when passed in the PayIn request, sets the time window within which a customer should make the Interac payment through their bank's app. If a customer doesn't complete the payment within the configured time window, the status of the payment will be marked as 'EXPIRED' in Paybomb.
\nHowever, in certain cases, a payment made outside of this window could still be successful i.e. customer's account may be debited which would result in inconsistencies among Paybomb's, merchant's and customer's status of the transaction. To avoid such cases it is advised to set the expiry time limit appropriately and advise the customers to make payment within this window. However, if there is an inconsistency between the status at Paybomb and at customer's Bank, the merchant and Paybomb will reconcile the amounts during the settlement.
\nmerchantRef
\nThe merchantRef parameter, although not mandatory, is strongly advised for merchants to specify. Its inclusion offers two significant advantages for the merchant:
- \n
Prevention of Duplicate Requests: When a
\nmerchantRefis utilized, it acts as a unique identifier. This means that if a second purchase request is made using the samemerchantRef(reference number), the system will recognize it and prevent duplicate transactions from occurring. This prevents unintended or duplicate purchases. \nFacilitation of Transaction Retrieval: In situations where the response from the initial purchase request times out or the 'purchaseId' isn't received, having the
\nmerchantRefallows the merchant to retrieve detailed transaction information. This ensures they can track and access the specific purchase details related to that reference, even if the immediate response was not received. \n
However, if the merchant does not specify the 'merchantRef' parameter, the platform will automatically assign and use an internal 'purchaseId' as a reference for that transaction.
\npaymentMethod
\nThe paymentMethod parameter identifies which payment solution merchant wants to use to perform a transaction. If parameter is provided, than Paybomb will perform direct payment with the selected payment method instead of loading Paybomb URL.
To process an Apple Pay transaction, a Purchase must be created using the /purchases API. The Apple Pay token must be included under extraParam.applepay_param.
\nTo generate a Purchase, you are required to provide the Brand ID (in the request body) and API key (in the header) Both can be located in the Dashboard section of your merchant account login.
The request body structure is shown on the request body of the example request shown here.
\nThe following (see table below) are the mandatory parameters that are required to create a purchase request.
\nParameters in the request body:
\nOptional Parameters
\nexpireInMin
\nThis parameter, when passed in the PayIn request, sets the time window within which a customer should make the Interac payment through their bank's app. If a customer doesn't complete the payment within the configured time window, the status of the payment will be marked as 'EXPIRED' in Paybomb.
\nHowever, in certain cases, a payment made outside of this window could still be successful i.e. customer's account may be debited which would result in inconsistencies among Paybomb's, merchant's and customer's status of the transaction. To avoid such cases it is advised to set the expiry time limit appropriately and advise the customers to make payment within this window. However, if there is an inconsistency between the status at Paybomb and at customer's Bank, the merchant and Paybomb will reconcile the amounts during the settlement.
\nmerchantRef
\nThe merchantRef parameter, although not mandatory, is strongly advised for merchants to specify. Its inclusion offers two significant advantages for the merchant:
- \n
Prevention of Duplicate Requests: When a
\nmerchantRefis utilized, it acts as a unique identifier. This means that if a second purchase request is made using the samemerchantRef(reference number), the system will recognize it and prevent duplicate transactions from occurring. This prevents unintended or duplicate purchases. \nFacilitation of Transaction Retrieval: In situations where the response from the initial purchase request times out or the 'purchaseId' isn't received, having the
\nmerchantRefallows the merchant to retrieve detailed transaction information. This ensures they can track and access the specific purchase details related to that reference, even if the immediate response was not received. \n
However, if the merchant does not specify the 'merchantRef' parameter, the platform will automatically assign and use an internal 'purchaseId' as a reference for that transaction.
\npaymentMethod
\nThe paymentMethod parameter identifies which payment solution merchant wants to use to perform a transaction. If parameter is provided, than Paybomb will perform direct payment with the selected payment method instead of loading Paybomb URL.
This API tells you about all the details of a purchase (PayIn), including its history
\nMandatory
\nyou need to pass the PurchaseID in the API URL
Possible Value of Status
\nResponse Examples
\nIn the response examples you can see instances of both Paid and Error Status purchases.
Error Details
\nIf there are any issues on the Purchase you can get more details from the transaction_data.attempts.error attribute of the response object
Errors
\nIf there are any errors then it'll be in the format of :
\n{\n \"message\": \"descriptive error message\",\n \"code\": \"error_code\"\n}\n\nPlease see the Status Code section for further details.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"d8f27861-65fd-4f57-8c8d-92d00fa7558e","id":"d8f27861-65fd-4f57-8c8d-92d00fa7558e","name":"APIs","type":"folder"}},"urlObject":{"path":["purchases","{purchaseId}",""],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"484936b0-719b-4acb-b8e5-4329b05748d5","name":"Purchase - success","originalRequest":{"method":"GET","header":[{"key":"Content-Type","value":"application/json"},{"key":"Authorization","value":"Bearer Token"}],"url":"https://app.paybomb.tech/api/v1/purchases/{purchaseId}/"},"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\r\n \"purchaseId\": \"69cce01f5bae56fd5547a993\",\r\n \"client\": {\r\n \"customerId\": \"NA\",\r\n \"email\": \"himanshu1@paybomb.tech\",\r\n \"full_name\": \"OpHM\",\r\n \"date_of_birth\": \"1800-01-01\",\r\n \"street_address\": \"SB-124\",\r\n \"country\": \"BR\",\r\n \"city\": \"DLJPR\",\r\n \"zip_code\": \"110001\",\r\n \"cc\": [],\r\n \"bcc\": [],\r\n \"stateCode\": \"DL\"\r\n },\r\n \"updated_on\": 1775034399,\r\n \"type\": \"purchase\",\r\n \"paymentMethod\": \"GOOGLEPAY\",\r\n \"amountUnit\": \"MAJOR\",\r\n \"errorMsg\": \"\",\r\n \"errorCode\": \"NA\",\r\n \"force_recurring\": false,\r\n \"created_on\": 1775034399,\r\n \"merchantRef\": \"69cce01f5bae56fd5547a993\",\r\n \"purchase\": {\r\n \"currency\": \"USD\",\r\n \"products\": [\r\n {\r\n \"name\": \"e-commerce\",\r\n \"quantity\": 1.0,\r\n \"price\": 10.0,\r\n \"discount\": 0,\r\n \"tax_percent\": \"0.00\"\r\n }\r\n ],\r\n \"total\": 10.0,\r\n \"requestAmount\": 10.0,\r\n \"language\": \"en\",\r\n \"notes\": \"\",\r\n \"debt\": 0,\r\n \"total_formatted\": 1.0,\r\n \"taxAmount\": 0.0,\r\n \"taxPercent\": 0.0,\r\n \"request_client_details\": [],\r\n \"email_message\": \"\"\r\n },\r\n \"issuer_details\": {\r\n \"website\": \"\",\r\n \"legal_street_address\": \"\",\r\n \"legal_country\": \"\",\r\n \"legal_city\": \"\",\r\n \"legal_zip_code\": \"\",\r\n \"bank_accounts\": [\r\n {}\r\n ],\r\n \"legal_name\": \"Omega Pixel\",\r\n \"brand_name\": \"Omega Pixel\",\r\n \"registration_number\": \"\",\r\n \"tax_number\": \"\"\r\n },\r\n \"transaction_data\": {\r\n \"payment_method\": \"\",\r\n \"flow\": \"payform\",\r\n \"extra\": {},\r\n \"country\": \"\",\r\n \"attempts\": []\r\n },\r\n \"status\": \"CREATED\",\r\n \"status_history\": [\r\n {\r\n \"status\": \"created\",\r\n \"timestamp\": 1775034399\r\n }\r\n ],\r\n \"is_test\": false,\r\n \"brand_id\": \"f1764688-d991-481b-be63-9ee7f33dcd31\",\r\n \"send_receipt\": false,\r\n \"is_recurring_token\": false,\r\n \"skip_capture\": false,\r\n \"reference_generated\": \"PS1032\",\r\n \"issued\": \"2026-04-01\",\r\n \"due\": 1775034399,\r\n \"refund_upto\": 0,\r\n \"cc_descriptor\": \"\",\r\n \"fraudScore\": \"NA\",\r\n \"trustScore\": \"NA\",\r\n \"extraFee\": \"0\",\r\n \"paidOn\": 0,\r\n \"receivedAmt\": 0.0,\r\n \"taxAmount\": 0.0,\r\n \"surcharge\": 0.0,\r\n \"surchargeType\": \"\",\r\n \"sessionId\": \"\",\r\n \"refund_availability\": \"NONE\",\r\n \"refundable_amount\": 0.0,\r\n \"success_redirect\": \"https://google.com/\",\r\n \"failure_redirect\": \"https://facebook.com/\",\r\n \"pending_redirect\": \"https://app.paybomb.tech\",\r\n \"cancel_redirect\": \"\",\r\n \"success_callback\": \"https://your.success.callback.com\",\r\n \"failure_callback\": \"https://your.failure.callback.com\",\r\n \"platform\": \"API\",\r\n \"created_from_ip\": \"103.80.161.238\",\r\n \"checkout_url\": \"https://api.choicepay.ca/payments/6b5a5977ac8e022facb31f3346f61ed0/\",\r\n \"direct_post_url\": \"https://api.choicepay.ca/api/v1/p/69cce01f5bae56fd5547a993/\",\r\n \"payoutProcess\": false\r\n}"},{"id":"fa01cf26-0abe-49b3-8c86-5dff1b001d65","name":"Purchase - failure","originalRequest":{"method":"GET","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"url":"https://app.paybomb.tech/api/v1/purchases/{purchaseId}/"},"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\r\n \"message\": \"Error Message\",\r\n \"code\": \"error_code\"\r\n}"}],"_postman_id":"0b0e00d3-bac5-4263-896f-c9cc33cb312a"}],"id":"d8f27861-65fd-4f57-8c8d-92d00fa7558e","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"162f8af0-6223-4bf1-8771-305a947651b3"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"242771cd-eab9-451a-9f25-16752ef78b12"}}],"_postman_id":"d8f27861-65fd-4f57-8c8d-92d00fa7558e","description":""}],"id":"543e945e-e2ab-4d45-9e7f-7846fadf8f19","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"8f649ede-2d7b-4edc-ac00-1b987a71e95d"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"ba5b300d-9540-49fd-9e13-07d9380404c6"}}],"_postman_id":"543e945e-e2ab-4d45-9e7f-7846fadf8f19","description":""}],"id":"ee6708dd-bd6f-47cc-bee8-e56002ce1f8f","_postman_id":"ee6708dd-bd6f-47cc-bee8-e56002ce1f8f","description":""}],"id":"80cdee1d-b7b0-43db-bd12-183de874912b","_postman_id":"80cdee1d-b7b0-43db-bd12-183de874912b","description":""},{"name":"Trust Score","item":[{"name":"TrustScore Detailed","id":"31d40cc1-df1f-4ea5-99d0-478ea82a4ade","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[],"body":{"mode":"raw","raw":"{\r\n \"requiredinput\": {\r\n \"ip\": \"111.11.11.11\",\r\n \"email\": \"test@gmail.com\",\r\n \"url\": \"https://www.asos.com/\"\r\n },\r\n \"optionalInput\": {\r\n \"last_bets\": null,\r\n \"last_wins\": \"\",\r\n \"total_bonuses\": \"\",\r\n \"last_real_bets\": \"\",\r\n \"last_real_wins\": \"\",\r\n \"total_deposits\": \"\",\r\n \"last_bonus_bets\": \"\",\r\n \"last_bonus_wins\": \"\",\r\n \"average_real_bet\": \"\",\r\n \"last_bets_amount\": \"\",\r\n \"last_wins_amount\": \"\",\r\n \"average_bonus_bet\": \"\",\r\n \"bonus_to_deposits\": \"\",\r\n \"last_deposit_date\": \"\",\r\n \"total_withdrawals\": \"\",\r\n \"is_phone_confirmed\": \"\",\r\n \"money_in_money_out\": \"\",\r\n \"last_deposit_amount\": \"\",\r\n \"last_freespins_date\": \"\",\r\n \"last_freespins_name\": \"\",\r\n \"last_free_bonus_date\": \"\",\r\n \"last_free_bonus_name\": \"\",\r\n \"total_bonuses_amount\": \"\",\r\n \"last_freespins_amount\": \"\",\r\n \"last_freespins_status\": \"\",\r\n \"last_real_bets_amount\": \"\",\r\n \"last_real_wins_amount\": \"\",\r\n \"total_deposits_amount\": \"\",\r\n \"last_bonus_bets_amount\": \"\",\r\n \"last_bonus_wins_amount\": \"\",\r\n \"last_free_bonus_amount\": \"\",\r\n \"last_free_bonus_status\": \"\",\r\n \"last_deposit_bonus_date\": \"\",\r\n \"last_deposit_bonus_name\": \"\",\r\n \"last_freespins_currency\": \"\",\r\n \"last_freespins_wagering\": \"\",\r\n \"withdrawals_to_deposits\": \"\",\r\n \"last_free_bonus_currency\": \"\",\r\n \"last_free_bonus_wagering\": \"\",\r\n \"total_withdrawals_amount\": \"\",\r\n \"withdrawal_ewallet_email\": \"\",\r\n \"last_deposit_bonus_amount\": \"\",\r\n \"last_deposit_bonus_status\": \"\",\r\n \"last_deposit_bonus_currency\": \"\",\r\n \"last_deposit_bonus_wagering\": \"\",\r\n \"session\": \"\",\r\n \"payment_mode\": \"\",\r\n \"card_fullname\": \"\",\r\n \"card_bin\": \"\",\r\n \"card_hash\": \"\",\r\n \"card_last\": \"\",\r\n \"card_expire\": \"\",\r\n \"avs_result\": \"\",\r\n \"cvv_result\": \"\",\r\n \"sca_method\": \"\",\r\n \"user_bank_account\": \"\",\r\n \"user_bank_name\": \"\",\r\n \"user_balance\": \"\",\r\n \"user_verification_level\": \"\",\r\n \"status_3d\": \"\",\r\n \"regulation\": \"\",\r\n \"payment_provider\": \"\",\r\n \"phone_number\": \"\",\r\n \"transaction_type\": \"\",\r\n \"transaction_amount\": \"\",\r\n \"transaction_currency\": \"\",\r\n \"merchant_id\": \"\",\r\n \"details_url\": \"\",\r\n \"name\": \"\",\r\n \"person_type\": \"\",\r\n \"gender\": \"\"\r\n }\r\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/trustScore","description":"Overview
\nPaybomb TrustScore's proprietary API combines email, phone number, IP and URL so that you can request and receive a user trust score from our enriched data, rules, and scoring in a single API call.
\nOur take on Trust is different from the usual approach to fraud. This API tells you how much you can trust this user. It’s based on 100+ data points to which we have access. We use complex algorithms based on data sanity and customer behaviour in our partner network.
\nAlso, the additional optional parameter would be used to boost the accuracy of our response. So the more data we get the better we can ascertain the users' trust. So please endeavour to send as much information about the user as possible.
\nTrust Score & Usage
\nTrustScore offers two distinct endpoints: General and Detailed.
The General endpoint provides basic information by indicating whether a transaction is permitted or not. It gives a simple 'yes' or 'no' response regarding whether the transaction can proceed.
\nOn the other hand, the Detailed endpoint offers a more comprehensive evaluation. It furnishes an in-depth analysis of the transaction's authenticity, providing a detailed assessment beyond a simple allowance or denial, offering nuanced insights and information about the transaction's legitimacy.
\nDetailed TrustScore
\nTrust scores range from 0 to 5. A trust score of 0 indicates that we have limited information about the user, and it corresponds to the lowest level of trust. In addition to the TrustScore, we offer eight other flags to help assess the user's overall profile and determine appropriate actions to take. We suggest flagging or blocking users, transactions, or clicks as high risk based on a combination of the following factors: email deliverability, proxy usage, VPN usage, Tor usage, and recent abusive behavior.
\nEvery company has a unique target audience, so you might achieve better results by only flagging or blocking entities with low trust scores and recent instances of abuse. Keep in mind that mobile IP addresses are frequently misused and recycled by mobile carriers. Therefore, for mobile lookups, we advise giving more weight to the trust score, VPN usage, and Tor usage, as opposed to proxy usage.
\nPermission
\nAccess to this API has to be given to you by the admin. So please contact your sales representative at Paybomb to get access to this API, if you get a 401 error of \"You are not allowed to call this API service\".
\nMandatory Parameters (in body)
\nOther optional paramters:
\nThe optional parameters are self-explanatory and appropriate values can be given in string format.
\nResponse
\nIn the response examples, you can observe both instances of a successful TrustScore response and an unsuccessful one.
\nPlease note that there are a lot of parameters to determine the trust level and give you some additional details on the email and IP of the user.
\nin a successful trust score call the following data would be provided:
\nErrors
\nIf there are any errors then it'll be in the format of :
\n{\n \"message\": \"descriptive error message\",\n \"code\": \"error_code\"\n}\n\nPossible Error Messages
\nthe possible error codes one can get on calling this APIs are:
\nfor example:
\n","urlObject":{"path":["trustScore"],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"164e2fe9-526f-4d4a-9e3e-1404463f5f14","name":"TrustScoreExists","originalRequest":{"method":"POST","header":[],"body":{"mode":"raw","raw":"{\r\n \"requiredinput\": {\r\n \"ip\": \"2001:8004:cc2:fadb:9958:4523:6c42:e3f2\",\r\n \"email\": \"test@gmail.com\",\r\n \"url\": \"http://test.com\"\r\n },\r\n \"optionalInput\": {\r\n \"last_bets\": null,\r\n \"last_wins\": \"\",\r\n \"total_bonuses\": \"\",\r\n \"last_real_bets\": \"\",\r\n \"last_real_wins\": \"\",\r\n \"total_deposits\": \"\",\r\n \"last_bonus_bets\": \"\",\r\n \"last_bonus_wins\": \"\",\r\n \"average_real_bet\": \"\",\r\n \"last_bets_amount\": \"\",\r\n \"last_wins_amount\": \"\",\r\n \"average_bonus_bet\": \"\",\r\n \"bonus_to_deposits\": \"\",\r\n \"last_deposit_date\": \"\",\r\n \"total_withdrawals\": \"\",\r\n \"is_phone_confirmed\": \"\",\r\n \"money_in_money_out\": \"\",\r\n \"last_deposit_amount\": \"\",\r\n \"last_freespins_date\": \"\",\r\n \"last_freespins_name\": \"\",\r\n \"last_free_bonus_date\": \"\",\r\n \"last_free_bonus_name\": \"\",\r\n \"total_bonuses_amount\": \"\",\r\n \"last_freespins_amount\": \"\",\r\n \"last_freespins_status\": \"\",\r\n \"last_real_bets_amount\": \"\",\r\n \"last_real_wins_amount\": \"\",\r\n \"total_deposits_amount\": \"\",\r\n \"last_bonus_bets_amount\": \"\",\r\n \"last_bonus_wins_amount\": \"\",\r\n \"last_free_bonus_amount\": \"\",\r\n \"last_free_bonus_status\": \"\",\r\n \"last_deposit_bonus_date\": \"\",\r\n \"last_deposit_bonus_name\": \"\",\r\n \"last_freespins_currency\": \"\",\r\n \"last_freespins_wagering\": \"\",\r\n \"withdrawals_to_deposits\": \"\",\r\n \"last_free_bonus_currency\": \"\",\r\n \"last_free_bonus_wagering\": \"\",\r\n \"total_withdrawals_amount\": \"\",\r\n \"withdrawal_ewallet_email\": \"\",\r\n \"last_deposit_bonus_amount\": \"\",\r\n \"last_deposit_bonus_status\": \"\",\r\n \"last_deposit_bonus_currency\": \"\",\r\n \"last_deposit_bonus_wagering\": \"\",\r\n \"session\": \"\",\r\n \"payment_mode\": \"\",\r\n \"card_fullname\": \"\",\r\n \"card_bin\": \"\",\r\n \"card_hash\": \"\",\r\n \"card_last\": \"\",\r\n \"card_expire\": \"\",\r\n \"avs_result\": \"\",\r\n \"cvv_result\": \"\",\r\n \"sca_method\": \"\",\r\n \"user_bank_account\": \"\",\r\n \"user_bank_name\": \"\",\r\n \"user_balance\": \"\",\r\n \"user_verification_level\": \"\",\r\n \"status_3d\": \"\",\r\n \"regulation\": \"\",\r\n \"payment_provider\": \"\",\r\n \"phone_number\": \"\",\r\n \"transaction_type\": \"\",\r\n \"transaction_amount\": \"\",\r\n \"transaction_currency\": \"\",\r\n \"merchant_id\": \"\",\r\n \"details_url\": \"\",\r\n \"name\": \"\",\r\n \"person_type\": \"\",\r\n \"gender\": \"\"\r\n }\r\n}","options":{"raw":{"language":"json"}}},"url":"{{StagingBaseURL}}/trustScore"},"status":"Accepted","code":202,"_postman_previewlanguage":"json","header":[{"key":"Date","value":"Sun, 29 Oct 2023 09:21:22 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"1; mode=block"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"X-Frame-Options","value":"DENY"},{"key":"CF-Cache-Status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=r2%2FuLwSilxdD1lpiI1VqpgF0Tu9etiNhupySeBHl0zcU8XV1z8kwR%2FJ00ti4xpMdrTXW%2BkqZkLGrkkaUnMWFsaYlg%2FfA9UC4wIKwmc9LHUwna491EmnC3b3vlabzhUJ11CMpnVmicUE%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}"},{"key":"NEL","value":"{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}"},{"key":"Server","value":"cloudflare"},{"key":"CF-RAY","value":"81da590e8d4345a0-LHR"},{"key":"alt-svc","value":"h3=\":443\"; ma=86400"}],"cookie":[],"responseTime":null,"body":"{\n \"trustScore\": 0,\n \"deliverable\": \"false\",\n \"proxy\": \"false\",\n \"vpn\": \"false\",\n \"tor\": \"false\",\n \"active_vpn\": \"false\",\n \"active_tor\": \"false\",\n \"recent_abuse\": \"false\",\n \"bot_status\": \"false\"\n}"},{"id":"572cf128-a0fd-4d32-8f49-2c99058a7e8e","name":"TrustScoreError","originalRequest":{"method":"POST","header":[],"body":{"mode":"raw","raw":"{\r\n \"requiredinput\": {\r\n \"ip\": \"2001:8004:cc2:fadb:9958:4523:6c42:e3f2\",\r\n \"email\": \"test@gmail.com\",\r\n \"url\": \"http://test.com\"\r\n },\r\n \"optionalInput\": {\r\n \"last_bets\": null,\r\n \"last_wins\": \"\",\r\n \"total_bonuses\": \"\",\r\n \"last_real_bets\": \"\",\r\n \"last_real_wins\": \"\",\r\n \"total_deposits\": \"\",\r\n \"last_bonus_bets\": \"\",\r\n \"last_bonus_wins\": \"\",\r\n \"average_real_bet\": \"\",\r\n \"last_bets_amount\": \"\",\r\n \"last_wins_amount\": \"\",\r\n \"average_bonus_bet\": \"\",\r\n \"bonus_to_deposits\": \"\",\r\n \"last_deposit_date\": \"\",\r\n \"total_withdrawals\": \"\",\r\n \"is_phone_confirmed\": \"\",\r\n \"money_in_money_out\": \"\",\r\n \"last_deposit_amount\": \"\",\r\n \"last_freespins_date\": \"\",\r\n \"last_freespins_name\": \"\",\r\n \"last_free_bonus_date\": \"\",\r\n \"last_free_bonus_name\": \"\",\r\n \"total_bonuses_amount\": \"\",\r\n \"last_freespins_amount\": \"\",\r\n \"last_freespins_status\": \"\",\r\n \"last_real_bets_amount\": \"\",\r\n \"last_real_wins_amount\": \"\",\r\n \"total_deposits_amount\": \"\",\r\n \"last_bonus_bets_amount\": \"\",\r\n \"last_bonus_wins_amount\": \"\",\r\n \"last_free_bonus_amount\": \"\",\r\n \"last_free_bonus_status\": \"\",\r\n \"last_deposit_bonus_date\": \"\",\r\n \"last_deposit_bonus_name\": \"\",\r\n \"last_freespins_currency\": \"\",\r\n \"last_freespins_wagering\": \"\",\r\n \"withdrawals_to_deposits\": \"\",\r\n \"last_free_bonus_currency\": \"\",\r\n \"last_free_bonus_wagering\": \"\",\r\n \"total_withdrawals_amount\": \"\",\r\n \"withdrawal_ewallet_email\": \"\",\r\n \"last_deposit_bonus_amount\": \"\",\r\n \"last_deposit_bonus_status\": \"\",\r\n \"last_deposit_bonus_currency\": \"\",\r\n \"last_deposit_bonus_wagering\": \"\",\r\n \"session\": \"\",\r\n \"payment_mode\": \"\",\r\n \"card_fullname\": \"\",\r\n \"card_bin\": \"\",\r\n \"card_hash\": \"\",\r\n \"card_last\": \"\",\r\n \"card_expire\": \"\",\r\n \"avs_result\": \"\",\r\n \"cvv_result\": \"\",\r\n \"sca_method\": \"\",\r\n \"user_bank_account\": \"\",\r\n \"user_bank_name\": \"\",\r\n \"user_balance\": \"\",\r\n \"user_verification_level\": \"\",\r\n \"status_3d\": \"\",\r\n \"regulation\": \"\",\r\n \"payment_provider\": \"\",\r\n \"phone_number\": \"\",\r\n \"transaction_type\": \"\",\r\n \"transaction_amount\": \"\",\r\n \"transaction_currency\": \"\",\r\n \"merchant_id\": \"\",\r\n \"details_url\": \"\",\r\n \"name\": \"\",\r\n \"person_type\": \"\",\r\n \"gender\": \"\"\r\n }\r\n}","options":{"raw":{"language":"json"}}},"url":"{{StagingBaseURL}}/trustScore"},"status":"Unauthorized","code":401,"_postman_previewlanguage":"json","header":[{"key":"Date","value":"Sun, 29 Oct 2023 09:28:33 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"1; mode=block"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"X-Frame-Options","value":"DENY"},{"key":"CF-Cache-Status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=herXY1o%2BFZa%2F3qNFjvh4ANgP%2FD0DdAVVFm0vUZDAst2rFkieItm%2Fu0VN24DYrdp7MHMHFKWLvrsBYVIxjDPDaLgJjeGBvlTP2iZoB5EnG1hPPHUVXRNP%2FGMmOTh%2Fp7gsyj0vihW1kMk%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}"},{"key":"NEL","value":"{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}"},{"key":"Server","value":"cloudflare"},{"key":"CF-RAY","value":"81da6398ab144913-LHR"},{"key":"alt-svc","value":"h3=\":443\"; ma=86400"}],"cookie":[],"responseTime":null,"body":"{\n \"message\": \"Incorrect secret_key\",\n \"code\": \"authentication_failed\"\n}"}],"_postman_id":"31d40cc1-df1f-4ea5-99d0-478ea82a4ade"},{"name":"checkTransactionAllowed","id":"bfc94c6f-0b33-4110-b70c-20fd1565bacf","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[],"body":{"mode":"raw","raw":"{\r\n \"requiredinput\": {\r\n \"ip\": \"111.11.11.11\",\r\n \"email\": \"test@gmail.com\",\r\n \"url\": \"https://www.asos.com/\"\r\n },\r\n \"optionalInput\": {\r\n \"last_bets\": null,\r\n \"last_wins\": \"\",\r\n \"total_bonuses\": \"\",\r\n \"last_real_bets\": \"\",\r\n \"last_real_wins\": \"\",\r\n \"total_deposits\": \"\",\r\n \"last_bonus_bets\": \"\",\r\n \"last_bonus_wins\": \"\",\r\n \"average_real_bet\": \"\",\r\n \"last_bets_amount\": \"\",\r\n \"last_wins_amount\": \"\",\r\n \"average_bonus_bet\": \"\",\r\n \"bonus_to_deposits\": \"\",\r\n \"last_deposit_date\": \"\",\r\n \"total_withdrawals\": \"\",\r\n \"is_phone_confirmed\": \"\",\r\n \"money_in_money_out\": \"\",\r\n \"last_deposit_amount\": \"\",\r\n \"last_freespins_date\": \"\",\r\n \"last_freespins_name\": \"\",\r\n \"last_free_bonus_date\": \"\",\r\n \"last_free_bonus_name\": \"\",\r\n \"total_bonuses_amount\": \"\",\r\n \"last_freespins_amount\": \"\",\r\n \"last_freespins_status\": \"\",\r\n \"last_real_bets_amount\": \"\",\r\n \"last_real_wins_amount\": \"\",\r\n \"total_deposits_amount\": \"\",\r\n \"last_bonus_bets_amount\": \"\",\r\n \"last_bonus_wins_amount\": \"\",\r\n \"last_free_bonus_amount\": \"\",\r\n \"last_free_bonus_status\": \"\",\r\n \"last_deposit_bonus_date\": \"\",\r\n \"last_deposit_bonus_name\": \"\",\r\n \"last_freespins_currency\": \"\",\r\n \"last_freespins_wagering\": \"\",\r\n \"withdrawals_to_deposits\": \"\",\r\n \"last_free_bonus_currency\": \"\",\r\n \"last_free_bonus_wagering\": \"\",\r\n \"total_withdrawals_amount\": \"\",\r\n \"withdrawal_ewallet_email\": \"\",\r\n \"last_deposit_bonus_amount\": \"\",\r\n \"last_deposit_bonus_status\": \"\",\r\n \"last_deposit_bonus_currency\": \"\",\r\n \"last_deposit_bonus_wagering\": \"\",\r\n \"session\": \"\",\r\n \"payment_mode\": \"\",\r\n \"card_fullname\": \"\",\r\n \"card_bin\": \"\",\r\n \"card_hash\": \"\",\r\n \"card_last\": \"\",\r\n \"card_expire\": \"\",\r\n \"avs_result\": \"\",\r\n \"cvv_result\": \"\",\r\n \"sca_method\": \"\",\r\n \"user_bank_account\": \"\",\r\n \"user_bank_name\": \"\",\r\n \"user_balance\": \"\",\r\n \"user_verification_level\": \"\",\r\n \"status_3d\": \"\",\r\n \"regulation\": \"\",\r\n \"payment_provider\": \"\",\r\n \"phone_number\": \"\",\r\n \"transaction_type\": \"\",\r\n \"transaction_amount\": \"\",\r\n \"transaction_currency\": \"\",\r\n \"merchant_id\": \"\",\r\n \"details_url\": \"\",\r\n \"name\": \"\",\r\n \"person_type\": \"\",\r\n \"gender\": \"\"\r\n }\r\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/checkTransAllowed","description":"General TrustScore
\nRequest for the checkTransactionAllowed endpoint is identical to the TrustScore API. Only thing different is the response. Instead of detailed score, this endpoint only returns transactionAllowed parameter that can have either YES or NO value.
Permission
\nAccess to this API has to be given to you by the admin. So please contact your sales representative at Paybomb to get access to this API, if you get a 401 error of \"You are not allowed to call this API service\".
\nMandatory Parameters (in body)
\nOther optional paramters:
\nThe optional parameters are self-explanatory and appropriate values can be given in string format.
\nResponse
\nResponse contains a single parameter: transactionAllowed which can either be YES or NO .
{\n\"transactionAllowed\" : \"YES\"\n}\n\nIf there are any errors then it'll be in the format of :
\n{\n \"message\": \"descriptive error message\",\n \"code\": \"error_code\"\n}\n\nPossible Error Messages
\nthe possible error codes one can get on calling this APIs are:
\nfor example:
\n","urlObject":{"path":["checkTransAllowed"],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"33e9ac42-ca84-4735-9492-7e065a434728","name":"TrustScoreExists","originalRequest":{"method":"POST","header":[],"body":{"mode":"raw","raw":"{\r\n \"requiredinput\": {\r\n \"ip\": \"2001:8004:cc2:fadb:9958:4523:6c42:e3f2\",\r\n \"email\": \"test@gmail.com\",\r\n \"url\": \"http://test.com\"\r\n },\r\n \"optionalInput\": {\r\n \"last_bets\": null,\r\n \"last_wins\": \"\",\r\n \"total_bonuses\": \"\",\r\n \"last_real_bets\": \"\",\r\n \"last_real_wins\": \"\",\r\n \"total_deposits\": \"\",\r\n \"last_bonus_bets\": \"\",\r\n \"last_bonus_wins\": \"\",\r\n \"average_real_bet\": \"\",\r\n \"last_bets_amount\": \"\",\r\n \"last_wins_amount\": \"\",\r\n \"average_bonus_bet\": \"\",\r\n \"bonus_to_deposits\": \"\",\r\n \"last_deposit_date\": \"\",\r\n \"total_withdrawals\": \"\",\r\n \"is_phone_confirmed\": \"\",\r\n \"money_in_money_out\": \"\",\r\n \"last_deposit_amount\": \"\",\r\n \"last_freespins_date\": \"\",\r\n \"last_freespins_name\": \"\",\r\n \"last_free_bonus_date\": \"\",\r\n \"last_free_bonus_name\": \"\",\r\n \"total_bonuses_amount\": \"\",\r\n \"last_freespins_amount\": \"\",\r\n \"last_freespins_status\": \"\",\r\n \"last_real_bets_amount\": \"\",\r\n \"last_real_wins_amount\": \"\",\r\n \"total_deposits_amount\": \"\",\r\n \"last_bonus_bets_amount\": \"\",\r\n \"last_bonus_wins_amount\": \"\",\r\n \"last_free_bonus_amount\": \"\",\r\n \"last_free_bonus_status\": \"\",\r\n \"last_deposit_bonus_date\": \"\",\r\n \"last_deposit_bonus_name\": \"\",\r\n \"last_freespins_currency\": \"\",\r\n \"last_freespins_wagering\": \"\",\r\n \"withdrawals_to_deposits\": \"\",\r\n \"last_free_bonus_currency\": \"\",\r\n \"last_free_bonus_wagering\": \"\",\r\n \"total_withdrawals_amount\": \"\",\r\n \"withdrawal_ewallet_email\": \"\",\r\n \"last_deposit_bonus_amount\": \"\",\r\n \"last_deposit_bonus_status\": \"\",\r\n \"last_deposit_bonus_currency\": \"\",\r\n \"last_deposit_bonus_wagering\": \"\",\r\n \"session\": \"\",\r\n \"payment_mode\": \"\",\r\n \"card_fullname\": \"\",\r\n \"card_bin\": \"\",\r\n \"card_hash\": \"\",\r\n \"card_last\": \"\",\r\n \"card_expire\": \"\",\r\n \"avs_result\": \"\",\r\n \"cvv_result\": \"\",\r\n \"sca_method\": \"\",\r\n \"user_bank_account\": \"\",\r\n \"user_bank_name\": \"\",\r\n \"user_balance\": \"\",\r\n \"user_verification_level\": \"\",\r\n \"status_3d\": \"\",\r\n \"regulation\": \"\",\r\n \"payment_provider\": \"\",\r\n \"phone_number\": \"\",\r\n \"transaction_type\": \"\",\r\n \"transaction_amount\": \"\",\r\n \"transaction_currency\": \"\",\r\n \"merchant_id\": \"\",\r\n \"details_url\": \"\",\r\n \"name\": \"\",\r\n \"person_type\": \"\",\r\n \"gender\": \"\"\r\n }\r\n}","options":{"raw":{"language":"json"}}},"url":"{{StagingBaseURL}}/checkTransAllowed"},"status":"Accepted","code":202,"_postman_previewlanguage":"json","header":[{"key":"Date","value":"Sun, 29 Oct 2023 09:21:22 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"1; mode=block"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"X-Frame-Options","value":"DENY"},{"key":"CF-Cache-Status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=r2%2FuLwSilxdD1lpiI1VqpgF0Tu9etiNhupySeBHl0zcU8XV1z8kwR%2FJ00ti4xpMdrTXW%2BkqZkLGrkkaUnMWFsaYlg%2FfA9UC4wIKwmc9LHUwna491EmnC3b3vlabzhUJ11CMpnVmicUE%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}"},{"key":"NEL","value":"{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}"},{"key":"Server","value":"cloudflare"},{"key":"CF-RAY","value":"81da590e8d4345a0-LHR"},{"key":"alt-svc","value":"h3=\":443\"; ma=86400"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionAllowed\": \"YES\"\n}"},{"id":"684201a5-fb5e-4ca3-b429-4860c44d1cec","name":"TrustScoreError","originalRequest":{"method":"POST","header":[],"body":{"mode":"raw","raw":"{\r\n \"requiredinput\": {\r\n \"ip\": \"2001:8004:cc2:fadb:9958:4523:6c42:e3f2\",\r\n \"email\": \"test@gmail.com\",\r\n \"url\": \"http://test.com\"\r\n },\r\n \"optionalInput\": {\r\n \"last_bets\": null,\r\n \"last_wins\": \"\",\r\n \"total_bonuses\": \"\",\r\n \"last_real_bets\": \"\",\r\n \"last_real_wins\": \"\",\r\n \"total_deposits\": \"\",\r\n \"last_bonus_bets\": \"\",\r\n \"last_bonus_wins\": \"\",\r\n \"average_real_bet\": \"\",\r\n \"last_bets_amount\": \"\",\r\n \"last_wins_amount\": \"\",\r\n \"average_bonus_bet\": \"\",\r\n \"bonus_to_deposits\": \"\",\r\n \"last_deposit_date\": \"\",\r\n \"total_withdrawals\": \"\",\r\n \"is_phone_confirmed\": \"\",\r\n \"money_in_money_out\": \"\",\r\n \"last_deposit_amount\": \"\",\r\n \"last_freespins_date\": \"\",\r\n \"last_freespins_name\": \"\",\r\n \"last_free_bonus_date\": \"\",\r\n \"last_free_bonus_name\": \"\",\r\n \"total_bonuses_amount\": \"\",\r\n \"last_freespins_amount\": \"\",\r\n \"last_freespins_status\": \"\",\r\n \"last_real_bets_amount\": \"\",\r\n \"last_real_wins_amount\": \"\",\r\n \"total_deposits_amount\": \"\",\r\n \"last_bonus_bets_amount\": \"\",\r\n \"last_bonus_wins_amount\": \"\",\r\n \"last_free_bonus_amount\": \"\",\r\n \"last_free_bonus_status\": \"\",\r\n \"last_deposit_bonus_date\": \"\",\r\n \"last_deposit_bonus_name\": \"\",\r\n \"last_freespins_currency\": \"\",\r\n \"last_freespins_wagering\": \"\",\r\n \"withdrawals_to_deposits\": \"\",\r\n \"last_free_bonus_currency\": \"\",\r\n \"last_free_bonus_wagering\": \"\",\r\n \"total_withdrawals_amount\": \"\",\r\n \"withdrawal_ewallet_email\": \"\",\r\n \"last_deposit_bonus_amount\": \"\",\r\n \"last_deposit_bonus_status\": \"\",\r\n \"last_deposit_bonus_currency\": \"\",\r\n \"last_deposit_bonus_wagering\": \"\",\r\n \"session\": \"\",\r\n \"payment_mode\": \"\",\r\n \"card_fullname\": \"\",\r\n \"card_bin\": \"\",\r\n \"card_hash\": \"\",\r\n \"card_last\": \"\",\r\n \"card_expire\": \"\",\r\n \"avs_result\": \"\",\r\n \"cvv_result\": \"\",\r\n \"sca_method\": \"\",\r\n \"user_bank_account\": \"\",\r\n \"user_bank_name\": \"\",\r\n \"user_balance\": \"\",\r\n \"user_verification_level\": \"\",\r\n \"status_3d\": \"\",\r\n \"regulation\": \"\",\r\n \"payment_provider\": \"\",\r\n \"phone_number\": \"\",\r\n \"transaction_type\": \"\",\r\n \"transaction_amount\": \"\",\r\n \"transaction_currency\": \"\",\r\n \"merchant_id\": \"\",\r\n \"details_url\": \"\",\r\n \"name\": \"\",\r\n \"person_type\": \"\",\r\n \"gender\": \"\"\r\n }\r\n}","options":{"raw":{"language":"json"}}},"url":"{{StagingBaseURL}}/checkTransAllowed"},"status":"Unauthorized","code":401,"_postman_previewlanguage":"json","header":[{"key":"Date","value":"Sun, 29 Oct 2023 09:28:33 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"1; mode=block"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"X-Frame-Options","value":"DENY"},{"key":"CF-Cache-Status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=herXY1o%2BFZa%2F3qNFjvh4ANgP%2FD0DdAVVFm0vUZDAst2rFkieItm%2Fu0VN24DYrdp7MHMHFKWLvrsBYVIxjDPDaLgJjeGBvlTP2iZoB5EnG1hPPHUVXRNP%2FGMmOTh%2Fp7gsyj0vihW1kMk%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}"},{"key":"NEL","value":"{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}"},{"key":"Server","value":"cloudflare"},{"key":"CF-RAY","value":"81da6398ab144913-LHR"},{"key":"alt-svc","value":"h3=\":443\"; ma=86400"}],"cookie":[],"responseTime":null,"body":"{\n \"message\": \"Incorrect secret_key\",\n \"code\": \"authentication_failed\"\n}"}],"_postman_id":"bfc94c6f-0b33-4110-b70c-20fd1565bacf"}],"id":"80ab5ea0-979c-44a3-8986-20f3811ac91a","_postman_id":"80ab5ea0-979c-44a3-8986-20f3811ac91a","description":""},{"name":"Cashier APIs","item":[{"name":"Customer","id":"d66a1117-04e3-4ad2-9ec5-5f1283b44a22","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Authorization","value":"Bearer Token","type":"text"},{"key":"BrandId","value":"brand_id_value","type":"text"},{"key":"Content-Type","value":"application/json","type":"text"}],"body":{"mode":"raw","raw":"{\r\n \"fullName\": \"Rahul Agarwal\",\r\n \"emailId\": \"rahul+26@paybomb.tech\",\r\n \"dateOfBirth\": \"1994-06-03\",\r\n \"phoneNo\": \"+91 797639082\",\r\n \"city\": \"Jaipur\",\r\n \"stateCode\": \"RJ\",\r\n \"zipCode\": \"302018\",\r\n \"address\": \"House Number 53, Vaishali Nagar, Jaipur\",\r\n \"country\": \"IN\",\r\n \"merchantCustomerId\": \"rahultestcustomer@paybomb.tech\",\r\n \"CustRegDate\": \"2023-12-27\", //non-mandatory - customer registration date on merchant site\r\n \"SuccessTxn\": \"32\", //non-mandatory - total successful customer orders on merchant site\r\n \"extraParam\": {\r\n \"param1\": \"value1\",\r\n \"param2\": \"value2\",\r\n \"param3\": \"value3\",\r\n \"param4\": \"value4\"\r\n }\r\n}","options":{"raw":{"language":"json"}}},"url":"https://api.paybomb.net/api/v1/customer","description":"OVERIEW
\nThe createCustomer API allows merchants to create a customer profile on Paybomb when a user visits their website, facilitating a seamless payment experience by pre-filling the customer's details, on the Paybomb Cashier. The API takes in customer information and returns a unique customerID that can be passed in purchase payload, eliminating the need for customers to manually enter their details during transactions.
\nUser Flow
\n- \n
Customer visits merchant's website: The customer selects the product or service and proceeds to checkout page.
\n \nMerchant calls the
\ncreateCustomerAPI: The merchant sends aPOSTrequest to the Paybomb API with the customer's details. \nCustomer ID generation: Paybomb processes the request and generates a unique
\ncustomerIdwhich is returned in the response. \nPayment Process: The merchant uses the
\ncustomerIdfor subsequent session creation, ensuring the customer doesn’t need to re-enter their details for future payments. \n
\n
Benefits
\n- \n
Seamless user experience: The customer does not have to enter their details manually for every purchase.
\n \nFaster Checkout: The merchant can use the
\ncustomerIdfor faster payment processing. \nData Security: Customer details are stored securely and can be reused across transactions, reducing the chances of errors.
\n \n
Implementing createCustomer on merchant site:
\nThe createCustomer can be implemented on merchant site in one of two ways, depending on merchant’s integration flow:
At Checkout:
\nWhen a customer initiates the checkout process, your system should invoke the createCustomer API, before actually starting the session.
- \n
Call
\ncreateCustomer: This API call generates a unique customer ID. \nUse of Customer ID: Pass the returned customer ID in Session API, when creating a payment session.
\n \n
Upon Customer Login:
\nAlternatively, merchants may choose to call createCustomer at the time of customer login on their site.
- \n
Persistent Customer Profiles: This approach can help build or maintain a persistent customer profile, ensuring the customer ID is available for any subsequent payment sessions without needing to call
\ncreateCustomeragain. \nIntegration Flexibility: This is useful for merchants who want to initialize customer data early in the customer journey rather than during checkout.
\n \n
The method you choose depends on your business requirements and how your system is architected. Regardless of when you call it, the resulting customer ID must be passed to the createSession API to initiate a payment session.
This endpoint makes an HTTP GET request to retrieve customer information from the Paybomb API.
\nRequest
\nThe request does not include any query parameters, but it uses a raw request body with the following parameter \"merchantCustomerId\", which will be the customer id on the merchant's side.
\nResponse
\nThe response of this request can be documented as a JSON schema.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"d2576231-7177-44fd-a34a-5bc0c13671b1","id":"d2576231-7177-44fd-a34a-5bc0c13671b1","name":"Cashier APIs","type":"folder"}},"urlObject":{"protocol":"https","path":["api","v1","customer"],"host":["app","paybomb","net"],"query":[],"variable":[]}},"response":[{"id":"68ce3dbf-3af2-4f48-9b2f-e30d6f2ca162","name":"Success","originalRequest":{"method":"GET","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Accept","value":"*/*","type":"text"},{"key":"BrandId","value":"brand_id_value","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"url":"https://app.paybomb.net/api/v1/customer"},"status":"OK","code":200,"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\n \"customerId\": \"691afbc6fd96d34a8113a34d\",\n \"merchantCustomerId\": \"rahultestcustomer1@paybomb.tech\",\n \"fullName\": \"Rahul Agarwal\",\n \"emailId\": \"rahul+26@paybomb.tech\",\n \"dateOfBirth\": \"1994-06-03\",\n \"phoneNo\": \"+91 797639082\",\n \"brandID\": \"1d666074-39be-4b90-aec9-e9de78fbdcb9\",\n \"city\": \"Jaipur\",\n \"zipCode\": \"302018\",\n \"address\": \"House Number 53, Vaishali Nagar, Jaipur\",\n \"country\": \"IN\",\n \"stateCode\": \"RJ\",\n \"custRegDate\": \"2023-12-27\",\n \"successTrans\": 0,\n \"createdOn\": 1763376070,\n \"lastUpdated\": 0,\n \"lastActivity\": 1763376070,\n \"extraParam\": {\n \"param1\": \"value1\",\n \"param2\": \"value2\",\n \"param3\": \"value3\",\n \"param4\": \"value4\"\n }\n}"},{"id":"b4d0e0b8-9dcf-4308-936b-23b791659019","name":"Invalid Customer","originalRequest":{"method":"GET","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Accept","value":"*/*","type":"text"},{"key":"BrandId","value":"brand_id_value","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"url":"https://app.paybomb.net/api/v1/customer"},"status":"Bad Request","code":400,"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\n \"message\": \"Customer with this information does not exist\",\n \"code\": \"customer_does_not_exist\"\n}"}],"_postman_id":"49d7b7b7-6b7a-4348-b21b-59f82b831cc7"},{"name":"Customer","event":[{"listen":"test","script":{"exec":["var template = `","","","| Customer ID | ","First Name | ","Last Name | ","Phone | ","|
|---|---|---|---|---|
| {{response.customerId}} | ","{{response.firstName}} | ","{{response.lastName}} | ","{{response.email}} | ","{{response.phone}} | ","
Whenever a customer or the merchant updates customer details on the merchant site, a PATCH request must be made to synchronize these changes with Paybomb.
\nThis API endpoint allows you to update the customer details using an HTTP PATCH request. The request should be sent to https://app.paybomb.tech/api/v1/{customerId}/patchCustomer.
\nRequest Body
\nThe request body should be in raw format and include the following parameters:
\n- \n
\nfullName(string): The full name of the customer. \n
\nemailId(string): The email address of the customer. \n
\ndateOfBirth(string): The date of birth of the customer. \n
\nphoneNo(string): The phone number of the customer. \n
\ncity(string): The city of the customer. \n
\nstateCode(string): The state code of the customer. \n
\nzipCode(string): The zip code of the customer. \n
\naddress(string): The address of the customer. \n
\ncountry(string): The country of the customer. \n
\ncreatedOn(string): Time when the customer was created. \n
\ncustRegDate(string): Customer registration date (Non-Mandatory). \n
\nsuccessTxn(string): Success transaction details (Non-Mandatory). \n
\nlastActivity(string): Time of the last activity. \n
\nlastUpdated(string): Time when the last patch was called. \n
\nextraParam(object): Additional parameters includingparam1,param2,param3,param4with their respective values. \n
Response
\nThe response will contain the updated customer details or a success message upon successful update.
\n","urlObject":{"protocol":"https","path":["api","v1","{PaybombCustomerId}","patchCustomer"],"host":["api","paybomb","net"],"query":[],"variable":[]}},"response":[{"id":"e02e4246-c372-4b08-add7-70a988e485e1","name":"Success","originalRequest":{"method":"PATCH","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Accept","value":"*/*","type":"text"},{"key":"BrandId","value":"brand_id_value","type":"text"},{"key":"Authorisation","value":"Bearer Token","type":"text"}],"body":{"mode":"raw","raw":"{\n \"fullName\": \"Gouri Shankar3\",\n \"emailId\": \"gouri@paybomb.techm\",\n \"dateOfBirth\": \"1990-11-27\",\n \"phoneNo\": \"+91 9413666514\",\n \"city\": \"Dausa\",\n \"stateCode\": \"Raj\",\n \"zipCode\": \"202021\",\n \"address\": \"Somnath Nagar\",\n \"country\": \"IN\",\n \"CustRegDate\": \"2023-12-28\",\n \"SuccessTxn\": \"33\",\n \"extraParam\": {\n \"param1\": \"value1\",\n \"param2\": \"value2\",\n \"param3\": \"value3\",\n \"param4\": \"value4\"\n }\n}","options":{"raw":{"language":"json"}}},"url":"https://api.paybomb.net/api/v1/{PaybombCustomerId}/patchCustomer"},"status":"OK","code":200,"_postman_previewlanguage":"Text","header":[],"cookie":[],"responseTime":null,"body":"{\n \"customerId\": \"691afbc6fd96d34a8113a34d\",\n \"merchantCustomerId\": \"rahultestcustomer1@paybomb.tech\",\n \"fullName\": \"Gouri Shankar3\",\n \"emailId\": \"gouri@paybomb.techm\",\n \"dateOfBirth\": \"1990-11-27\",\n \"phoneNo\": \"+91 9413666514\",\n \"brandID\": \"brandID\",\n \"city\": \"Dausa\",\n \"zipCode\": \"202021\",\n \"address\": \"Somnath Nagar\",\n \"country\": \"IN\",\n \"stateCode\": \"Raj\",\n \"custRegDate\": \"2023-12-28\",\n \"successTrans\": 0,\n \"createdOn\": 1763376070,\n \"lastUpdated\": 1763377024,\n \"lastActivity\": 1763377024,\n \"extraParam\": {\n \"param1\": \"value1\",\n \"param2\": \"value2\",\n \"param3\": \"value3\",\n \"param4\": \"value4\"\n }\n}"}],"_postman_id":"ccd1baa9-8efd-4463-bce0-47b9549f2afa"},{"name":"Purchase Session","id":"0515d8b7-c1c6-4489-81fc-951bbe3b9b89","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Authorization","value":"Bearer Token","type":"text"},{"key":"BrandId","value":"brand_id_value","type":"text"},{"key":"Accept","value":"*/*","type":"text"},{"key":"Content-Type","value":"application/json","type":"text"}],"body":{"mode":"raw","raw":"{\r\n \"customerId\": \"68fed1855ebbe829416b08c6\",\r\n \"merchantRef\": \"rahultestcustomer1@paybomb.tech\", // optional\r\n \"currency\": \"EUR\",\r\n \"products\": [\r\n {\r\n \"name\": \"Product1\",\r\n \"price\": \"10\"\r\n },\r\n {\r\n \"name\": \"Product2\",\r\n \"price\": \"12\"\r\n }\r\n ],\r\n \"totalAmount\": \"22\", // optional, but if present have precedence over sum of prices mentioned above.\r\n \"paymentMethod\": \"VISA\", //optional\r\n \"success_redirect\": \"https://merchant-success-page.com/\",\r\n \"failure_redirect\": \"https://merchant-failure-page.com/\",\r\n \"pending_redirect\": \"https://merchant-pending-page.com/\",\r\n \"success_callback\": \"https://your.success.callback.com\",\r\n \"failure_callback\": \"https://your.failure.callback.com\",\r\n \"extraParam\": {\r\n \"param1\": \"value1\",\r\n \"showCryptoConversion\": \"yes\",\r\n \"cryptoCurrencies\": \"[\\\"BTC\\\",\\\"ETH\\\",\\\"USDT\\\",\\\"XRP\\\",\\\"LTC\\\",\\\"DOGE\\\",\\\"ETC\\\",\\\"BNB\\\",\\\"USDC\\\",\\\"SOL\\\",\\\"ADA\\\",\\\"BCH\\\",\\\"DASH\\\",\\\"BTG\\\",\\\"ZEC\\\",\\\"DGB\\\",\\\"EOS\\\",\\\"XLM\\\",\\\"TRX\\\",\\\"QTUM\\\",\\\"POL\\\",\\\"SHIB\\\",\\\"LINK\\\",\\\"DAI\\\",\\\"TON\\\",\\\"AVAX\\\",\\\"FDUSD\\\",\\\"ARB\\\",\\\"OP\\\"]\",\r\n \"param3\": \"value3\",\r\n \"param4\": \"value4\"\r\n }\r\n }","options":{"raw":{"language":"json"}}},"url":"https://api.paybomb.net/api/v1/createSession","description":"OVERIEW
\nThe createSession API is designed to initiate a payment session for a customer after their profile has been created via the createCustomer API. The session is automatically generated at the backend on the merchant’s checkout URL. This session allows the customer to continue with their transaction without having to manually interact with the session URL, and ensures the session remains active until the payment is completed or the session expires.
This API improves the user experience by reducing transaction failures and enhancing the overall payment process, thus reducing transaction churn rates.
\nMandatory Parameters
\nShow Crypto Conversion
\nAdditionally, there are some default extra parameters that you can pass for allowing Crypto Conversion on Paybomb's cashier itself.
\nUsage Flow
\n- \n
Customer completes the
\ncreateCustomerAPI: Once the customer is created via thecreateCustomerAPI, the merchant proceeds to call thecreateSessionAPI to generate a session. \nMerchant sends
\ncreateSessionrequest: The merchant sends aPOSTrequest to thecreateSessionAPI with the customer’scustomerIdand the merchant’sbrandId. \nSession created automatically on the checkout URL: Paybomb creates the session and associates it with the merchant’s checkout page. This session remains active on the backend, allowing the customer to continue the payment process without interruption.
\n \nCustomer proceeds to checkout: The customer is redirected to the checkout page as part of the merchant's payment flow, where the session is automatically validated. The session remains active for a set period, allowing the customer to complete the payment without needing to manually interact with the session URL.
\n \nSession Expiry: The session expires after the set expiration time (
\nexpiryOn), ensuring the payment process is completed within the defined window. Default is 15 mins from the creation time. \n
\n
Benefits
\n- \n
Seamless Checkout: The session URL is automatically generated and active at the backend, ensuring a smoother and uninterrupted customer experience.
\n \nReduced Transaction Failures: By ensuring the session remains active during the payment process, the chances of transaction failures due to session timeouts are minimized.
\n \nImproved User Experience: The customer does not need to click on a session URL or navigate away from the page, leading to faster and more secure payment processing.
\n \n
This API is used to initiate a payout session for a customer. By passing the customerId (generated via the createCustomer API) and specifying \"type\": \"payout\", a payout session is started.
A sessionURL is returned in the response, which can be used to redirect the customer to the payout cashier. The customer can then select the payout method, pass required parameters, and the payout will be processed.
Parameters:
\nRequest Headers:
\n- \n
BrandId: Your unique brand ID (required).
\n \nContent-Type: application/json (required).
\n \n
Response:
\nThe API will return a JSON object containing the sessionURL that can be used to redirect the customer to the payout cashier.
{\n \"sessionUrl\": \"https://app.paybomb.tech/payoutSession/68341ad35f895955355d5452/\",\n \"brandId\": \"brand_id_value\",\n \"customerId\": \"67c9983fba18400ab6cceb8f\",\n \"sessionId\": \"68341ad35f895955355d5452\",\n \"expiryOn\": 1748246103,\n \"createdOn\": 1748245203\n}\n\nThis endpoint retrieves the details of a session identified by the provided session ID.
\n\n\nNote that this API only respond once the SessionURL, received in the response for session API, is clicked.
\n
\n\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"d2576231-7177-44fd-a34a-5bc0c13671b1","id":"d2576231-7177-44fd-a34a-5bc0c13671b1","name":"Cashier APIs","type":"folder"}},"urlObject":{"protocol":"https","path":["api","v1","purchases","{Session ID}",""],"host":["api","paybomb","net"],"query":[],"variable":[]}},"response":[{"id":"64d16c44-3e5b-49d1-811a-4d90a8c6b256","name":"202 Success","originalRequest":{"method":"GET","header":[{"key":"Authorization","value":"Bearer Token"}],"url":"https://api.paybomb.net/api/v1/purchases/6950e4ba5205280b71ac2010/"},"status":"Accepted","code":202,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Sun, 28 Dec 2025 08:03:36 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"d5308b2a-537d-466a-8273-f754ba3491b8"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 f89daa99b6a349030b23247a4977cb5e.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"Ed-N_b__1xPz7yrAt9mMc6JrgiZqMiuPi3uJbZ4AeuUKm-Ziiohlcw=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=V90OEeQkl%2Fh028giW2T2qMbuNADZ5EvKMZG33harMVuXpmo%2BnNQm5JeDtH2802Oa8hw5kJG737sqfdiLVuvIq%2F5E5tHoRdK8Zj6OU6yO255A\"}]}"},{"key":"CF-RAY","value":"9b4f8ac7caf2f4ca-IAD"},{"key":"alt-svc","value":"h3=\":443\"; ma=86400"}],"cookie":[{"expires":"Invalid Date","domain":"","path":""}],"responseTime":null,"body":"{\n \"purchaseId\": \"6950e4e3e4a1b008c2fae5c3\",\n \"client\": {\n \"customerId\": \"69034a5a61b460084d20c23b\",\n \"email\": \"rahul+23@paybomb.tech\",\n \"phone\": \"+919634088561\",\n \"full_name\": \"Rahul Agarwal\",\n \"street_address\": \"Vaishali Jaipur\",\n \"country\": \"NA\",\n \"city\": \"jaipur\",\n \"zip_code\": \"202020\",\n \"cc\": [],\n \"bcc\": [],\n \"stateCode\": \"RA\"\n },\n \"updated_on\": 1766909180,\n \"type\": \"purchase\",\n \"paymentMethod\": \"MASTER,VISA,JCB,AMEX,CRYPTO-BRIDGE,FawryPay,INTERAC-E-TRANSFER,INTERAC-REQUEST-MONEY,MOBILEMONEY,NEOSURF,PAYID,PIX,SPEI,THIRDPARTY-UPI,DISCOVER,BANKTRANSFER,VIRTUAL-IBAN,UPI-COLLECT,UPI-QR,VIRTUAL-ACCOUNT,DINERS,NETBANKING,THIRDPARTY-NETBANKING,MAYA,GCASH,INTERAC-EXPRESS,QRPH\",\n \"amountUnit\": \"MAJOR\",\n \"errorMsg\": \"This customer can not be processed !\",\n \"errorCode\": \"NA\",\n \"savedCardUsed\": \"NO\",\n \"redirectType\": \"POST\",\n \"force_recurring\": false,\n \"created_on\": 1766909155,\n \"merchantRef\": \"6950e4e3e4a1b008c2fae5c3\",\n \"merchantName\": \"rahul_test\",\n \"merchantType\": \"MERCHANT\",\n \"purchase\": {\n \"currency\": \"EUR\",\n \"products\": [\n {\n \"name\": \"NA\",\n \"quantity\": 1.0,\n \"price\": 22.0,\n \"discount\": 0,\n \"tax_percent\": \"0.00\"\n }\n ],\n \"total\": 22.0,\n \"requestAmount\": 22.0,\n \"language\": \"en\",\n \"notes\": \"\",\n \"debt\": 0,\n \"total_formatted\": 1.0,\n \"taxAmount\": 0.0,\n \"taxPercent\": 0.0,\n \"request_client_details\": [],\n \"email_message\": \"\"\n },\n \"issuer_details\": {\n \"website\": \"\",\n \"legal_street_address\": \"\",\n \"legal_country\": \"\",\n \"legal_city\": \"\",\n \"legal_zip_code\": \"\",\n \"bank_accounts\": [\n {}\n ],\n \"legal_name\": \"Testing\",\n \"brand_name\": \"Testing\",\n \"registration_number\": \"\",\n \"tax_number\": \"\"\n },\n \"transaction_data\": {\n \"payment_method\": \"\",\n \"flow\": \"payform\",\n \"extra\": {\n \"expiry_month\": \"07\",\n \"amount\": 22.0,\n \"card_issuer\": \"CIAGROUP\",\n \"masked_pan\": \"55555555****4444\",\n \"card_brand\": \"MASTER\",\n \"card_issuer_country\": \"BR\",\n \"card_type\": \"DEBIT\",\n \"cardholder_name\": \"rahul\",\n \"expiry_year\": \"30\"\n },\n \"country\": \"\",\n \"attempts\": [\n {\n \"client_ip\": \"183.83.53.214\",\n \"type\": \"execute\",\n \"payment_method\": \"MASTER\",\n \"flow\": \"payform\",\n \"successful\": false,\n \"country\": \"BR\",\n \"processing_time\": 1766909179,\n \"extra\": {\n \"expiry_month\": \"07\",\n \"amount\": 22.0,\n \"card_issuer\": \"CIAGROUP\",\n \"masked_pan\": \"55555555****4444\",\n \"card_brand\": \"MASTER\",\n \"card_issuer_country\": \"BR\",\n \"card_type\": \"DEBIT\",\n \"cardholder_name\": \"rahul\",\n \"expiry_year\": \"30\"\n },\n \"error\": {\n \"message\": \"This customer can not be processed !\",\n \"code\": \"no_mid_found\"\n }\n }\n ]\n },\n \"status\": \"ERROR\",\n \"status_history\": [\n {\n \"status\": \"created\",\n \"timestamp\": 1766909155\n },\n {\n \"status\": \"pending_execute\",\n \"timestamp\": 1766909179\n },\n {\n \"status\": \"error\",\n \"timestamp\": 1766909180\n },\n {\n \"status\": \"viewed\",\n \"timestamp\": 1766909186\n }\n ],\n \"viewedOn\": 1766909186,\n \"is_test\": false,\n \"brand_id\": \"59c5ed48-caf9-464a-ba54-26e1e02bc1bc\",\n \"send_receipt\": false,\n \"is_recurring_token\": false,\n \"skip_capture\": false,\n \"reference_generated\": \"PS334\",\n \"issued\": \"2025-12-28\",\n \"due\": 1766909155,\n \"refund_upto\": 0,\n \"cc_descriptor\": \"\",\n \"fraudScore\": \"0\",\n \"trustScore\": \"0\",\n \"extraFee\": \"0\",\n \"paidOn\": 0,\n \"receivedAmt\": 0.0,\n \"taxAmount\": 0.0,\n \"surcharge\": 0.0,\n \"surchargeType\": \"\",\n \"sessionId\": \"6950e4ba5205280b71ac2010\",\n \"refund_availability\": \"NONE\",\n \"refundable_amount\": 0.0,\n \"success_redirect\": \"https://google.com/\",\n \"failure_redirect\": \"https://google.com/\",\n \"pending_redirect\": \"https://google.com/\",\n \"cancel_redirect\": \"\",\n \"success_callback\": \"https://your.success.callback.com\",\n \"failure_callback\": \"https://your.failure.callback.com\",\n \"platform\": \"API\",\n \"checkout_url\": \"https://api.choicepay.ca/payments/adb6e07f74ec6197ef764909736d478e/\",\n \"direct_post_url\": \"https://api.choicepay.ca/api/v1/p/6950e4e3e4a1b008c2fae5c3/\",\n \"payoutProcess\": false\n}"},{"id":"81dc2d08-0476-42d5-8e93-c6b6b00440de","name":"400 Bad Request","originalRequest":{"method":"GET","header":[{"key":"Authorization","value":"Bearer Token"}],"url":"https://api.paybomb.net/api/v1/purchases/6950e4ba5205280b71ac2010/"},"status":"Bad Request","code":400,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Sun, 28 Dec 2025 08:03:36 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"d5308b2a-537d-466a-8273-f754ba3491b8"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 f89daa99b6a349030b23247a4977cb5e.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"Ed-N_b__1xPz7yrAt9mMc6JrgiZqMiuPi3uJbZ4AeuUKm-Ziiohlcw=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=V90OEeQkl%2Fh028giW2T2qMbuNADZ5EvKMZG33harMVuXpmo%2BnNQm5JeDtH2802Oa8hw5kJG737sqfdiLVuvIq%2F5E5tHoRdK8Zj6OU6yO255A\"}]}"},{"key":"CF-RAY","value":"9b4f8ac7caf2f4ca-IAD"},{"key":"alt-svc","value":"h3=\":443\"; ma=86400"}],"cookie":[{"expires":"Invalid Date","domain":"","path":""}],"responseTime":null,"body":"{\n \"message\": \"PurchaseId Not found.\",\n \"code\": \"transaction_error\"\n}"},{"id":"386c56a6-3528-439d-9ecc-37c20ac2b289","name":"401 Unauthorized","originalRequest":{"method":"GET","header":[{"key":"Authorization","value":"Bearer Token"}],"url":"https://api.paybomb.net/api/v1/purchases/{Session ID}/"},"status":"Unauthorized","code":401,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Sun, 28 Dec 2025 08:03:36 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"d5308b2a-537d-466a-8273-f754ba3491b8"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 f89daa99b6a349030b23247a4977cb5e.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"Ed-N_b__1xPz7yrAt9mMc6JrgiZqMiuPi3uJbZ4AeuUKm-Ziiohlcw=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=V90OEeQkl%2Fh028giW2T2qMbuNADZ5EvKMZG33harMVuXpmo%2BnNQm5JeDtH2802Oa8hw5kJG737sqfdiLVuvIq%2F5E5tHoRdK8Zj6OU6yO255A\"}]}"},{"key":"CF-RAY","value":"9b4f8ac7caf2f4ca-IAD"},{"key":"alt-svc","value":"h3=\":443\"; ma=86400"}],"cookie":[],"responseTime":null,"body":"{\n \"message\": \"Incorrect secret_key\",\n \"code\": \"authentication_failed\"\n}"}],"_postman_id":"2fa57371-d2a6-4b76-bd40-187460c96ed6"},{"name":"Check Status - Payout","id":"254ea1db-3274-4f09-b42d-95e82c4fc32d","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"GET","header":[{"key":"Authorization","value":"Bearer Token","type":"text"}],"url":"https://app.paybomb.tech/api/v1/getpayout/{Session ID}/","description":"Once the SessionURL is clicked and the user has selected a payment method and click on \"Pay\" button, a purchase is created on our backend. If you call this API before that, you will get an error.
\n
This API tells you about all the details of a Payout, including its history
\nMandatory
\nyou need to pass the payoutId or session id in the API URL
\nPossible Value of Status
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"d2576231-7177-44fd-a34a-5bc0c13671b1","id":"d2576231-7177-44fd-a34a-5bc0c13671b1","name":"Cashier APIs","type":"folder"}},"urlObject":{"path":["getpayout","{Session ID}",""],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"61a47461-520a-42d7-a45b-3921ee5494b5","name":"Success","originalRequest":{"method":"GET","header":[{"key":"Authorization","value":"Bearer Token","type":"text"}],"url":"https://app.paybomb.tech/api/v1/getpayout/{Session ID}/"},"status":"Accepted","code":202,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Mon, 27 Apr 2026 07:03:52 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"9be65213-e200-4ef2-831c-683022389e8b"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 ea9784182c7536f5ce15ec71cf0089d6.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"SQqBgIYJCqc_HzF2NrYyoiCCGUdxGyPFZ3OzmUrrL-XBe56tKWTifA=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dRx0V9WF8UC%2FPmYeyh%2Fl2YI7rIhT15NcQDiRVHdKuzF4jjsVyYmbl2imFi%2FSpP4VpmIHsFmO0xzXUjyO1%2BwKeupdremHVjRNwtqENY%2FZxgVpN7KFFzAhSQDhOMdd62Anr2zN\"}]}"},{"key":"CF-RAY","value":"9f2bf84969fa9c85-IAD"}],"cookie":[{"expires":"Invalid Date","domain":"","path":""}],"responseTime":null,"body":"{\n \"payoutId\": \"65ffadb4c1c83822903a9205\",\n \"client\": {\n \"email\": \"customer141@email.uk\",\n \"full_name\": \"Test Person-uk\",\n \"street_address\": \"Random city address\",\n \"country\": \"SG\",\n \"city\": \"Singapore\",\n \"zip_code\": \"123456\",\n \"stateCode\": \"test\"\n },\n \"updated_on\": 1711254964,\n \"payoutMethod\": \"Payout-BANKTRANSFER\",\n \"beneficiaryDetail\":{\n \"bankName\": \"DBS Bank\", \n \"bankAccountName\": \"test test\",\n \"bankAccountCurrency\": \"SGD\",\n \"bankAccountNumber\": \"12345640\",\n \"bankCountryCode\" : \"SG\",\n \"swiftCode\": \"DBSSSGSG\",\n \"routing_param\" :\n {\n \"bankCode\": \"897678\",\n \"bankBranchCode\" : \"888\"\n \n }\n },\n \"amountUnit\": \"MAJOR\",\n \"amount\": 1000.0,\n \"errorMsg\": \"Currency Account has insufficient balance.\",\n \"purpose\": \"test payout\",\n \"created_on\": 1711254972,\n \"merchantRef\": \"65ffadb4c1c83822903a9205\",\n \"status\": \"ERROR\",\n \"status_history\": [\n {\n \"status\": \"created\",\n \"timestamp\": 1711254964\n },\n {\n \"status\": \"error\",\n \"timestamp\": 1711254972\n }\n ],\n \"currency\": \"USD\",\n \"success_callback\": \"https://success.com\",\n \"failure_callback\": \"https://failure.com\"\n}"}],"_postman_id":"254ea1db-3274-4f09-b42d-95e82c4fc32d"}],"id":"d2576231-7177-44fd-a34a-5bc0c13671b1","description":"Paybomb Cashier is a unified payment management solution that connects with leading PSP and acquirers, offering merchants one convenient access point to simplify transaction processing and enhance efficiency.
\nTo start the cashier system, a payment session is initiated—a secure, temporary environment generated by our payment gateway. This session encapsulates all transaction details and state information before the cashier loads, overseeing the complete lifecycle of a payment attempt—from initial setup to final completion—ensuring every necessary detail is managed safely and consistently.
\n","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"809633dc-2921-4f42-a676-006354be47ac"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"23f97b44-fefc-4a71-9aa3-8e2b0e8b879f"}}],"_postman_id":"d2576231-7177-44fd-a34a-5bc0c13671b1"},{"name":"User Defined Fields (UDF)","item":[],"id":"362d1e39-98c2-4427-b00b-8e976ce40883","description":"User Defined Fields (also referred to as Merchant Defined Parameters) allow you to attach custom identifiers to transactions. These identifiers can help you map transactions to your internal systems and configure advanced routing rules.
\nOnce created, you can pass the parameter in the purchases or session API using the extraParam object in the payload, to receive the same in the API response and the following webhooks.
Adding a User Defined Field
\n- \n
Click Add Parameters.
\n \nEnter the Parameter Name.
\n \nChoose the Value Type (Numeric, String, or Boolean).
\n \nClick Add to save.
\n \n
Here is how you can define UDFs in Paybomb's app.
\nUsing UDF in API Requests
\nOnce created, you can pass the parameter in the purchases or session API using the extraParam object in the payload, to receive the same in the API response and the following webhooks.
\"extraParam\": {\n \"userDefinedParameter\": \"value\"\n}\n\nBest Practices
\n- \n
Use consistent naming conventions for parameters to avoid confusion across integrations.
\n \nKeep the number of UDFs minimal — only add fields that provide clear value (e.g., customer segment, order type, risk score).
\n \nLeverage UDFs in rule-based routing to optimize processing flows (e.g., route high-value transactions to a specific MID).
\n \nDocument your UDFs internally so operations and support teams can easily reference them.
\n \n
Note:
This feature is enabled only for the whitelabel merchant solution. If you are using a merchant solution, please contact your Account Manager for doing these changes.
For cases where the Merchant handles the scheduling:
\nFor cases where Paybomb handles the scheduling:
\nOVERIEW
\nThe createCustomer API allows merchants to create a customer profile on Paybomb when a user visits their website, facilitating a seamless payment experience by pre-filling the customer's details, on the Paybomb Cashier.
\nThe API takes in customer information and returns a unique customerID that can be passed in purchase payload, eliminating the need for customers to manually enter their details during transactions.
\nUser Flow
\n- \n
Customer visits merchant's website: The customer selects the product or service and proceeds to checkout page.
\n \nMerchant calls the
\ncreateCustomerAPI: The merchant sends aPOSTrequest to the Paybomb API with the customer's details. \nCustomer ID generation: Paybomb processes the request and generates a unique
\ncustomerIdwhich is returned in the response. \nPayment Process: The merchant uses the
\ncustomerIdfor subsequent session creation, ensuring the customer doesn’t need to re-enter their details for future payments. \n
\n
Benefits
\n- \n
Seamless user experience: The customer does not have to enter their details manually for every purchase.
\n \nFaster Checkout: The merchant can use the
\ncustomerIdfor faster payment processing. \nData Security: Customer details are stored securely and can be reused across transactions, reducing the chances of errors.
\n \n
Implementing createCustomer on merchant site:
\nThe createCustomer can be implemented on merchant site in one of two ways, depending on merchant’s integration flow:
At Checkout:
\nWhen a customer initiates the checkout process, your system should invoke the createCustomer API, before actually starting the session.
- \n
Call
\ncreateCustomer: This API call generates a unique customer ID. \nUse of Customer ID: Pass the returned customer ID in Session API, when creating a payment session.
\n \n
Upon Customer Login:
\nAlternatively, merchants may choose to call createCustomer at the time of customer login on their site.
- \n
Persistent Customer Profiles: This approach can help build or maintain a persistent customer profile, ensuring the customer ID is available for any subsequent payment sessions without needing to call
\ncreateCustomeragain. \nIntegration Flexibility: This is useful for merchants who want to initialize customer data early in the customer journey rather than during checkout.
\n \n
The method you choose depends on your business requirements and how your system is architected. Regardless of when you call it, the resulting customer ID must be passed to the createSession API to initiate a payment session.
This endpoint makes an HTTP GET request to retrieve customer information from the Paybomb API.
\nRequest
\nThe request does not include any query parameters, but it uses a raw request body with the following parameter \"merchantCustomerId\", which will be the customer id on the merchant's side.
\nResponse
\nThe response of this request can be documented as a JSON schema.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"a1593e51-d80d-40c4-9c2c-31943fe87354","id":"a1593e51-d80d-40c4-9c2c-31943fe87354","name":"Recurring Payments","type":"folder"}},"urlObject":{"protocol":"https","path":["api","v1","customer"],"host":["app","paybomb","net"],"query":[],"variable":[]}},"response":[{"id":"a12e6017-5ca5-40c3-8d5c-07b97b4a3ac1","name":"Success","originalRequest":{"method":"GET","header":[{"key":"Authorization","value":"Bearer Token","type":"text"},{"key":"BrandId","value":"brand_id_value","type":"text"},{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Accept","value":"*/*","type":"text"}],"url":"https://app.paybomb.net/api/v1/customer"},"status":"OK","code":200,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Sat, 31 Jan 2026 15:00:13 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"x-session-id","value":"74520247-3540-48b2-81f9-33fd50e71e01"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"Set-Cookie","value":"SESSION=NDRjYjEwZGQtNTAyMy00MDA1LWFiNTUtNTBmNmY2YWY1NjZj; Path=/; Secure; HttpOnly; SameSite=Strict"},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gy0s5195rsESyn%2B0cQcmwej6qKnbNzrAcSxW%2F%2FrtkYk52a4Lipz%2FTBcpX5IjTYOHLNsLsPeT9jJFd4rUsIPUJbu4R%2B%2BcaGEmcMT6de1u%2FVA%3D\"}]}"},{"key":"CF-RAY","value":"9c6a13d27f38a3ba-IAD"}],"cookie":[{"expires":"Invalid Date","domain":"","path":""}],"responseTime":null,"body":"{\n \"customerId\": \"691afbc6fd96d34a8113a34d\",\n \"merchantCustomerId\": \"rahultestcustomer1@paybomb.tech\",\n \"fullName\": \"Rahul Agarwal\",\n \"emailId\": \"rahul+26@paybomb.tech\",\n \"dateOfBirth\": \"1994-06-03\",\n \"phoneNo\": \"+91 797639082\",\n \"brandID\": \"1d666074-39be-4b90-aec9-e9de78fbdcb9\",\n \"city\": \"Jaipur\",\n \"zipCode\": \"302018\",\n \"address\": \"House Number 53, Vaishali Nagar, Jaipur\",\n \"country\": \"IN\",\n \"stateCode\": \"RJ\",\n \"custRegDate\": \"2023-12-27\",\n \"successTrans\": 0,\n \"createdOn\": 1763376070,\n \"lastUpdated\": 0,\n \"lastActivity\": 1763376070,\n \"extraParam\": {\n \"param1\": \"value1\",\n \"param2\": \"value2\",\n \"param3\": \"value3\",\n \"param4\": \"value4\"\n }\n}"}],"_postman_id":"102ab40d-12be-4a0a-beca-628f365696ce"},{"name":"Create Session (CIT)","id":"adb15c64-4597-42aa-9e37-7f7b6ec6cc96","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Authorization","value":"Bearer Token","type":"text"},{"key":"BrandId","value":"brand_id_value","type":"text"},{"key":"Content-Type","value":"application/json","type":"text"}],"body":{"mode":"raw","raw":"{\n \"customerId\": \"685f870cf3435a2d5b35ee08\", // mandatory\n \"currency\": \"EUR\",\n \"products\": [\n {\n \"name\": \"Product1\",\n \"price\": \"10\"\n },\n {\n \"name\": \"Product2\",\n \"price\": \"10\"\n }\n ],\n \"totalAmount\": \"21\", // optional, but if present have precedence over sum of prices.\n \"paymentMethod\": \"VISA\", //optional\n \"success_redirect\": \"https://merchant.com/success\",\n \"pending_redirect\": \"https://merchant.com/pending\",\n \"failure_redirect\": \"https://merchant.com/failure\",\n \"success_callback\": \"https://merchant.com/webhook/success\",\n \"failure_callback\": \"https://merchant.com/webhook/failure\",\n \"payment_type\": \"mandate\",\n \"mandate\": {\n \"mandate_max_amount\": \"5000\", // the mandated amount should be less than or equal to this amount.\n \"amount_variability\": \"Fixed\",\n \"start_date\": \"1598965200\", // epoch timestamp or UNIX timestamp\n \"end_date\": \"1914141600\", // epoch timestamp or UNIX timestamp\n \"frequency\": \"MONTHLY\",\n \"rule\": \"on\",\n \"value\": 1\n }\n}","options":{"raw":{"language":"json"}}},"url":"https://api.paybomb.net/api/v1/createSession","description":"OVERIEW
\nThe createSession API is designed to initiate a payment session for a customer after their profile has been created via the createCustomer API. The session is automatically generated at the backend on the merchant’s checkout URL. This session allows the customer to continue with their transaction without having to manually interact with the session URL, and ensures the session remains active until the payment is completed or the session expires.
This API improves the user experience by reducing transaction failures and enhancing the overall payment process, thus reducing transaction churn rates.
\nMandatory Parameters
\nTo register a mandate, pass mandate related parameters in the Create Session API to create a mandate registration purchase. Post transaction completion, use Get Status API and Webhooks to capture mandate registration details.
\nAdditional parameters for this usecase:
\nUsage Flow
\n- \n
Customer completes the
\ncreateCustomerAPI: Once the customer is created via thecreateCustomerAPI, the merchant proceeds to call thecreateSessionAPI to generate a session. \nMerchant sends
\ncreateSessionrequest: The merchant sends aPOSTrequest to thecreateSessionAPI with the customer’scustomerIdand the merchant’sbrandId. \nSession created automatically on the checkout URL: Paybomb creates the session and associates it with the merchant’s checkout page. This session remains active on the backend, allowing the customer to continue the payment process without interruption.
\n \nCustomer proceeds to checkout: The customer is redirected to the checkout page as part of the merchant's payment flow, where the session is automatically validated. The session remains active for a set period, allowing the customer to complete the payment without needing to manually interact with the session URL.
\n \nSession Expiry: The session expires after the set expiration time (
\nexpiryOn), ensuring the payment process is completed within the defined window. Default is 15 mins from the creation time. \n
\n
Benefits
\n- \n
Seamless Checkout: The session URL is automatically generated and active at the backend, ensuring a smoother and uninterrupted customer experience.
\n \nReduced Transaction Failures: By ensuring the session remains active during the payment process, the chances of transaction failures due to session timeouts are minimized.
\n \nImproved User Experience: The customer does not need to click on a session URL or navigate away from the page, leading to faster and more secure payment processing.
\n \n
OVERIEW
\nThe create Purchase API is designed to initiate a payment for a merchant who doesn't want to use Paybomb's cashier and wants to keep everything S2S.
The merchant doesn't need to create a customer in this case and directly needs to call the purchase API and then call the S2S API after that.
\nAdditional parameters for this usecase:
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"a1593e51-d80d-40c4-9c2c-31943fe87354","id":"a1593e51-d80d-40c4-9c2c-31943fe87354","name":"Recurring Payments","type":"folder"}},"urlObject":{"protocol":"https","path":["api","v1","purchases"],"host":["api","paybomb","net"],"query":[],"variable":[]}},"response":[{"id":"d7620ad5-dcce-49a2-8cb7-844d1265ac98","name":"Success","originalRequest":{"method":"POST","header":[{"key":"Authorization","value":"Bearer Token","type":"text"},{"key":"Content-Type","value":"application/json","type":"text"}],"body":{"mode":"raw","raw":"{\n \"client\": {\n \"email\": \"rahul@gmail.com\",\n \"country\": \"GB\",\n \"city\": \"London\",\n \"stateCode\": \"LO\",\n \"street_address\": \"Flat 61 Priory Court Romford RM7 0FY\",\n \"zip_code\": \"234567\",\n \"full_name\": \"Rahul Agarwal\",\n \"phone\": \"+44 07932665877\"\n },\n \"purchase\": {\n \"currency\": \"AED\",\n \"products\": [\n {\n \"name\": \"product name\",\n \"price\": \"1\"\n }\n ]\n },\n \"merchantRef\": \"d9db7ec0-f94c-4a9d-8883-54c19c222d81\", // optional\n \"paymentMethod\": \"MASTER\",\n \"brand_id\": \"59c5ed48-caf9-464a-ba54-26e1e02bc1bc\",\n \"payment_type\": \"mandate\",\n \"mandate\": {\n \"mandate_max_amount\": \"5000\",\n \"amount_variability\": \"Fixed\",\n \"start_date\": \"1598965200\",\n \"end_date\": \"1914141600\",\n \"frequency\": \"MONTHLY\",\n \"rule\": \"on\",\n \"value\": 1\n },\n \"success_redirect\": \"https://merchant.com/success\",\n \"pending_redirect\": \"https://merchant.com/pending\",\n \"failure_redirect\": \"https://merchant.com/failure\",\n \"success_callback\": \"https://merchant.com/webhook/success\",\n \"failure_callback\": \"https://merchant.com/webhook/failure\"\n}","options":{"raw":{"language":"json"}}},"url":"https://api.paybomb.net/api/v1/purchases"},"status":"Unauthorized","code":401,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Mon, 30 Mar 2026 12:23:05 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"668295f8-5770-4492-8318-01e2d1c09664"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 b4011ac432e4f034161d5cccc8a4ac80.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"46KSjvCpG3Uv-3pzVOVedkJkacP2LZAI0m9ByboJ-rzLxQkfNNycJA=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1p%2FF34n2kiKpiE2WnCntzJPGKU28mcMx4pIFZ9F6UFZqmnoSxQEqZQ44WCu6SsOg5eYfqPqYGdhXxgBbuVLNwP5Xyc2OqoL1lTauqUylCkCPuOXJ1VRrvygGOmX9Yslw6BqJ\"}]}"},{"key":"CF-RAY","value":"9e471560fd16d6d5-IAD"}],"cookie":[],"responseTime":null,"body":"{\n \"purchaseId\": \"6905c387faca6576ebf01528\",\n \"client\": {\n \"customerId\": \"NA\",\n \"email\": \"rahul@gmail.com\",\n \"country\": \"GB\",\n \"city\": \"London\",\n \"stateCode\": \"LO\",\n \"street_address\": \"Flat 61 Priory Court Romford RM7 0FY\",\n \"zip_code\": \"234567\",\n \"full_name\": \"Rahul Agarwal\",\n \"phone\": \"+44 07932665877\"\n \"cc\": [],\n \"bcc\": []\n },\n \"updated_on\": 1761985415,\n \"type\": \"purchase\",\n \"paymentMethod\": \"MASTER\",\n \"amountUnit\": \"MAJOR\",\n \"errorMsg\": \"\",\n \"errorCode\": \"NA\",\n \"redirectType\": \"POST\",\n \"force_recurring\": false,\n \"created_on\": 1761985415,\n \"merchantRef\": \"6905c387faca6576ebf01528\",\n \"merchantName\": \"rahul_test\",\n \"merchantType\": \"MERCHANT\",\n \"purchase\": {\n \"currency\": \"AED\",\n \"products\": [\n {\n \"name\": \"product name\",\n \"quantity\": 1.0,\n \"price\": 1.0,\n \"discount\": 0,\n \"tax_percent\": \"0.00\"\n }\n ],\n \"total\": 1.0,\n \"requestAmount\": 1.0,\n \"language\": \"en\",\n \"notes\": \"\",\n \"debt\": 0,\n \"total_formatted\": 1.0,\n \"taxAmount\": 0.0,\n \"taxPercent\": 0.0,\n \"request_client_details\": [],\n \"email_message\": \"\"\n },\n \"issuer_details\": {\n \"website\": \"\",\n \"legal_street_address\": \"\",\n \"legal_country\": \"\",\n \"legal_city\": \"\",\n \"legal_zip_code\": \"\",\n \"bank_accounts\": [\n {}\n ],\n \"legal_name\": \"Testing\",\n \"brand_name\": \"Testing\",\n \"registration_number\": \"\",\n \"tax_number\": \"\"\n },\n \"transaction_data\": {\n \"payment_method\": \"\",\n \"flow\": \"payform\",\n \"extra\": {},\n \"country\": \"\",\n \"attempts\": []\n },\n \"status\": \"CREATED\",\n \"payment_type\": \"mandate\",\n \"mandate\": {\n \"mandate_id\": \"6905c387faca6576ebf01528\",\n \"status\": \"CREATED\",\n \"amount_variability\": \"Fixed\",\n \"mandate_max_amount\": \"5000\",\n \"start_date\": \"1598965200\",\n \"end_date\": \"1914141600\",\n \"frequency\": \"MONTHLY\",\n \"rule\": \"on\",\n \"value\": 1\n },\n \"status_history\": [\n {\n \"status\": \"created\",\n \"timestamp\": 1761985415\n }\n ],\n \"is_test\": false,\n \"brand_id\": \"59c5ed48-caf9-464a-ba54-26e1e02bc1bc\",\n \"send_receipt\": false,\n \"is_recurring_token\": false,\n \"skip_capture\": false,\n \"reference_generated\": \"PS236\",\n \"issued\": \"2025-11-01\",\n \"due\": 1761985415,\n \"refund_upto\": 0,\n \"cc_descriptor\": \"\",\n \"fraudScore\": \"NA\",\n \"trustScore\": \"NA\",\n \"paidOn\": 0,\n \"receivedAmt\": 0.0,\n \"taxAmount\": 0.0,\n \"surcharge\": 0.0,\n \"surchargeType\": \"\",\n \"sessionId\": \"\",\n \"refund_availability\": \"NONE\",\n \"refundable_amount\": 0.0,\n \"success_redirect\": \"https://merchant.com/success\",\n \"pending_redirect\": \"https://merchant.com/pending\",\n \"failure_redirect\": \"https://merchant.com/failure\",\n \"success_callback\": \"https://merchant.com/webhook/success\",\n \"failure_callback\": \"https://merchant.com/webhook/failure\",\n \"platform\": \"API\",\n \"created_from_ip\": \"183.83.53.16, 172.71.172.187, 130.176.161.204\",\n \"checkout_url\": \"https://api.choicepay.ca/payments/1f1d15ebf4f4adcfce479f6220757e30/\",\n \"direct_post_url\": \"https://api.choicepay.ca/api/v1/p/6905c387faca6576ebf01528/\",\n \"payoutProcess\": false\n}"}],"_postman_id":"295339cd-b2b9-4ee9-9d70-dd72abb47656"},{"name":"S2S API","id":"651f791e-99bb-4390-94a3-bb3d43c5a0fc","protocolProfileBehavior":{"disableUrlEncoding":false,"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"body":{"mode":"raw","raw":"{\r\n \"cardholder_name\": \"dk\",\r\n \"card_number\": \"4111111111111111\",\r\n \"expires\": \"10/23\",\r\n \"cvc\": \"345\",\r\n \"remember_card\": \"on\",\r\n \"remote_ip\": \"157.38.242.7\",\r\n \"user_agent\": \"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36\",\r\n \"accept_header\": \"text/html\",\r\n \"language\": \"en-US\",\r\n \"java_enabled\": false,\r\n \"javascript_enabled\": true,\r\n \"color_depth\": 24,\r\n \"utc_offset\": 0,\r\n \"screen_width\": 1920,\r\n \"screen_height\": 1080\r\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/p/64bff4fff63e36669499e9c8/?s2s=true","description":"This API would be the 2nd in sequence to call if the call to /purchases/ was successful in step 1. and you want to do the transaction via Server-to-Server mode.
The request body would contain the details of the card that's to be transacted upon.
\nMandatory parameters in request body:
\nEssential parameters in request body:
\nOther optional parameters in request body:
\nSuccessful Response
\nIf all the details are correct you'll get a 202 response with staus as Pending
\n{\n \"status\": \"pending\",\n \"callback_url\": \"https://app.paybomb.tech/payment/63bd0bf80fb42a076e8a4dd1/\",\n \"method\": \"GET\"\n}\n\nIf the response code is 202, after receiving the response body, direct the customer to the callback_url provided in the response.
\nErrors
\nIf there are any errors then it'll be in the format of :
\n{\n \"message\": \"descriptive error message\",\n \"code\": \"error_code\"\n}\n\nPlease see the Status Code section for further details.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"a1593e51-d80d-40c4-9c2c-31943fe87354","id":"a1593e51-d80d-40c4-9c2c-31943fe87354","name":"Recurring Payments","type":"folder"}},"urlObject":{"path":["p","64bff4fff63e36669499e9c8",""],"host":["https://app.paybomb.tech/api/v1"],"query":[{"key":"s2s","value":"true"}],"variable":[]}},"response":[{"id":"cb1a7218-d392-42a9-ac3e-39d7e9e4f98a","name":"Success","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"body":{"mode":"raw","raw":"{\r\n \"cardholder_name\": \"dk\",\r\n \"card_number\": \"4111111111111111\",\r\n \"expires\": \"10/23\",\r\n \"cvc\": \"345\",\r\n \"remember_card\": \"on\",\r\n \"remote_ip\": \"157.38.242.7\",\r\n \"user_agent\": \"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36\",\r\n \"accept_header\": \"text/html\",\r\n \"language\": \"en-US\",\r\n \"java_enabled\": false,\r\n \"javascript_enabled\": true,\r\n \"color_depth\": 24,\r\n \"utc_offset\": 0,\r\n \"screen_width\": 1920,\r\n \"screen_height\": 1080\r\n}","options":{"raw":{"language":"json"}}},"url":{"raw":"https://api.paybomb.net/api/v1/p/64bff4fff63e36669499e9c8/?s2s=true","protocol":"https","host":["api","paybomb","net"],"path":["api","v1","p","64bff4fff63e36669499e9c8",""],"query":[{"key":"s2s","value":"true"}]}},"status":"Accepted","code":202,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Mon, 30 Mar 2026 12:29:20 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"013dfd43-0689-4d6b-a797-38281465a753"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 3b66cea026f27925ba048cc96a0885ca.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"SWosGrWkPMrZoTyRfLd6N01fBb57k60RtzFzD-r38XQXmfTQEW_SRQ=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qC4PItJ0vJPndQ4Ni%2F0rS%2BPlrlTkj9%2F28whoJdWsDG4oYZpOnmcmYgstZyXlRLs5CC6XI1kBR7nuEUQ6t4NoE1tnrhM8iv1IV%2BvSYTxq3AryDLbD0zZlxLVKj9jllGVm3RVN\"}]}"},{"key":"CF-RAY","value":"9e471e8bcf88824e-IAD"}],"cookie":[{"expires":"Invalid Date","domain":"","path":""}],"responseTime":null,"body":"{\n \"status\": \"pending\",\n \"callback_url\": \"http://18.214.100.20/api/v1/payment/64b034ecc6dccf7d329d9eb3/\",\n \"method\": \"GET\"\n}"}],"_postman_id":"651f791e-99bb-4390-94a3-bb3d43c5a0fc"},{"name":"Get Mandate","id":"28c8d821-bb04-4b02-9cf8-2e03602408e1","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"GET","header":[{"key":"Accept","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"},{"key":"BrandId","value":"your-brand-value","type":"text"}],"body":{"mode":"raw","raw":"","options":{"raw":{"language":"json"}}},"url":"https://api.paybomb.net/api/v1/mandate/{mandate_id or session_id}","description":"This endpoint will be used to get all the details of a particular mandate. You can search for a particular mandate id or for a particular session id.
\nResponse parameters:
\n- \n
totalDeductedAmount
\n
This is the total amount which is deducted from the user's account. \nrecurringMandateIds
\n
This object returns a list of all the MIT transactions done for the respective mandate. \nnextMandateDate
\n
This is the date when the next recurring payment will happen. \n
After the successful Mandate registration, Merchant will receive a mandate_id from Paybomb that should be stored against a customer at their end.
\nIf the merchant handles their own scheduling, then for the subsequent transactions, the merchant is supposed to pass a combination of customer_id and mandate_id to do a debit. This API will perform a transaction with a PSP based on the mandate_id passed in the request.
\nIf Paybomb handles the scheduling for the merchant on their behalf, then this API is not for them. The MIT transactions will be handled by Paybomb from our side.
\nNote:
Recurring payments should only be done if the mandate registration has been successful and the mandate is ACTIVE.
Required for cases where the Paybomb is handling the scheduling of recurring payments. Use this API to revoke/cancel an ACTIVE mandate.
\nNote:
Revoking a mandate should be done at the same instance this API is called. The mandate status should be updated to “REVOKED” at the same instant.
Required for cases where the Paybomb is handling the scheduling of recurring payments. Use this API to pause an ACTIVE mandate.
\nAdditional parameters for this usecase:
\nNote:
For pausing a mandate you need to keep the exact timestamp in mind.
If a recurring payment is scheduled between the pause_start_date and pause_end_date then it will not be executed.
This endpoint will be used to list all the mandates for a particular customer of a merchant.
\nResponse parameters:
\n- \n
totalDeductedAmount
\n
This is the total amount which is deducted from the user's account. \nrecurringMandateIds
\n
This object returns a list of all the MIT transactions done for the respective mandate. \nnextMandateDate
\n
This is the date when the next recurring payment will happen. \n
This API tells you about all the details of a recurring payment which occurred
\nMandatory
\nyou need to pass the PurchaseID in the API URL
Possible Value of Status
\nResponse Examples
\nIn the response examples you can see instances of both Paid and Error Status purchases.
Error Details
\nIf there are any issues on the Purchase you can get more details from the transaction_data.attempts.error attribute of the response object
Errors
\nIf there are any errors then it'll be in the format of :
\n{\n \"message\": \"descriptive error message\",\n \"code\": \"error_code\"\n}\n\nPlease see the Status Code section for further details.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"a1593e51-d80d-40c4-9c2c-31943fe87354","id":"a1593e51-d80d-40c4-9c2c-31943fe87354","name":"Recurring Payments","type":"folder"}},"urlObject":{"path":["purchases","{purchaseId}",""],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"dd7910a1-003e-4fb2-9c8f-b292e93a9047","name":"Success","originalRequest":{"method":"GET","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"url":"https://app.paybomb.tech/api/v1/purchases/{purchaseId}/"},"status":"OK","code":200,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Sun, 01 Feb 2026 07:59:35 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"e222737a-b9e9-4562-94de-5b80b056c180"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 f89daa99b6a349030b23247a4977cb5e.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"eUcDXjdNU1qDjwPQst7oM9Kbi8qYyd8sncr30-6kphukYSEGv-qwUg=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=i8qaRQprp0TLqlSo5At%2FjpQANnSZgP8iEeVFnMasIN8xyAN2mdqYXVqP3dXt2AbZRL8fj6SRWa%2BFA1dybSS8ebE5scTH8BsB6Ubx8ppJSxc%3D\"}]}"},{"key":"CF-RAY","value":"9c6fe9092c493ec9-IAD"}],"cookie":[{"expires":"Invalid Date","domain":"","path":""}],"responseTime":null,"body":"{\n \"purchaseId\": \"6973ad04fa54ee2cf14f438c\",\n \"client\": {\n \"customerId\": \"NA\",\n \"email\": \"sl68792.bravo@bravapay.com\",\n \"phone\": \"0557719399\",\n \"full_name\": \"Test user\",\n \"date_of_birth\": \"2004-07-12\",\n \"street_address\": \"10 New Burlington StreetApt. 214\",\n \"country\": \"CA\",\n \"city\": \"London\",\n \"zip_code\": \"W1S 3BE\",\n \"cc\": [],\n \"bcc\": [],\n \"tax_number\": \"+447755564318\",\n \"bankAccountNumber\": \"1345789678\",\n \"stateCode\": \"QLD\"\n },\n \"updated_on\": 1769188614,\n \"type\": \"purchase\",\n \"paymentMethod\": \"VISA\",\n \"amountUnit\": \"MAJOR\",\n \"errorMsg\": \"ERROR_PARSING_GROUP_ID\",\n \"errorCode\": \"NA\",\n \"force_recurring\": false,\n \"created_on\": 1769188612,\n \"merchantRef\": \"6973ad04fa54ee2cf14f438c\",\n \"purchase\": {\n \"currency\": \"USD\",\n \"products\": [\n {\n \"name\": \"gaming cards\",\n \"quantity\": 1.0,\n \"price\": 10.0,\n \"discount\": 0,\n \"tax_percent\": \"0.00\"\n }\n ],\n \"total\": 10.0,\n \"requestAmount\": 10.0,\n \"language\": \"en\",\n \"notes\": \"\",\n \"debt\": 0,\n \"total_formatted\": 1.0,\n \"taxAmount\": 0.0,\n \"taxPercent\": 0.0,\n \"request_client_details\": [],\n \"email_message\": \"\"\n },\n \"issuer_details\": {\n \"website\": \"\",\n \"legal_street_address\": \"\",\n \"legal_country\": \"\",\n \"legal_city\": \"\",\n \"legal_zip_code\": \"\",\n \"bank_accounts\": [\n {}\n ],\n \"legal_name\": \"zenith\",\n \"brand_name\": \"zenith\",\n \"registration_number\": \"\",\n \"tax_number\": \"\"\n },\n \"transaction_data\": {\n \"payment_method\": \"\",\n \"flow\": \"payform\",\n \"extra\": {\n \"expiry_month\": \"01\",\n \"amount\": 10.0,\n \"card_issuer\": \"VISION BANK\",\n \"masked_pan\": \"42222222*2222\",\n \"card_brand\": \"VISA\",\n \"card_issuer_country\": \"SA\",\n \"card_type\": \"DEBIT\",\n \"cardholder_name\": \"fgjhknms\",\n \"expiry_year\": \"29\"\n },\n \"country\": \"\",\n \"attempts\": [\n {\n \"client_ip\": \"49.36.232.107\",\n \"type\": \"execute\",\n \"payment_method\": \"VISA\",\n \"flow\": \"payform\",\n \"successful\": false,\n \"country\": \"VISA\",\n \"processing_time\": 1769188612,\n \"extra\": {\n \"amount\": 10.0,\n \"masked_pan\": \"VISA\",\n \"card_brand\": \"VISA\",\n \"card_issuer_country\": \"VISA\",\n \"cardholder_name\": \"Test user\"\n },\n \"error\": {\n \"message\": \"This customer can not be processed !\",\n \"code\": \"transaction_error\"\n }\n },\n {\n \"client_ip\": \"\",\n \"type\": \"execute\",\n \"payment_method\": \"VISA\",\n \"flow\": \"payform\",\n \"successful\": false,\n \"country\": \"SA\",\n \"processing_time\": 1769188613,\n \"extra\": {\n \"expiry_month\": \"01\",\n \"amount\": 10.0,\n \"card_issuer\": \"VISION BANK\",\n \"masked_pan\": \"42222222*2222\",\n \"card_brand\": \"VISA\",\n \"card_issuer_country\": \"SA\",\n \"card_type\": \"DEBIT\",\n \"cardholder_name\": \"fgjhknms\",\n \"expiry_year\": \"29\"\n },\n \"error\": {\n \"message\": \"ERROR_PARSING_GROUP_ID\",\n \"code\": \"transaction_error\"\n }\n }\n ]\n },\n \"status\": \"ERROR\",\n \"status_history\": [\n {\n \"status\": \"created\",\n \"timestamp\": 1769188612\n },\n {\n \"status\": \"pending_execute\",\n \"timestamp\": 1769188612\n },\n {\n \"status\": \"error\",\n \"timestamp\": 1769188613\n },\n {\n \"status\": \"pending_execute\",\n \"timestamp\": 1769188613\n },\n {\n \"status\": \"error\",\n \"timestamp\": 1769188614\n },\n {\n \"status\": \"viewed\",\n \"timestamp\": 1770016552\n }\n ],\n \"viewedOn\": 1770016552,\n \"is_test\": false,\n \"brand_id\": \"555c458b-e737-4905-adb2-2451d37cbb6e\",\n \"send_receipt\": false,\n \"is_recurring_token\": false,\n \"skip_capture\": false,\n \"reference_generated\": \"PS1841\",\n \"issued\": \"2026-01-23\",\n \"due\": 1769188612,\n \"refund_upto\": 0,\n \"cc_descriptor\": \"\",\n \"fraudScore\": \"NA\",\n \"trustScore\": \"NA\",\n \"extraFee\": \"0\",\n \"paidOn\": 0,\n \"receivedAmt\": 0.0,\n \"taxAmount\": 0.0,\n \"surcharge\": 0.0,\n \"surchargeType\": \"\",\n \"sessionId\": \"\",\n \"refund_availability\": \"NONE\",\n \"refundable_amount\": 0.0,\n \"success_redirect\": \"https://app.paybomb.tech/getResponse.jsp?issucces=true\",\n \"failure_redirect\": \"https://app.paybomb.tech/getResponse.jsp?issucces=false\",\n \"pending_redirect\": \"https://app.paybomb.tech/getResponse.jsp?issucces=pending \",\n \"cancel_redirect\": \"\",\n \"success_callback\": \"https://www.google.com/\",\n \"failure_callback\": \"https://app.paybomb.tech/merchant\",\n \"platform\": \"API\",\n \"created_from_ip\": \"49.36.232.107\",\n \"checkout_url\": \"https://test4.paymentsclub.net/payments/a28ed9974a22a4cbd5f2f49cc26cc334/\",\n \"direct_post_url\": \"https://test4.paymentsclub.net/api/v1/p/6973ad04fa54ee2cf14f438c/\",\n \"payoutProcess\": false,\n \"payment_type\": \"internal recurring\",\n \"mandate_id\": \"696bc39a7bc779fac5201357\"\n}"}],"_postman_id":"c1d5e07a-1b41-42b7-b410-42f3ce95738b"}],"id":"3ffa0d69-d121-4818-abe0-4109b19af2af","_postman_id":"3ffa0d69-d121-4818-abe0-4109b19af2af","description":"","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"a1593e51-d80d-40c4-9c2c-31943fe87354","id":"a1593e51-d80d-40c4-9c2c-31943fe87354","name":"Recurring Payments","type":"folder"}}}],"id":"a1593e51-d80d-40c4-9c2c-31943fe87354","description":"Overview
\nRecurring Payments allow merchants to automatically charge customers at predefined or flexible intervals without requiring the customer to re-enter payment details each time.
\nA Mandate represents the customer’s authorization that links their payment method to the merchant for future recurring charges. Once created, this mandate is used as a secure reference for all upcoming payments.
\nInstead of processing every transaction as a one-time payment, merchants rely on mandates to execute recurring debits in a frictionless and compliant manner.
\nThe recurring payments may be initiated using Paybomb APIs as fixed/ non-fixed intervals based on your business use case.
\nThe Paybomb Subscription module (also known as Mandates) enables merchants to automate recurring billing for products and services. Unlike standard one-off transactions, this feature creates a persistent link between the merchant and the customer's payment method, allowing for future charges without requiring the customer to be present or re-enter their details.
\nThis system is built around two fundamental transaction types that define the lifecycle of a subscription:
\n1. Mandate Registration (CIT)
\nThe Customer Initiated Transaction (CIT) represents the initial setup of the recurring payment mandate, during which the customer is actively present on the merchant’s website or application (in-session flow).
\nIn this flow, the merchant collects and submits the customer’s basic details along with the mandate configuration, including registration information, payment amount (fixed or variable, as applicable), and the scheduling frequency for recurring debits.
\nAs part of the setup process, the customer must explicitly provide consent for the mandate. To authenticate and activate the mandate, the customer also completes a one-time payment using the selected payment method. Once this payment is successful, the mandate is registered and becomes eligible for future automated recurring transactions as per the defined schedule.
\nPurpose:
\n- \n
Capture customer payment details
\n \nAuthenticate the transaction (typically via 3D Secure)
\n \nCollect customer consent for recurring billing
\n \n
Outcome:
\n- \n
A unique mandate_id is generated
\n \nThis mandate acts as a secure token for all future charges
\n \n
Use Case:
\nThe customer signs up for a subscription and completes the first payment
\n2. Recurring Payments (MIT)
\nThe Merchant Initiated Transaction (MIT) represents the execution phase of the recurring payment lifecycle. In this stage, payments are automatically triggered by the merchant’s system or through Paybomb’s built-in scheduler without requiring the customer to be actively present (off-session flow).
\nOnce a mandate is successfully registered, merchants can initiate recurring debits as per the defined schedule and payment terms. These transactions are processed seamlessly using the customer’s authorized payment method.
\nThe Paybomb Mandate module provides the following benefits:
\n- \n
Prebuilt support for a complete mandate registration experience using cards as the payment method
\n \nFlexible mandate setup to match different business models and customer requirements
\n \nSimplified execution of recurring payments through the Paybomb Dashboard with minimal operational effort
\n \nBuilt-in analytics and reporting tools to monitor mandate sign-ups, payment performance, and renewals
\n \n
Purpose:
\n- \n
- Debit the customer according to the defined schedule or usage \n
Mechanism:
\n- \n
Merchant (or Paybomb scheduler) sends payment requests using the mandate_id
\n \nNo card details are required again
\n \nUsually bypasses 3D Secure
\n \n
Use Case:
\nMonthly subscription renewal payment.
\nKey Capabilities
\n- \n
Flexible Scheduling: Define rigid schedules (Daily, Weekly, Monthly, Yearly) or use \"As Presented\" for irregular billing intervals.
\n \nAmount Variability: Support for Fixed amounts (e.g., $10/month license) or Variable amounts (e.g., utility bills where the cost changes based on usage).
\n \nSmart Management:
\n- \n
Merchant Managed: You track the dates and trigger the API call when payment is due.
\n \nPaybomb Managed: You define the rules (start date, end date, frequency), and Paybomb handles the execution logic.
\n \n
\nAnalytics & Operations: Includes a dedicated dashboard for monitoring signup performance, renewal success rates, and managing cancellations.
\n \n
There are 2 ways in which subscriptions are handled at Paybomb’s end:
\nMerchant Managed Scheduling
\nAfter successfully registering the mandate, the merchant creates a subscription linked to the customer’s mandate. Based on the defined billing cycle and business logic, the merchant then triggers the Recurring Payments API according to their own payment schedule to execute automated debits.
\nThis approach allows merchants to maintain full control over when and how recurring charges are initiated.
\n- \n
Merchant tracks payment due dates
\n \nMerchant triggers recurring API calls manually
\n \n
Best for:
\nCustom billing logic or internal scheduling systems.
\nPaybomb Managed Scheduling
\nIn this model, the merchant creates a subscription within the Paybomb system and submits the recurring payment schedule, including billing frequency and timing. Based on the provided configuration, Paybomb automatically manages the execution of recurring transactions as per the defined schedule.
\nThis removes the need for merchants to manually trigger each payment, ensuring consistent and timely debits while maintaining a fully automated recurring billing process
\n- \n
Merchant defines payment rules (start date, frequency, end date)
\n \nPaybomb automatically executes recurring charges
\n \n
Best for:
\nStandard subscription models with minimal operational overhead.
\nPrerequisites
\nBefore starting the mandate integration, merchants must ensure that the required configurations are enabled both at the PSP level and within the Paybomb system.
\nMandate Enablement at PSP Level
\nMerchants must enable mandate-related features on their respective PSP (Payment Service Provider) dashboard. This ensures that the PSP supports recurring and mandate-based transactions.
\nConfiguration on the Paybomb Dashboard
\n- \n
For whitelabel merchants or those using Paybomb’s whitelabel solution, the mandate support toggle must be enabled within the MID settings of the PSP configuration. This allows Paybomb to recognize and route mandate transactions correctly.
\n \nFor merchants directly onboarded with Paybomb, this configuration is managed by the Paybomb team. Merchants should coordinate with their account manager to ensure mandate enablement is completed.
\n \n
Fetches a paginated list of transactions. This endpoint is optimized for high-volume retrieval and returns a summary view of each transaction (ID and Status).
\nImportant Path Params to consider:
\n","urlObject":{"protocol":"https","path":["api","v1","external","transactions","list"],"host":["api","paybomb","net"],"query":[{"key":"page_no","value":"1"},{"key":"page_size","value":"10"},{"key":"transaction_id","value":"69d4ba22465443878a0045ba"},{"key":"start_date","value":"2025-10-29%2000%3A00%3A00%20+05%3A30"},{"key":"end_date","value":"2026-04-23%2000%3A00%3A00%20+05%3A30"},{"key":"last_updated_start","value":"2026-01-07%2016%3A12%3A00%20+05%3A30"},{"key":"last_updated_end","value":"2026-12-07%2016%3A12%3A00%20+05%3A30"},{"key":"customer_id","value":"NA"},{"key":"status","value":"paid"},{"key":"currency","value":"USD"},{"key":"is_sandbox","value":"true"}],"variable":[]}},"response":[{"id":"d52ce500-85e7-4973-ac86-1aa77f97447b","name":"Success","originalRequest":{"method":"GET","header":[{"key":"BrandId","value":"your-brand-id"},{"key":"Authorization","value":"Bearer Token"}],"url":{"raw":"https://api.paybomb.net/api/v1/external/transactions/list?page_no=1&page_size=10&start_date=2025-10-29%2000%3A00%3A00%20+05%3A30&end_date=2026-04-23%2000%3A00%3A00%20+05%3A30&last_updated_start=2026-01-07%2016%3A12%3A00%20+05%3A30&last_updated_end=2026-12-07%2016%3A12%3A00%20+05%3A30&customer_id=NA&status=paid¤cy=USD&is_sandbox=true","protocol":"https","host":["api","paybomb","net"],"path":["api","v1","external","transactions","list"],"query":[{"key":"page_no","value":"1"},{"key":"page_size","value":"10"},{"key":"transaction_id","value":"69d4ba22465443878a0045ba","disabled":true},{"key":"start_date","value":"2025-10-29%2000%3A00%3A00%20+05%3A30"},{"key":"end_date","value":"2026-04-23%2000%3A00%3A00%20+05%3A30"},{"key":"last_updated_start","value":"2026-01-07%2016%3A12%3A00%20+05%3A30"},{"key":"last_updated_end","value":"2026-12-07%2016%3A12%3A00%20+05%3A30"},{"key":"customer_id","value":"NA"},{"key":"status","value":"paid"},{"key":"currency","value":"USD"},{"key":"is_sandbox","value":"true"}]}},"status":"Bad Request","code":400,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Sun, 19 Apr 2026 14:11:10 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"c2111eb2-6314-4f0b-b546-4ae3ee123a44"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 6a91ddfdf36644f1344da228258d9082.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"lKDk7cJHKNy2cOdf_AWXk3GlUJdWC5slaGWaVfgUf1Fn0XXm7T7D7Q=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YLhXcnCfKpMy2KQEcmek7bxnkI2lT3%2F5IQ8opo9ZpZ4E852qZoWIFsjJ%2BcmGZfTO7S1rWYnB3uzuGwMYwevQ%2F47w%2Bm6u51jrIfjuG3TDh08KGeWKRbR92ItXRYPoh1CgVmja\"}]}"},{"key":"CF-RAY","value":"9eec7f31f973c9b7-IAD"}],"cookie":[],"responseTime":null,"body":"{\n \"data\": {\n \"content\": [\n {\n \"transaction_id\": \"69e2146828bea6ca2e31bc85\",\n \"status\": \"paid\"\n },\n {\n \"transaction_id\": \"69e20fd928bea6ca2e31b17c\",\n \"status\": \"paid\"\n }\n ],\n \"currentPage\": 1,\n \"pageSize\": 2,\n \"totalElements\": 95,\n \"totalPages\": 48,\n \"first\": true,\n \"last\": false,\n \"hasNext\": true,\n \"hasPrevious\": false\n }\n}"}],"_postman_id":"9a97975d-1b2e-4755-8450-9fde938466b8"},{"name":"Get Detailed Transaction Details","id":"ddf12dd5-028a-445b-9faa-ebea11f5a7ac","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"GET","header":[{"key":"BrandId","value":"your-brand-id"},{"key":"Authorization","value":"Bearer Token"}],"url":"https://api.paybomb.net/api/v1/external/transactions/data/69e20fd928bea6ca2e31b17c?page_no=1&page_size=10&include_subtransactions=true","description":"Retrieves the complete details for a specific transaction. This includes customer info, payment method details, bank response codes, and hierarchy metadata (parent/child transactions).
\nAdditional query parameters for this usecase:
\n","urlObject":{"protocol":"https","path":["api","v1","external","transactions","data","69e20fd928bea6ca2e31b17c"],"host":["api","paybomb","net"],"query":[{"key":"page_no","value":"1"},{"key":"page_size","value":"10"},{"key":"include_subtransactions","value":"true"}],"variable":[]}},"response":[{"id":"15e64e58-b6a5-4937-9300-d14ff6a6031c","name":"Success","originalRequest":{"method":"GET","header":[{"key":"BrandId","value":"your-brand-id"},{"key":"Authorization","value":"Bearer Token"}],"url":{"raw":"https://api.paybomb.net/api/v1/external/transactions/data/69e20fd928bea6ca2e31b17c?page_no=1&page_size=10&include_subtransactions=true","protocol":"https","host":["api","paybomb","net"],"path":["api","v1","external","transactions","data","69e20fd928bea6ca2e31b17c"],"query":[{"key":"page_no","value":"1"},{"key":"page_size","value":"10"},{"key":"include_subtransactions","value":"true"}]}},"status":"Bad Request","code":400,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Sun, 19 Apr 2026 14:13:09 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"3d9fb1d1-b30f-4c3e-a76f-6956e3731ad3"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 64d4305f6a0418824e90908ac490184e.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"COt7k0tEcVGSOSy8pTkHoOqGoG1lSgC9qz8baoKbgmPkAh5dq0GNjQ=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hn0q1Q9Cqa9onXwzy%2F1Qeq8u4RTGt3q%2BZNFW29weO%2BOmtABh6y8XLnAH9%2FytCQEEOmNzdnvM0oPcQruiJvYqQQShCKOndiMKUnEksUPM9I9UMph4qP7s1ognTK%2BBhheXvIwO\"}]}"},{"key":"CF-RAY","value":"9eec821e0f4b172c-IAD"}],"cookie":[{"expires":"Invalid Date","domain":"","path":""}],"responseTime":null,"body":"{\n \"data\": {\n \"transaction_id\": \"69e20fd928bea6ca2e31b17c\",\n \"merchant_reference\": \"69e20fd928bea6ca2e31b17c\",\n \"customer_id\": \"NA\",\n \"amount\": 1.0,\n \"currency\": \"USD\",\n \"status\": \"paid\",\n \"session_id\": \"\",\n \"email\": \"aryangupta+3265@paybomb.tech\",\n \"merchant_name\": \"prithvimerch\",\n \"payment_method\": \"MASTER\",\n \"payment_flow\": \"payform\",\n \"issuing_bank\": \"PUBLIC BANK BERHAD\",\n \"created_at\": \"2026-04-17T10:47:53Z\",\n \"error_reason\": \"Transaction succeeded-APPROVED\",\n \"last_updated_at\": \"2026-04-17T10:49:14Z\",\n \"transaction_type\": \"parent\",\n \"fees\": [\n {\n \"type\": \"mdr\",\n \"amount\": 0.00,\n \"currency\": \"USD\"\n },\n {\n \"type\": \"decline_fee\",\n \"amount\": 0,\n \"currency\": \"USD\"\n },\n {\n \"type\": \"transaction_fee\",\n \"amount\": 0.1,\n \"currency\": \"USD\"\n },\n {\n \"type\": \"fraud_refund_fee\",\n \"amount\": 0,\n \"currency\": \"USD\"\n },\n {\n \"type\": \"refund_fee\",\n \"amount\": 0,\n \"currency\": \"USD\"\n },\n {\n \"type\": \"chargeback_fee\",\n \"amount\": 0,\n \"currency\": \"USD\"\n },\n {\n \"type\": \"extra_fee\",\n \"amount\": 0,\n \"currency\": \"USD\"\n }\n ],\n \"metadata\": {\n \"has_subtransactions\": false,\n \"total_subtransactions\": 0,\n \"transaction_hierarchy_level\": \"parent\"\n }\n }\n}"}],"_postman_id":"ddf12dd5-028a-445b-9faa-ebea11f5a7ac"}],"id":"ad99a973-2ffd-4196-b491-9ecc3a8c1eba","description":"Overview
\nThe Transaction Reporting APIs allow merchants to retrieve detailed logs of their payment activity programmatically. This is useful for:
\n- \n
Reconciliation: Matching Paybomb records with your internal order system.
\n \nAudit Trails: Tracking the status history of specific transactions.
\n \nData Export: Pulling transaction data into your own analytics tools.
\n \n
There are two primary endpoints:
\n- \n
List Transactions: Retrieves a paginated list of all transactions for a specific Brand ID.
\n \nGet Transaction Details: Retrieves the full data payload for a single transaction ID, including metadata and sub-transaction details.
\n \n
Before you can use network tokenisation in your payment flow, the feature must be enabled and configured on your merchant account. This section walks through the setup steps in the Paybomb Dashboard.
\nEnabling Network Tokenisation
\nNetwork tokenisation requires activation at the merchant level. Follow these steps in the Paybomb Dashboard:
\n- \n
Log in to your Paybomb merchant account.
\n \nNavigate to Merchant Details → Allowed Services.
\n \nEnable “Allow Network Token” to activate tokenisation for your account.
\n \n
Admin Activation Required
Network tokenisation must first be enabled at the platform level by your Paybomb account administrator. If you do not see the “Allow Network Token” option in your dashboard, contact your Paybomb account manager to request activation.
Paybomb Token Service Setup
\nAfter enabling network tokenisation, configure the Paybomb Token Service with your merchant details:
\n- \n
In the Paybomb Dashboard, navigate to Global Settings → Paybomb Token Service.
\n \nFill in all the required fields accurately.
\n \nEnter your Category Code — this represents your merchant business type code (MCC).
\n \nClick Save.
\n \nAfter saving, verify that the status shows as Pending (visible in the top-right corner of the page).
\n \nThe status will automatically update to Active or Error once your token profile is created.
\n \n
Status Update Timing: The status update from Pending to Active may take up to 1 hour. Do not attempt to use tokenisation APIs until the status shows Active. If the status changes to Error, contact your Paybomb account manager for resolution.
\nStatus Values
\n","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"1aea1829-8696-4c1a-86b7-35b45d392001"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"515b74d6-99cd-4aad-a69b-eac0127608ba"}}],"_postman_id":"47b5cfd8-5edb-4097-b047-3d4ad7a40421"},{"name":"APIs","item":[{"name":"List Saved Cards","id":"cb64a87c-3183-4c48-8a64-49651ddb0dc3","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"auth":{"type":"noauth","isInherited":false},"method":"GET","header":[],"url":"https://app.paybomb.tech/api/v1/listSavedCards","description":"List Saved Cards
\nRetrieve all saved card tokens for a given customer. Returns the last 4 digits of each card and its associated token_reference.
Use this API to display saved cards to the customer for selection before initiating a payment via the S2S API.
\nQuery Parameters
\nResponse Fields
\nNotes
\n- \n
The
\ntoken_referencedoes not expire. It remains valid as long as the saved card has not been deleted. \nShow saved cards to the customer using
\ncard_last_fouralongside a card brand icon (Visa / Mastercard). \nThe
\ntoken_referenceshould only be stored and used server-side. \n
Display Tip
\nShow saved cards using cardlast4 alongside a card brand icon (Visa / Mastercard).
The token_reference should only be stored and used server-side.
Purchase
\nInitiate a payment transaction. This is the standard Paybomb Purchase API.
\nWhen a customer completes the purchase on the Paybomb checkout page and opts to save their card, Paybomb provisions a network token in the background and generates a token_reference linked to the customer.
Mandatory Parameters
\nOptional Parameters
\nKey Response Fields
\nNetwork Tokenisation & Card Saving
\nWhen the customer completes payment via checkout_url and opts to save their card, Paybomb provisions a network token. The token_reference is then available via the List Saved Cards API.
S2S Payment
\nProcess a payment using a saved card's token_reference. Paybomb resolves the token reference to the underlying network token and processes the payment securely. If the selected MID does not accept tokens, Paybomb automatically falls back to the card number.
S2S Input Scenarios
\nThe S2S API accepts different input types depending on the scenario:
\nRequest Body
\nToken Reference in Response
\n- \n
Scenario 1 (New card via S2S):
\ntoken_referencereturned in Check Status and Webhook. \nScenario 2 (Existing
\ntoken_reference):token_referencereturned in response and Webhook. \n
Important Notes
\n- \n
CVC is required even when using a
\ntoken_reference. \nAll browser fields are required for 3D Secure authentication.
\n \nResponse follows the standard Paybomb payment response format.
\n \n
Must be \"true\" for server-to-server requests.
\n","type":"text/plain"},"key":"s2s","value":"true"}],"variable":[]}},"response":[{"id":"d2b2251f-055c-4475-a13f-273a3d61a978","name":"Success","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer {{APIKey}}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"Token_reference\": \"token_7178aa7208614544a285656da38ae5ac\",\n \"cvc\": \"791\",\n \"remember_card\": \"off\",\n \"remote_ip\": \"157.38.242.7\",\n \"user_agent\": \"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36\",\n \"accept_header\": \"text/html\",\n \"language\": \"en-US\",\n \"java_enabled\": false,\n \"javascript_enabled\": true,\n \"color_depth\": 24,\n \"utc_offset\": 0,\n \"screen_width\": 1920,\n \"screen_height\": 1080\n}","options":{"raw":{"language":"json"}}},"url":{"raw":"https://app.paybomb.tech/api/v1/api/v1/p/6980e509b5e99e61f3bd4ccf/?s2s=true","host":["https://app.paybomb.tech/api/v1"],"path":["api","v1","p","6980e509b5e99e61f3bd4ccf",""],"query":[{"key":"s2s","value":"true"}]}},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json"}],"cookie":[],"responseTime":null,"body":"{\n \"status\": \"pending\",\n \"callback_url\": \"http://18.214.100.20/api/v1/payment/64b034ecc6dccf7d329d9eb3/\",\n \"method\": \"GET\"\n}"}],"_postman_id":"ffaf923d-e245-44ba-a0df-f67dd78b9ff4"},{"name":"Delete Token","id":"1ab28816-58a5-44ba-9651-eb4064848efe","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"DELETE","header":[{"key":"Authorization","value":"Bearer {{APIKey}}","type":"text"}],"url":"https://app.paybomb.tech/api/v1/tokens/v1/deleteToken/{{token_reference}}","description":"Delete Token
\nPermanently delete a saved card and deactivate the associated network token. This action is irreversible.
\nPath Parameters
\nImportant Notes
\n- \n
Deleting a token is permanent. The
\ntoken_referencecan no longer be used for payments. \nThe associated network token is deactivated with the card network.
\n \nIf the customer wants to pay with this card again, they will need to re-enter their card details.
\n \n
When to Delete
\n- \n
Customer explicitly requests removal of their saved card.
\n \nGDPR or data retention compliance when a customer closes their account.
\n \nConsider implementing a \"Remove Card\" option in your account management UI.
\n \n
Overview
\nThe Original Credit Transaction (OCT), commonly referred to as Push to Card, enables merchants to facilitate near-instantaneous fund transfers directly to a customer’s eligible Visa or Mastercard debit or credit card. Unlike traditional refund processes that can only return funds from a previous purchase, OCT allows for independent disbursements of funds to a cardholder's account.
\nThis feature is designed for high-velocity industries that require frictionless, real-time payouts, such as:
\n- \n
Gaming & Betting: Real-time withdrawal of player winnings.
\n \nMarketplaces: Payouts to sellers or service providers.
\n \nCorporate Disbursements: Instant insurance claims, rebates, or compensation payments.
\n \nMerchant Settlements: Faster access to processed funds for sub-merchants.
\n \n
By utilizing the Paybomb /payout API with the PAYOUT-CARDS method, you benefit from a unified orchestration layer that handles the complexities of card network routing, ensuring high success rates and global reach while maintaining the same security standards as your standard payment integrations.
\n
Integration Steps
\n- \n
Enable OCT: Ensure \"Push to Card\" permissions are enabled for your merchant account in the Paybomb Merchant Portal.
\n \nCollect Card Details: Use a secure method to collect the recipient's card number and expiry date or can you Paybomb's cashier to do that.
\n \nExecute Payout: Call the
\n/payoutendpoint with the OCT-specific payout method. \nHandle Webhooks: Listen for the
\npaidorfailureevents to update your internal records. \n
Mandatory parameters in the request body:
\nNote:
\nIf the merchant is not PCI DSS compliant then they will need to use our cashier and we will show the user all the saved cards for him/her. Based on the card chosen, Paybomb will pick up the token_reference from our Back end.
\nIf the merchant is PCI DSS compliant then they can use the payout API and send the token reference as shown above.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"53bb72ca-bd42-41cd-a2a7-d4a24841bd4e","id":"53bb72ca-bd42-41cd-a2a7-d4a24841bd4e","name":"APIs","type":"folder"}},"urlObject":{"path":["payout",""],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"17249c81-3911-4914-b294-09817233a990","name":"Success","originalRequest":{"method":"POST","header":[{"key":"Accept","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"body":{"mode":"raw","raw":"{\n \"client\": {\n \"email\": \"rahul@gmail.com\",\n \"country\": \"GB\",\n \"city\": \"London\",\n \"stateCode\": \"QLD\",\n \"full_name\": \"Rahul Jain\",\n \"street_address\": \"10 New Burlington Street Apt. 214\",\n \"zip_code\": \"W1S 3BE\",\n \"phone\": \"+44 9876543210\",\n \"gender\": \"M\",\n \"date_of_birth\": \"1970-07-10\"\n },\n \"purpose\": \"Testing cards payout\",\n \"currency\": \"GBP\",\n \"merchantRef\": \"YOUR ORDER ID\", // optional\n \"payoutMethod\": \"PAYOUT-CARDS\",\n \"amount\": 100.0,\n \"success_redirect\": \"https://your.success.redirect.com\",\n \"pending_redirect\": \"https://your.pending.redirect.com\",\n \"failure_redirect\": \"https://your.failure.redirect.com\",\n \"success_callback\": \"https://your.success.callback.com\",\n \"failure_callback\": \"https://your.failure.callback.com\",\n \"extraParam\": {\n \"token_reference\": \"token_ref\"\n }\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/payout/"},"status":"Unauthorized","code":401,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Fri, 13 Mar 2026 00:01:17 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"3ef27476-f274-4f6a-bb18-4c37e01d6dc2"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 05a63efd5ebb043211ccf075f3a8aa68.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"Iw6KuTkxZqm0RH8GJOXAh7uLEPJ6wj8OJbaFWdN_qDx31b5TSinnIA=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=g%2FW8jRMDFXKvTeXNugr1sgR4%2FoTXfyEHsscr3hqeIr2aPhFEVlSs%2FGiTjFw09%2BReVDjxT2esg2Wg0fdBf4oD3snlEv4p1JkITe2l7oLC%2Bkg%3D\"}]}"},{"key":"CF-RAY","value":"9db6c366997196a2-IAD"}],"cookie":[{"expires":"Invalid Date","domain":"","path":""}],"responseTime":null,"body":"{\n \"payoutId\": \"6977137755e0628e3600c562\",\n \"client\": {\n \"email\": \"rahul@gmail.com\",\n \"country\": \"GB\",\n \"city\": \"London\",\n \"stateCode\": \"QLD\",\n \"full_name\": \"Rahul Jain\",\n \"street_address\": \"10 New Burlington Street Apt. 214\",\n \"zip_code\": \"W1S 3BE\",\n \"phone\": \"+44 9876543210\",\n \"gender\": \"M\",\n \"date_of_birth\": \"1970-07-10\"\n },\n \"updated_on\": 1769411447,\n \"extraParam\": {\n \"token_reference\": \"token_ref\"\n },\n \"payoutMethod\": \"PAYOUT-CARDS\",\n \"amountUnit\": \"MAJOR\",\n \"amount\": 100.0,\n \"errorMsg\": \"\",\n \"purpose\": \"Testing cards payout\",\n \"created_on\": 1769411447,\n \"merchantRef\": \"YOUR ORDER ID\",\n \"status\": \"PAID\",\n \"status_history\": [\n {\n \"status\": \"created\",\n \"timestamp\": 1769411447\n },\n {\n \"status\": \"payout_in_process\",\n \"timestamp\": 1769411447\n },\n {\n \"status\": \"paid\",\n \"timestamp\": 1769411447\n },\n\n ],\n \"currency\": \"GBP\",\n \"extraFee\": \"0\",\n \"paymentOn\": 0,\n \"checkout_url\": \"https://test4.paymentsclub.net/payout/092e59f94279a3742fa3715fe9a2112a/\",\n \"taxAmount\": 0.0,\n \"taxPercent\": 0.0,\n \"success_redirect\": \"https://your.success.redirect.com\",\n \"pending_redirect\": \"https://your.pending.redirect.com\",\n \"failure_redirect\": \"https://your.failure.redirect.com\",\n \"success_callback\": \"https://your.success.callback.com\",\n \"failure_callback\": \"https://your.failure.callback.com\"\n \"redirectType\": \"POST\",\n \"sessionId\": \"\",\n \"surcharge\": 0.0,\n \"surchargeType\": \"\",\n \"trxMethod\": \"CARDS\",\n \"success_callback\": \"\",\n \"failure_callback\": \"\"\n}"}],"_postman_id":"d085eb3f-9e33-47d7-9597-7c599fc1429a"}],"id":"53bb72ca-bd42-41cd-a2a7-d4a24841bd4e","description":"Network tokenisation in Paybomb uses four APIs. Together they cover the complete flow: retrieving saved cards, initiating a purchase (with card saving), processing payments with saved tokens, and deleting tokens.
\n","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"e0f0e3dd-f789-44be-91f6-a554a4a3646d"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"bce47c94-c2e1-4dc9-bdc1-f2e2191aada1"}}],"_postman_id":"53bb72ca-bd42-41cd-a2a7-d4a24841bd4e"},{"name":"FAQs","item":[],"id":"3d0d9e4d-98bd-4c4b-bfba-19efaae5db3e","description":"Q1: Do I need to change my existing integration to use network tokenisation?
No. If you already use the Paybomb Purchase API and the S2S API with token_reference, your integration is already compatible. You just need to enable and configure network tokenisation in your Dashboard (see Section 3).
Q2: What is a token_reference?
A token_reference (e.g., token_7178aa7208614544a285656da38aefac) is Paybomb’s internal identifier for a saved card. You use it to charge the saved card or delete it. It is not the card number or the network token — Paybomb manages those internally.
Q3: Does the token_reference expire?
No. The token_reference does not expire. It remains valid as long as the saved card has not been deleted.
Q4: What happens when a customer’s card expires or is replaced?
\nThe card network automatically updates the data linked to the token. Your token_reference stays the same, and payments continue to work without action from you or the customer.
\nQ5: Is CVC required even when using a token_reference?
Yes. CVC is required even when a token_reference is provided. This is needed for 3D Secure authentication on customer-initiated transactions.
Q6: What if a card doesn’t support network tokenisation?
Paybomb handles this automatically. If a card is not eligible, or if the selected MID does not accept tokens, Paybomb falls back to the card number. The API response and flow remain the same.
Q7: How long does the token service setup take?
After saving your configuration in Dashboard → Global Settings → Paybomb Token Service, the status changes to Pending. It may take up to 1 hour to update to Active. Do not use tokenisation APIs until the status is Active.
Q8: Are email addresses case-sensitive for token lookup?
Yes. Email addresses are case-sensitive. Ensure consistent formatting (always lowercase) when creating and retrieving tokens to avoid duplicate or missing entries.
Q9: How do I delete a saved card?
Use the Delete Token API (DELETE /tokens/v1/deleteToken/{token_reference}). This permanently removes the card and deactivates the network token.
Q10: Is there an additional cost?
Pricing details are communicated by your Paybomb account manager. Some card networks offer reduced interchange fees for tokenised transactions, which may offset service costs.
Overview
\nPaybomb supports Network Tokenisation to help merchants process card payments with improved security, higher authorisation rates, and seamless card lifecycle management.
\nNetwork tokenisation works entirely behind the scenes. When a cardholder saves their card during a purchase, Paybomb securely provisions a network token and returns a token_reference. You use this reference for all future payments — you never handle actual card numbers or network tokens directly.
Benefits
\n- \n
Higher Approval Rates — Payments made with network tokens are recognised as more secure by issuers.
\n \nAutomatic Card Updates — Card replacements are handled silently by the card network.
\n \nStronger Security — Each token is merchant-specific and protected by a per-transaction cryptogram.
\n \nReduced PCI Burden — Store
\ntoken_referenceinstead of card numbers. \nZero Integration Overhead — Your existing API integration works as-is.
\n \n
API Flow
\nNetwork tokenisation is fully managed by Paybomb. The integration follows the standard Paybomb payment APIs:
\nThe Merchant Flow
\n- \n
Call the List Saved Cards API to check if the customer has saved cards
\n \nIf no saved cards exist, initiate a new payment via the Purchase + S2S API
\n
→ If the merchant opts to save the customer card, Paybomb provisions a network token
→ Customer completes payment
→ A token_reference is generated and linked to the customer and card \nFor returning customers with saved cards:
\n
→ Display saved cards using cardlast4 from List Saved Cards
→ Customer selects a card and provides CVC
→ Submit token_reference + CVC via the purchase + S2S API \nTo remove a saved card, call the Delete Token API.
\n \n
Network tokenisation happens behind the scenes with no additional API calls and no changes to your existing flow.
\n- \n
List Saved Cards — Check if the customer has saved cards
\n \nPurchase — Initiate a new payment (customer can save card during checkout)
\n \nS2S Payment — Charge a saved card using
\ntoken_reference\nDelete Token — Remove a saved card permanently
\n \n
Key Takeaway
\nYou never see or handle the actual network token. Paybomb abstracts it entirely behind the token_reference. Your integration stays simple while your customers get the security and reliability benefits of network tokenisation.
\nEnvironments
\n","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"14af3519-9c6a-475c-bc3b-d6ab7977eea7"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"013fa7b4-bc70-4b79-adfa-9daa71296761"}}],"_postman_id":"1bec4acc-e8d6-4e7e-82c2-ce1b0bb21e53"},{"name":"Pre Authorization","item":[{"name":"Prerequisites","item":[],"id":"e160549d-ac12-4f5b-900d-6046cd82829e","description":"Before integrating the pre-authorisation flow, ensure you have the following:
\n2.1 Account Setup
\n2.2 Environments
\n2.3 Authentication
\nAll API requests must include your API key in the request header.
Paybomb uses bearer token authentication.
Authorization: Bearer {your_api_key}
\nContent-Type: application/json
\nImportant: Never expose your API key in client-side code or public repositories. All API calls must be made server-to-server.
\n","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"b4b1340d-5e79-4d2a-815e-660a43ec5c13"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"9541f143-d53a-4aec-94c9-941dfe5bb572"}}],"_postman_id":"e160549d-ac12-4f5b-900d-6046cd82829e"},{"name":"Payment Flow Overview","item":[],"id":"d857cd6c-5a92-4966-bbda-cab07788ec76","description":"The pre-authorisation and capture flow involves three distinct stages. Below is a high-level summary of each path the transaction can follow after authorisation.
\n3.1 Flow Summary
\nStep 1 - The merchant sends a pre-authorisation request to reserve funds on the customer’s card. If successful, the transaction enters an AUTHORISED state.
\nStep 2a (Capture Path) - The merchant sends a capture request for the full or partial authorised amount. On success, the transaction moves to CAPTURED and funds are settled.
\nStep 2b (Void Path) - If the merchant no longer needs to collect the payment, they send a void request. The hold is released and the transaction moves to VOIDED.
\n3.2 State Transition Diagram
\nThe following diagram describes all possible states:
\nℹ️ Note
\nOnce a transaction is PAID or VOIDED, it cannot be reversed through this flow. Use the Refund API for post-capture reversals.
\n3.3 Authorisation Validity Periods
\nCard networks enforce maximum hold periods. If you do not capture within the validity window, the authorisation expires automatically and funds are released.
\n⚠️ Best Practice
\nCapture as soon as the order is ready to ship or the service is delivered. Delaying capture increases the risk of authorisation expiry and declines.
\n","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"659d03d3-e86c-4de8-8734-298d55406625"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"24a293f0-465e-4f80-8a65-81be66fca998"}}],"_postman_id":"d857cd6c-5a92-4966-bbda-cab07788ec76"},{"name":"APIs","item":[{"name":"Purchase","id":"83eeaa20-73b3-4e74-ad3b-9c5bb88bb855","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"body":{"mode":"raw","raw":"{\r\n \"client\": {\r\n \"email\": \"example@paybomb.tech\",\r\n \"country\": \"IN\",\r\n \"city\": \"123\",\r\n \"stateCode\": \"ca\",\r\n \"street_address\": \"test test\",\r\n \"zip_code\": \"234567\",\r\n \"phone\": \"+91 9999999999\"\r\n },\r\n \"purchase\": {\r\n \"products\": [\r\n {\r\n \"name\": \"dk\",\r\n \"price\": \"10\"\r\n }\r\n ]\r\n },\r\n \"status\": \"created\",\r\n \"brand_id\": \"bd69e8a5-adcf-40de-9e43-2b87cb129a5e\",\r\n \"skip_capture\": true,\r\n \"merchantRef\": \"d9db7ec0-f94c-4a9d-8883-54c19c222d81\",\r\n \"success_redirect\": \"https://your.success.redirect.com\",\r\n \"pending_redirect\": \"https://your.pending.redirect.com\",\r\n \"failure_redirect\": \"https://your.failure.redirect.com\",\r\n \"success_callback\": \"https://your.success.callback.com\",\r\n \"failure_callback\": \"https://your.failure.callback.com\"\r\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/purchases","description":"Use this endpoint to authorise a payment without capturing it. This places a temporary hold on the customer’s funds for the specified amount.
\nTo Initiate a payment, the very first call to make is /purchases with the required data in the request body.
To generate a Purchase, you are required to provide the Brand ID (in the request body) and API key (in the header) Both can be located in the Dashboard section of your merchant account login.
The request body structure is shown on the request body of the example request shown here.
\nThe following (see table below) are the mandatory parameters that are required to create a purchase request.
\nMandatory parameters in the request body:
\nAdditional parameters for this usecase:
\nEssential Optional Parameters
\nmerchantRef
\nThe merchantRef parameter, although not mandatory, is strongly advised for merchants to specify. Its inclusion offers two significant advantages for the merchant:
- \n
Prevention of Duplicate Requests: When a
\nmerchantRefis utilized, it acts as a unique identifier. This means that if a second purchase request is made using the samemerchantRef(reference number), the system will recognize it and prevent duplicate transactions from occurring. This prevents unintended or duplicate purchases. \nFacilitation of Transaction Retrieval: In situations where the response from the initial purchase request times out or the 'purchaseId' isn't received, having the
\nmerchantRefallows the merchant to retrieve detailed transaction information. This ensures they can track and access the specific purchase details related to that reference, even if the immediate response was not received. \n
However, if the merchant does not specify the 'merchantRef' parameter, the platform will automatically assign and use an internal 'purchaseId' as a reference for that transaction.
\nUpon successul create on a Purchase you'd get a \"purchaseId\" . Use this ID for the next step in Server to server call by calling p/{purchaseId}/?s2s=true .
paymentMethod
\nThe paymentMethod parameter identifies which payment solution merchant wants to use to perform a transaction. If parameter is provided, than Paybomb will perform direct payment with the selected payment method instead of loading Paybomb URL.
Errors
\nIf there are any errors then it'll be in the format of :
\n{\n \"message\": \"descriptive error message\",\n \"code\": \"error_code\"\n}\n\nPossible Error Messages
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"55300479-5b71-4b30-84e2-5ba8021bff9c","id":"55300479-5b71-4b30-84e2-5ba8021bff9c","name":"APIs","type":"folder"}},"urlObject":{"path":["purchases"],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"52a7f833-b6db-44d9-9910-77abc5e302aa","name":"Purchase","originalRequest":{"method":"POST","header":[],"body":{"mode":"raw","raw":"{\r\n \"client\": {\r\n \"email\": \"example@paybomb.tech\",\r\n \"country\": \"IN\",\r\n \"city\": \"123\",\r\n \"stateCode\": \"ca\",\r\n \"street_address\": \"test test\",\r\n \"zip_code\": \"234567\",\r\n \"phone\": \"+91 9999999999\"\r\n },\r\n \"purchase\": {\r\n \"products\": [\r\n {\r\n \"name\": \"dk\",\r\n \"price\": \"10\"\r\n }\r\n ]\r\n },\r\n \"status\": \"created\",\r\n \"brand_id\": \"bd69e8a5-adcf-40de-9e43-2b87cb129a5e\",\r\n \"skip_capture\": true,\r\n \"merchantRef\": \"d9db7ec0-f94c-4a9d-8883-54c19c222d81\",\r\n \"success_redirect\": \"https://your.success.redirect.com\",\r\n \"pending_redirect\": \"https://your.pending.redirect.com\",\r\n \"failure_redirect\": \"https://your.failure.redirect.com\",\r\n \"success_callback\": \"https://your.success.callback.com\",\r\n \"failure_callback\": \"https://your.failure.callback.com\"\r\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/purchases"},"status":"Accepted","code":202,"_postman_previewlanguage":"json","header":[{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"1; mode=block"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"X-Frame-Options","value":"DENY"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Date","value":"Thu, 13 Jul 2023 17:22:14 GMT"},{"key":"Keep-Alive","value":"timeout=60"},{"key":"Connection","value":"keep-alive"}],"cookie":[],"responseTime":null,"body":"{\n \"purchaseId\": \"64b032c3c6dccf7d329d9e7e\",\n \"client\": {\n \"bank_account\": \"\",\n \"bank_code\": \"\",\n \"email\": \"dev@paybomb.tech\",\n \"phone\": \"\",\n \"full_name\": \"\",\n \"date_of_birth\": \"\",\n \"personal_code\": \"\",\n \"street_address\": \"test test\",\n \"country\": \"IN\",\n \"city\": \"123\",\n \"zip_code\": \"234567\",\n \"shipping_street_address\": \"\",\n \"shipping_country\": \"\",\n \"shipping_city\": \"\",\n \"shipping_zip_code\": \"\",\n \"cc\": [],\n \"bcc\": [],\n \"legal_name\": \"\",\n \"brand_name\": \"\",\n \"registration_number\": \"\",\n \"tax_number\": \"\",\n \"stateCode\": \"ca\"\n },\n \"updated_on\": 1689268934,\n \"type\": \"purchase\",\n \"force_recurring\": false,\n \"created_on\": 1689268934,\n \"purchase\": {\n \"currency\": \"USD\",\n \"products\": [\n {\n \"name\": \"dk\",\n \"quantity\": 1,\n \"price\": 10,\n \"discount\": 0,\n \"tax_percent\": \"0.00\"\n }\n ],\n \"total\": 10,\n \"language\": \"en\",\n \"notes\": \"\",\n \"debt\": 0,\n \"total_formatted\": 1,\n \"request_client_details\": [],\n \"timezone\": \"America/Edmonton\",\n \"email_message\": \"\"\n },\n \"issuer_details\": {\n \"website\": \"\",\n \"legal_street_address\": \"\",\n \"legal_country\": \"\",\n \"legal_city\": \"\",\n \"legal_zip_code\": \"\",\n \"bank_accounts\": [\n {\n \"bank_account\": \"\",\n \"bank_code\": \"\"\n }\n ],\n \"legal_name\": \"shoes\",\n \"brand_name\": \"shoes\",\n \"registration_number\": \"\",\n \"tax_number\": \"\"\n },\n \"transaction_data\": {\n \"payment_method\": \"\",\n \"flow\": \"payform\",\n \"extra\": {},\n \"country\": \"\",\n \"attempts\": []\n },\n \"status\": \"CREATED\",\n \"status_history\": [\n {\n \"status\": \"created\",\n \"timestamp\": 1689268934\n }\n ],\n \"is_test\": false,\n \"brand_id\": \"bd69e8a5-adcf-40de-9e43-2b87cb129a5e\",\n \"is_recurring_token\": false,\n \"reference_generated\": \"PS161\",\n \"merchantRef\":\"d9db7ec0-f94c-4a9d-8883-54c19c222d81\",\n \"issued\": \"2023-07-13\",\n \"due\": 1689268934,\n \"refund_upto\": 0,\n \"cc_descriptor\": \"\",\n \"refund_availability\": \"NONE\",\n \"refundable_amount\": 0,\n \"success_redirect\": \"https://your.success.redirect.com\",\n \"failure_redirect\": \"https://your.failure.redirect.com\",\n \"cancel_redirect\": \"\",\n \"success_callback\": \"\",\n \"platform\": \"API\",\n \"created_from_ip\": \"149.86.53.48\",\n \"checkout_url\": \"http://18.214.100.20/payments/64b032c3c6dccf7d329d9e7e/\",\n \"direct_post_url\": \"http://18.214.100.20/api/v1/p/64b032c3c6dccf7d329d9e7e/\"\n}"}],"_postman_id":"83eeaa20-73b3-4e74-ad3b-9c5bb88bb855"},{"name":"S2S","id":"38a27849-024f-4407-83e2-744ba0d22dce","protocolProfileBehavior":{"disableUrlEncoding":false,"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"body":{"mode":"raw","raw":"{\r\n \"cardholder_name\": \"dk\",\r\n \"card_number\": \"4111111111111111\",\r\n \"expires\": \"10/23\",\r\n \"cvc\": \"345\",\r\n \"remember_card\": \"on\",\r\n \"remote_ip\": \"157.38.242.7\",\r\n \"user_agent\": \"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36\",\r\n \"accept_header\": \"text/html\",\r\n \"language\": \"en-US\",\r\n \"java_enabled\": false,\r\n \"javascript_enabled\": true,\r\n \"color_depth\": 24,\r\n \"utc_offset\": 0,\r\n \"screen_width\": 1920,\r\n \"screen_height\": 1080\r\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/p/64bff4fff63e36669499e9c8/?s2s=true","description":"This API would be the 2nd in sequence to call if the call to /purchases/ was successful in step 1. and you want to do the transaction via Server-to-Server mode.
The request body would contain the details of the card that's to be transacted upon.
\nMandatory parameters in request body:
\nNote:
If you want to use token_reference for doing a card transaction, please have a look at Network Tokenisation Section.
Essential parameters in request body:
\n**
Other optional parameters in request body:**
Successful Response
\nIf all the details are correct you'll get a 202 response with staus as Pending
\n{\n \"status\": \"pending\",\n \"callback_url\": \"https://app.paybomb.tech/payment/63bd0bf80fb42a076e8a4dd1/\",\n \"method\": \"GET\"\n}\n\nIf the response code is 202, after receiving the response body, direct the customer to the callback_url provided in the response.
\nErrors
\nIf there are any errors then it'll be in the format of :
\n{\n \"message\": \"descriptive error message\",\n \"code\": \"error_code\"\n}\n\nPlease see the Status Code section for further details.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"55300479-5b71-4b30-84e2-5ba8021bff9c","id":"55300479-5b71-4b30-84e2-5ba8021bff9c","name":"APIs","type":"folder"}},"urlObject":{"path":["p","64bff4fff63e36669499e9c8",""],"host":["https://app.paybomb.tech/api/v1"],"query":[{"key":"s2s","value":"true"}],"variable":[]}},"response":[{"id":"64334509-500e-4a66-b587-0112e8faeb2a","name":"Success","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"body":{"mode":"raw","raw":"{\r\n \"cardholder_name\": \"dk\",\r\n \"card_number\": \"411111111111111\",\r\n \"expires\": \"10/23\",\r\n \"cvc\": \"345\",\r\n \"remember_card\": \"on\",\r\n \"remote_ip\": \"157.38.242.7\",\r\n \"user_agent\": \"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36\",\r\n \"accept_header\": \"text/html\",\r\n \"language\": \"en-US\",\r\n \"java_enabled\": false,\r\n \"javascript_enabled\": true,\r\n \"color_depth\": 24,\r\n \"utc_offset\": 0,\r\n \"screen_width\": 1920,\r\n \"screen_height\": 1080\r\n}","options":{"raw":{"language":"json"}}},"url":{"raw":"https://app.paybomb.tech/api/v1/p/64bff4fff63e36669499e9c8/?s2s=true","host":["https://app.paybomb.tech/api/v1"],"path":["p","64bff4fff63e36669499e9c8",""],"query":[{"key":"s2s","value":"true"}]}},"status":"Accepted","code":202,"_postman_previewlanguage":"json","header":[{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"1; mode=block"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"X-Frame-Options","value":"DENY"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Date","value":"Thu, 13 Jul 2023 17:31:55 GMT"},{"key":"Keep-Alive","value":"timeout=60"},{"key":"Connection","value":"keep-alive"}],"cookie":[],"responseTime":null,"body":"{\n \"status\": \"pending\",\n \"callback_url\": \"http://18.214.100.20/api/v1/payment/64b034ecc6dccf7d329d9eb3/\",\n \"method\": \"GET\"\n}"},{"id":"904b5b83-d52d-4ddb-8096-86aa1cccf611","name":"Failure","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer Token","type":"text"}],"body":{"mode":"raw","raw":"{\r\n \"cardholder_name\": \"dk\",\r\n \"card_number\": \"4111111111111111\",\r\n \"expires\": \"10/23\",\r\n \"cvc\": \"345\",\r\n \"remember_card\": \"on\",\r\n \"remote_ip\": \"157.38.242.7\",\r\n \"user_agent\": \"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36\",\r\n \"accept_header\": \"text/html\",\r\n \"language\": \"en-US\",\r\n \"java_enabled\": false,\r\n \"javascript_enabled\": true,\r\n \"color_depth\": 24,\r\n \"utc_offset\": 0,\r\n \"screen_width\": 1920,\r\n \"screen_height\": 1080\r\n}","options":{"raw":{"language":"json"}}},"url":{"raw":"https://app.paybomb.tech/api/v1/p/64bff4fff63e36669499e9c8/?s2s=true","host":["https://app.paybomb.tech/api/v1"],"path":["p","64bff4fff63e36669499e9c8",""],"query":[{"key":"s2s","value":"true"}]}},"status":"Unauthorized","code":401,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Tue, 06 Jan 2026 05:57:10 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"cc434220-0bcd-42c7-9078-53503b81a221"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 9bce423254194c16408d5cf7234126e2.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"FgTt6KEGIk0CH79DQDOvB1tYb1pGfaz0ryIVmQ0CCpDShyhsJGuAkA=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9SnHJOEjnd1y7hArGsRLWmrk8H9ExaiR%2Fc%2BQMWhAvHlNPYCNEjS60wTjIyODXpca0ZD9%2BalkhLJ63boMGg%2B8iI6eFtXfW%2BxwGaBP1p1ZcwpA\"}]}"},{"key":"CF-RAY","value":"9b98f9f4684505e7-IAD"},{"key":"alt-svc","value":"h3=\":443\"; ma=86400"}],"cookie":[],"responseTime":null,"body":"{\n \"message\": \"Authorization header missing\",\n \"code\": \"authentication_failed\"\n}"}],"_postman_id":"38a27849-024f-4407-83e2-744ba0d22dce"},{"name":"Capture","id":"e1f56021-389d-4b20-9f93-1052f6819960","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json"},{"key":"Authorization","value":"Bearer Token"}],"body":{"mode":"raw","raw":"{\n \"merchant_reference\": \"64534345\"\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/purchases/69cd26b053d7b783ebf6b6e9/capture","description":"After a successful pre-authorisation, use this endpoint to capture (settle) the held funds. You may capture the full authorised amount or a partial amount.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"55300479-5b71-4b30-84e2-5ba8021bff9c","id":"55300479-5b71-4b30-84e2-5ba8021bff9c","name":"APIs","type":"folder"}},"urlObject":{"path":["purchases","69cd26b053d7b783ebf6b6e9","capture"],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"eaccef30-8310-4459-9a3d-bdbca93b7667","name":"Capture","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json"},{"key":"Authorization","value":"Bearer Token"}],"body":{"mode":"raw","raw":"{\n \"merchant_reference\": \"64534345\"\n}","options":{"raw":{"language":"json"}}},"url":"https://app.paybomb.tech/api/v1/purchases/69cd26b053d7b783ebf6b6e9/capture"},"status":"Internal Server Error","code":500,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Wed, 01 Apr 2026 17:16:51 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"72818dba-381a-449a-8351-390453ddbf72"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 3578d122de1401ebc52a7afd35dd5d0c.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"zEG99N28vChcugkKEe-mJxhNgum-PAK1lcn_2mKqagcBd5deWquIjw=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EnQbeJo0VkBTF%2BqefkY%2BZ1OejkL%2BkIkR76eA5%2FtL3qaxYlOL1ehFjmSIpGl5i91OldfFB41NXeRXp3E43WxFSEhlUj7OgOqbI6eYZs%2B%2BcUBdewUDmvk46tJrDA5WO53Bib8q\"}]}"},{"key":"CF-RAY","value":"9e593e77fb953ec9-IAD"}],"cookie":[{"expires":"Invalid Date","domain":"","path":""}],"responseTime":null,"body":"{\n \"purchaseId\": \"69cd361053d7b783ebf7324d\",\n \"client\": {\n \"customerId\": \"NA\",\n \"email\": \"kailashvishnoi126741@paybomb.tech\",\n \"full_name\": \"akshaya singhal\",\n \"date_of_birth\": \"1800-01-01\",\n \"street_address\": \"123\",\n \"country\": \"ZM\",\n \"city\": \"jaipur\",\n \"zip_code\": \"234567\",\n \"cc\": [],\n \"bcc\": [],\n \"stateCode\": \"CA\"\n },\n \"updated_on\": 1775056447,\n \"type\": \"purchase\",\n \"paymentMethod\": \"MASTER,VISA,VIRTUAL-IBAN,CRYPTO-WALLET,MAYA,GCASH,QRPH,BANKTRANSFER,NETBANKING,UPI-QR,PAYPLAY,UPI-INTENT,MOBILEMONEY,GOOGLEPAY,APPLEPAY\",\n \"amountUnit\": \"MAJOR\",\n \"errorMsg\": \"\",\n \"errorCode\": \"NA\",\n \"force_recurring\": false,\n \"created_on\": 1775056400,\n \"extraParam\": {\n \"aft\": {\n \"account_owner_address1\": \"test\",\n \"account_owner_address2\": \"test\",\n \"account_owner_street\": \"test\",\n \"account_owner_postal_code\": \"123\",\n \"account_owner_city\": \"test\",\n \"account_owner_country\": \"UK\",\n \"merchant_postal_code\": \"123\",\n \"merchant_state\": \"FRA\",\n \"acceptor_legal_name\": \"test\",\n \"sender_address\": \"test\",\n \"sender_city\": \"test\",\n \"sender_state\": \"RJ\",\n \"sender_country\": \"FRA\",\n \"sender_name\": \"test\",\n \"sender_account_number\": \"test\",\n \"recipient_name\": \"test\",\n \"bai\": \"AA\"\n }\n },\n \"merchantRef\": \"69cd361053d7b783ebf7324d\",\n \"purchase\": {\n \"currency\": \"EUR\",\n \"products\": [\n {\n \"name\": \"gaming cards\",\n \"quantity\": 1.0,\n \"price\": 10.0,\n \"discount\": 0,\n \"tax_percent\": \"0.00\"\n }\n ],\n \"total\": 10.0,\n \"requestAmount\": 10.0,\n \"language\": \"en\",\n \"notes\": \"\",\n \"debt\": 0,\n \"total_formatted\": 1.0,\n \"taxAmount\": 0.0,\n \"taxPercent\": 0.0,\n \"request_client_details\": [],\n \"email_message\": \"\"\n },\n \"payment\": {\n \"is_outgoing\": false,\n \"payment_type\": \"PURCHASE\",\n \"amount\": 10.0,\n \"currency\": \"EUR\",\n \"net_amount\": 10.0,\n \"fee_amount\": 0.0,\n \"pending_amount\": 0.0,\n \"pending_unfreeze_on\": null,\n \"description\": \"\",\n \"paid_on\": 1775056410,\n \"remote_paid_on\": 1775056410\n },\n \"issuer_details\": {\n \"website\": \"\",\n \"legal_street_address\": \"\",\n \"legal_country\": \"\",\n \"legal_city\": \"\",\n \"legal_zip_code\": \"\",\n \"bank_accounts\": [\n {}\n ],\n \"legal_name\": \"ECOMTEST1\",\n \"brand_name\": \"ECOMTEST1\",\n \"registration_number\": \"\",\n \"tax_number\": \"\"\n },\n \"transaction_data\": {\n \"payment_method\": \"\",\n \"flow\": \"payform\",\n \"extra\": {\n \"expiry_month\": \"12\",\n \"amount\": 10.0,\n \"card_issuer\": \"ING BELGIUM, S.A.\",\n \"masked_pan\": \"46401701****6658\",\n \"card_brand\": \"VISA\",\n \"card_issuer_country\": \"BE\",\n \"card_type\": \"CREDIT\",\n \"cardholder_name\": \"Sank\",\n \"expiry_year\": \"28\"\n },\n \"country\": \"\",\n \"attempts\": [\n {\n \"client_ip\": \"223.235.99.134\",\n \"type\": \"execute\",\n \"payment_method\": \"VISA\",\n \"flow\": \"payform\",\n \"successful\": true,\n \"country\": \"BE\",\n \"processing_time\": 1775056410,\n \"extra\": {\n \"expiry_month\": \"12\",\n \"amount\": 10.0,\n \"card_issuer\": \"ING BELGIUM, S.A.\",\n \"masked_pan\": \"46401701****6658\",\n \"card_brand\": \"VISA\",\n \"card_issuer_country\": \"BE\",\n \"card_type\": \"CREDIT\",\n \"cardholder_name\": \"Sank\",\n \"expiry_year\": \"28\"\n }\n }\n ]\n },\n \"status\": \"PAID\",\n \"status_history\": [\n {\n \"status\": \"created\",\n \"timestamp\": 1775056400\n },\n {\n \"status\": \"pending_execute\",\n \"timestamp\": 1775056410\n },\n {\n \"status\": \"payment_in_process\",\n \"timestamp\": 1775056410\n },\n {\n \"status\": \"3DS success\",\n \"timestamp\": 1775056424\n },\n {\n \"status\": \"preauthorized\",\n \"timestamp\": 1775056428\n },\n {\n \"status\": \"capture_in_process\",\n \"timestamp\": 1775056447\n },\n {\n \"status\": \"paid\",\n \"timestamp\": 1775056447\n }\n ],\n \"is_test\": false,\n \"brand_id\": \"bab077d5-df4d-4fda-8c6c-2f78d97c9a16\",\n \"send_receipt\": false,\n \"is_recurring_token\": false,\n \"skip_capture\": true,\n \"reference_generated\": \"PS1673\",\n \"issued\": \"2026-04-01\",\n \"due\": 1775056400,\n \"refund_upto\": 1776089649,\n \"cc_descriptor\": \"\",\n \"fraudScore\": \"NA\",\n \"trustScore\": \"NA\",\n \"extraFee\": \"0\",\n \"pix_payload\": {},\n \"payInDetails\": {},\n \"paidOn\": 1775056449,\n \"receivedAmt\": 0.0,\n \"captureTxns\": [\n {\n \"captureId\": \"41e31f9f-1e98-4f4d-b48c-7d1ed488fc3f\",\n \"purchaseId\": \"69cd361053d7b783ebf7324d\",\n \"amount\": 10.0,\n \"fxAmount\": 10.0,\n \"status\": \"PAID\",\n \"pspReference\": null,\n \"merchantReference\": \"64534345\",\n \"createdAt\": 1775056447,\n \"updatedAt\": 1775056447,\n \"whiteId\": 0,\n \"fxCurrency\": \"EUR\",\n \"bankMid\": \"payneticsexternal3ds\",\n \"isTest\": false,\n \"currency\": \"EUR\",\n \"amountInUsd\": 11.85,\n \"merchantName\": \"KailashMerchant\",\n \"bankName\": \"paynatics-aft_\",\n \"bankId\": \"532\",\n \"trxMethod\": \"CARDS\",\n \"rollingReserve\": 0.0,\n \"transFees\": 0.0,\n \"mdr\": 0.0,\n \"isSettlementPending\": 0,\n \"parentId\": 0,\n \"transSettlementId\": null,\n \"errorSettlementId\": null,\n \"merchantId\": \"589\"\n }\n ],\n \"taxAmount\": 0.0,\n \"surcharge\": 0.0,\n \"surchargeType\": \"\",\n \"sessionId\": \"\",\n \"refund_availability\": \"NONE\",\n \"refundable_amount\": 10.0,\n \"success_redirect\": \"https://google.com/getResponse.jsp?issucces=true\",\n \"failure_redirect\": \"https://google.com/getResponse.jsp?issucces=false\",\n \"cancel_redirect\": \"\",\n \"success_callback\": \"https://www.google.com/\",\n \"failure_callback\": \"https://app.paybomb.tech/merchant\",\n \"platform\": \"API\",\n \"created_from_ip\": \"223.235.99.134\",\n \"checkout_url\": \"https://app.paybomb.tech/payments/47395a8217d29014a4af6b1c494ac06b/\",\n \"direct_post_url\": \"https://app.paybomb.tech/api/v1/p/69cd361053d7b783ebf7324d/\",\n \"payoutProcess\": false\n}"}],"_postman_id":"e1f56021-389d-4b20-9f93-1052f6819960"},{"name":"Cancel","id":"a9e6b414-35b0-4497-8767-be77ce7a6949","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Authorization","value":"Bearer 309855a6e22c2bc9873f11ee5997cb3ff246a8e8ec4f009f2924ad7178b2ad7b"}],"url":"https://app.paybomb.tech/api/v1/purchases/69ca76dbace4fa4413db928c/cancel","description":"Use this endpoint to cancel an authorised payment before it has been captured. Voiding releases the held funds back to the customer immediately.
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"55300479-5b71-4b30-84e2-5ba8021bff9c","id":"55300479-5b71-4b30-84e2-5ba8021bff9c","name":"APIs","type":"folder"}},"urlObject":{"path":["purchases","69ca76dbace4fa4413db928c","cancel"],"host":["https://app.paybomb.tech/api/v1"],"query":[],"variable":[]}},"response":[{"id":"e00f5d8e-b3aa-43f1-aa19-7decf4fd329e","name":"Cancel","originalRequest":{"method":"POST","header":[{"key":"Authorization","value":"Bearer 309855a6e22c2bc9873f11ee5997cb3ff246a8e8ec4f009f2924ad7178b2ad7b"}],"url":"https://app.paybomb.tech/api/v1/purchases/69ca76dbace4fa4413db928c/cancel"},"status":"Method Not Allowed","code":405,"_postman_previewlanguage":"Text","header":[{"key":"Date","value":"Wed, 01 Apr 2026 17:18:25 GMT"},{"key":"Content-Type","value":"application/json"},{"key":"Transfer-Encoding","value":"chunked"},{"key":"Connection","value":"keep-alive"},{"key":"Nel","value":"{\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}"},{"key":"X-Frame-Options","value":"ALLOW-FROM *"},{"key":"Referrer-Policy","value":"no-referrer"},{"key":"x-session-id","value":"1c9b7d67-8dec-4e71-b35b-7952f23b67ed"},{"key":"Vary","value":"Origin"},{"key":"Vary","value":"Access-Control-Request-Method"},{"key":"Vary","value":"Access-Control-Request-Headers"},{"key":"Server","value":"cloudflare"},{"key":"X-Content-Type-Options","value":"nosniff"},{"key":"X-XSS-Protection","value":"0"},{"key":"Cache-Control","value":"no-cache, no-store, max-age=0, must-revalidate"},{"key":"Pragma","value":"no-cache"},{"key":"Expires","value":"0"},{"key":"Strict-Transport-Security","value":"max-age=31536000 ; includeSubDomains"},{"key":"X-Cache","value":"Error from cloudfront"},{"key":"Via","value":"1.1 8bd3b44b8e417f2b75cd6e631907112a.cloudfront.net (CloudFront)"},{"key":"X-Amz-Cf-Pop","value":"IAD61-P10"},{"key":"X-Amz-Cf-Id","value":"WSuVRaHm9E64itnjsFWAyBSPCR8YOFpZr7jY-NAhT-Ae-3_bc-hNTw=="},{"key":"cf-cache-status","value":"DYNAMIC"},{"key":"Report-To","value":"{\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FOrvZsMz3WoHOQDEvKgGSADamNtnaGrILftqtr5BiqYIlUvgXZT89lPPwyXtpIDJW8BNOXjG%2FgAQmYnOUsUpQZ%2BDIVJsSDsxo4FxOEgIKcxPYcG21xgzcTNpNqbnk%2Fnw%2FEki\"}]}"},{"key":"CF-RAY","value":"9e5940bd580a07ed-IAD"}],"cookie":[{"expires":"Invalid Date","domain":"","path":""}],"responseTime":null,"body":"{\n \"purchaseId\": \"69cd36c353d7b783ebf743e9\",\n \"client\": {\n \"customerId\": \"NA\",\n \"email\": \"kailashvishnoi126741@paybomb.tech\",\n \"full_name\": \"akshaya singhal\",\n \"date_of_birth\": \"1800-01-01\",\n \"street_address\": \"123\",\n \"country\": \"ZM\",\n \"city\": \"jaipur\",\n \"zip_code\": \"234567\",\n \"cc\": [],\n \"bcc\": [],\n \"stateCode\": \"CA\"\n },\n \"updated_on\": 1775056649,\n \"type\": \"purchase\",\n \"paymentMethod\": \"MASTER,VISA,VIRTUAL-IBAN,CRYPTO-WALLET,MAYA,GCASH,QRPH,BANKTRANSFER,NETBANKING,UPI-QR,PAYPLAY,UPI-INTENT,MOBILEMONEY,GOOGLEPAY,APPLEPAY\",\n \"amountUnit\": \"MAJOR\",\n \"errorMsg\": \"\",\n \"errorCode\": \"NA\",\n \"force_recurring\": false,\n \"created_on\": 1775056579,\n \"extraParam\": {\n \"aft\": {\n \"account_owner_address1\": \"test\",\n \"account_owner_address2\": \"test\",\n \"account_owner_street\": \"test\",\n \"account_owner_postal_code\": \"123\",\n \"account_owner_city\": \"test\",\n \"account_owner_country\": \"UK\",\n \"merchant_postal_code\": \"123\",\n \"merchant_state\": \"FRA\",\n \"acceptor_legal_name\": \"test\",\n \"sender_address\": \"test\",\n \"sender_city\": \"test\",\n \"sender_state\": \"RJ\",\n \"sender_country\": \"FRA\",\n \"sender_name\": \"test\",\n \"sender_account_number\": \"test\",\n \"recipient_name\": \"test\",\n \"bai\": \"AA\"\n }\n },\n \"merchantRef\": \"69cd36c353d7b783ebf743e9\",\n \"purchase\": {\n \"currency\": \"EUR\",\n \"products\": [\n {\n \"name\": \"gaming cards\",\n \"quantity\": 1.0,\n \"price\": 10.0,\n \"discount\": 0,\n \"tax_percent\": \"0.00\"\n }\n ],\n \"total\": 10.0,\n \"requestAmount\": 10.0,\n \"language\": \"en\",\n \"notes\": \"\",\n \"debt\": 0,\n \"total_formatted\": 1.0,\n \"taxAmount\": 0.0,\n \"taxPercent\": 0.0,\n \"request_client_details\": [],\n \"email_message\": \"\"\n },\n \"payment\": {\n \"is_outgoing\": false,\n \"payment_type\": \"PURCHASE\",\n \"amount\": 10.0,\n \"currency\": \"EUR\",\n \"net_amount\": 10.0,\n \"fee_amount\": 0.0,\n \"pending_amount\": 0.0,\n \"pending_unfreeze_on\": null,\n \"description\": \"\",\n \"paid_on\": 1775056600,\n \"remote_paid_on\": 1775056600\n },\n \"issuer_details\": {\n \"website\": \"\",\n \"legal_street_address\": \"\",\n \"legal_country\": \"\",\n \"legal_city\": \"\",\n \"legal_zip_code\": \"\",\n \"bank_accounts\": [\n {}\n ],\n \"legal_name\": \"ECOMTEST1\",\n \"brand_name\": \"ECOMTEST1\",\n \"registration_number\": \"\",\n \"tax_number\": \"\"\n },\n \"transaction_data\": {\n \"payment_method\": \"\",\n \"flow\": \"payform\",\n \"extra\": {\n \"expiry_month\": \"12\",\n \"amount\": 10.0,\n \"card_issuer\": \"JPMORGAN CHASE BANK, N.A.\",\n \"masked_pan\": \"42000000****0000\",\n \"card_brand\": \"VISA\",\n \"card_issuer_country\": \"US\",\n \"card_type\": \"CREDIT\",\n \"cardholder_name\": \"Sank\",\n \"expiry_year\": \"28\"\n },\n \"country\": \"\",\n \"attempts\": [\n {\n \"client_ip\": \"223.235.99.134\",\n \"type\": \"execute\",\n \"payment_method\": \"VISA\",\n \"flow\": \"payform\",\n \"successful\": true,\n \"country\": \"US\",\n \"processing_time\": 1775056600,\n \"extra\": {\n \"expiry_month\": \"12\",\n \"amount\": 10.0,\n \"card_issuer\": \"JPMORGAN CHASE BANK, N.A.\",\n \"masked_pan\": \"42000000****0000\",\n \"card_brand\": \"VISA\",\n \"card_issuer_country\": \"US\",\n \"card_type\": \"CREDIT\",\n \"cardholder_name\": \"Sank\",\n \"expiry_year\": \"28\"\n }\n }\n ]\n },\n \"status\": \"CANCELLED\",\n \"status_history\": [\n {\n \"status\": \"created\",\n \"timestamp\": 1775056579\n },\n {\n \"status\": \"pending_execute\",\n \"timestamp\": 1775056600\n },\n {\n \"status\": \"payment_in_process\",\n \"timestamp\": 1775056600\n },\n {\n \"status\": \"3DS success\",\n \"timestamp\": 1775056607\n },\n {\n \"status\": \"preauthorized\",\n \"timestamp\": 1775056611\n },\n {\n \"status\": \"void_in_process\",\n \"timestamp\": 1775056632\n },\n {\n \"status\": \"preauthorized\",\n \"timestamp\": 1775056632\n },\n {\n \"status\": \"void_in_process\",\n \"timestamp\": 1775056647\n },\n {\n \"status\": \"cancelled\",\n \"timestamp\": 1775056649\n }\n ],\n \"is_test\": false,\n \"brand_id\": \"bab077d5-df4d-4fda-8c6c-2f78d97c9a16\",\n \"send_receipt\": false,\n \"is_recurring_token\": false,\n \"skip_capture\": true,\n \"reference_generated\": \"PS1675\",\n \"issued\": \"2026-04-01\",\n \"due\": 1775056579,\n \"refund_upto\": 1776089849,\n \"cc_descriptor\": \"\",\n \"fraudScore\": \"NA\",\n \"trustScore\": \"NA\",\n \"extraFee\": \"0\",\n \"pix_payload\": {},\n \"payInDetails\": {},\n \"paidOn\": 0,\n \"receivedAmt\": 0.0,\n \"taxAmount\": 0.0,\n \"surcharge\": 0.0,\n \"surchargeType\": \"\",\n \"sessionId\": \"\",\n \"refund_availability\": \"NONE\",\n \"refundable_amount\": 10.0,\n \"success_redirect\": \"https://google.com/getResponse.jsp?issucces=true\",\n \"failure_redirect\": \"https://google.com/getResponse.jsp?issucces=false\",\n \"cancel_redirect\": \"\",\n \"success_callback\": \"https://www.google.com/\",\n \"failure_callback\": \"https://app.paybomb.tech/merchant\",\n \"platform\": \"API\",\n \"created_from_ip\": \"223.235.99.134\",\n \"checkout_url\": \"https://app.paybomb.tech/payments/23182fc42998cb02b4a3e6aa5c3e26c8/\",\n \"direct_post_url\": \"https://app.paybomb.tech/api/v1/p/69cd36c353d7b783ebf743e9/\",\n \"payoutProcess\": false\n}"}],"_postman_id":"a9e6b414-35b0-4497-8767-be77ce7a6949"}],"id":"55300479-5b71-4b30-84e2-5ba8021bff9c","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"faa83157-7798-4a6c-9122-cab04cc92898"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"1b4d8940-8958-4661-82c1-3ad7914b49bd"}}],"_postman_id":"55300479-5b71-4b30-84e2-5ba8021bff9c","description":""},{"name":"Transaction Status Lifecycle","item":[],"id":"7e038849-ad8d-4427-99d0-d39d5b445d25","description":"Every payment processed through the pre-authorisation flow passes through a series of statuses. Understanding these statuses is critical for building robust integrations.
\n","_postman_id":"7e038849-ad8d-4427-99d0-d39d5b445d25"},{"name":"Best Practices","item":[],"id":"7b5da023-1820-4d82-b3e7-7ad47738dbf4","description":"Capture Timing
\nCapture payments as soon as the goods are shipped or the service is delivered. The longer you wait, the higher the risk of authorisation expiry, customer disputes, and declined captures.
\nIdempotency
\nAlways include the X-Idempotency-Key header for all write operations (authorise, capture, void). This protects against duplicate transactions caused by network timeouts or retries.
\nWebhook-Driven Architecture
\nDo not rely solely on synchronous API responses for business logic. Implement webhook handlers to receive real-time status updates and use them as the source of truth for transaction state in your system.
\nError Handling
\nImplement retry logic with exponential backoff for 5xx errors and 429 (rate limit) responses. For 4xx errors, parse the error response body and handle each error code appropriately in your application logic.
\nPCI Compliance
\nIf you are handling raw card numbers, you must be PCI DSS Level 1 certified. Paybomb strongly recommends using tokenised payment methods to minimise your PCI scope. Use the Paybomb Cashier or client-side SDK to tokenise card details before they reach your server.
\nReconciliation
\nUse the reference field on authorise, capture, and void requests to associate Paybomb transactions with your internal order system. The balances object in every response provides a real-time breakdown for reconciliation.
\n3D Secure
\nEnable 3DS for all pre-authorisation requests where supported. This shifts fraud liability to the card issuer and reduces chargebacks. Paybomb supports 3DS 2.x with frictionless and challenge flows.
\n","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"1799b30b-cc85-4d82-b4a3-6b05f5c654b5"}},{"listen":"test","script":{"type":"text/javascript","packages":{},"requests":{},"exec":[""],"id":"19cdfecd-428e-4a03-a873-57766e84fa8e"}}],"_postman_id":"7b5da023-1820-4d82-b3e7-7ad47738dbf4"},{"name":"Frequently Asked Questions","item":[],"id":"80d1a733-27c9-44ce-8558-5dcb783020cc","description":"Q: Can I capture more than the authorised amount?
\nA: No. The capture amount must be less than or equal to the authorised amount. If you need to charge more, you must create a new authorisation for the additional amount.
\nQ: Can I perform multiple partial captures on a single authorisation?
\nA: Yes. Paybomb supports multiple captures per authorisation. But you will need to contact the support team for enabling the same.
\nQ: What happens if I do not capture before the authorisation expires?
\nA: The authorisation automatically expires and the held funds are released back to the customer. You will receive a payment.expired webhook event. You must create a new authorisation to charge the customer.
\nQ: Can I void a payment after it has been captured?
\nA: No. Once a payment is captured, you must use the Refund API to return funds. The void endpoint only works for payments in AUTHORISED status.
\nQ: How long does a void take to reflect on the customer’s statement?
\nA: Typically, the hold is removed within 1–3 business days, depending on the issuing bank. Some banks may take up to 7 days to release the hold.
\nQ: Does the customer see the pre-authorisation on their statement?
\nA: Yes. The customer will see a pending charge for the authorised amount. This pending charge is released upon void or expiry, or replaced by the final charge upon capture.
\nQ: Can I use pre-authorisation with non-card payment methods?
\nA: Pre-authorisation is primarily supported for card payments. Support for alternative payment methods varies. Check the Paybomb payment methods documentation for details.
\nQ: Is 3D Secure required for pre-authorisations?
\nA: 3DS is not required but is strongly recommended. It reduces fraud liability and chargeback risk. Paybomb supports 3DS on all card pre-authorisation requests.
\n","_postman_id":"80d1a733-27c9-44ce-8558-5dcb783020cc"}],"id":"a48dd8ee-4749-4c27-a6ed-b483807a1fef","description":"Overview
\nPre-authorisation (also known as \"auth only\") is a two-step payment process where a merchant first reserves (holds) funds on a customer’s payment method without immediately capturing the amount. This allows the merchant to verify fund availability before fulfilling an order, then capture (settle) the payment at a later time — or void (cancel) the hold if the order is not fulfilled.
\nWhen to Use Pre-Authorisation
\nPre-authorisation is ideal for scenarios where the final transaction amount may change, or where goods/services are not delivered immediately. Common use cases include:
\nKey Concepts
\n","_postman_id":"a48dd8ee-4749-4c27-a6ed-b483807a1fef"},{"name":"Get Balance API (V2) - Orchestration","item":[{"name":"Checking Balance","id":"b3aaacf3-5f45-48ed-bed2-91e35a8aa207","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Authorization","value":"Bearer Token","type":"text"}],"body":{"mode":"raw","raw":"{ \r\n \"paymentMethod\" : \"PAYOUT-INTERAC-ETRANSFER\"\r\n\r\n}\r\n","options":{"raw":{"language":"json"}}},"url":"/getBalance","description":"API for checking available balance
\n- \n
URL :- /getBalance/
\n \nRequestType: POST
\n \nRequest Body
\n \n
Note: Currency is not a mandatory parameter. If no parameter is specified then all respective currency balances would be provided, if any specific currency parameter is provided then only that currency balance would be provided.
\n","urlObject":{"path":["getBalance"],"host":[""],"query":[],"variable":[]}},"response":[{"id":"08022b58-f579-4ed3-90e8-31da9e95be42","name":"Checking Balance payout-success","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json"}],"body":{"mode":"raw","raw":"{ \r\n \"paymentMethod\" : \"PAYOUT-INTERAC-ETRANSFER\"\r\n}\r\n","options":{"raw":{"language":"json"}}},"url":"/getBalance"},"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"paymentMethod\": \"PAYOUT-INTERAC-ETRANSFER\",\n \"status\": \"success\",\n \"gateways\": [\n {\n \"gatewayName\": \"payhost\",\n \"status\": \"success\",\n \"error\": null,\n \"balances\": [\n {\n \"currency\": \"CAD\",\n \"balance\": 808.380000\n },\n {\n \"currency\": \"USD\",\n \"balance\": 803.380000\n }\n ]\n },\n {\n \"gatewayName\": \"choicepaypg\",\n \"status\": \"success\",\n \"error\": null,\n \"balances\": [\n {\n \"currency\": \"CAD\",\n \"balance\": 808.380000\n },\n {\n \"currency\": \"USD\",\n \"balance\": 808.380000\n }\n ]\n }\n ],\n \"aggregatedBalances\": [\n {\n \"currency\": \"CAD\",\n \"balance\": 1616.760000\n },\n {\n \"currency\": \"USD\",\n \"balance\": 1611.760000\n }\n ]\n}"},{"id":"94f626ca-13e7-4326-a5ea-dc88d4d39f23","name":"Checking Balance partial-success","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json"}],"body":{"mode":"raw","raw":"{ \r\n \"paymentMethod\" : \"CARDS\"\r\n}\r\n","options":{"raw":{"language":"json"}}},"url":"/getBalance"},"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"paymentMethod\": \"CARDS\",\n \"status\": \"partial\",\n \"gateways\": [\n {\n \"gatewayName\": \"a55Mandate\",\n \"status\": \"failed\",\n \"error\": {\n \"code\": \"error\",\n \"message\": \"Bank does not provide balance\"\n },\n \"balances\": []\n },\n {\n \"gatewayName\": \"bk_sbx_smilepayz_pix_payin\",\n \"status\": \"success\",\n \"error\": null,\n \"balances\": [\n {\n \"currency\": \"IDR\",\n \"balance\": 250000.000000\n }\n ]\n },\n {\n \"gatewayName\": \"choicepay_pg\",\n \"status\": \"success\",\n \"error\": null,\n \"balances\": [\n {\n \"currency\": \"AED\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"AUD\",\n \"balance\": 3412.000000\n },\n {\n \"currency\": \"BRL\",\n \"balance\": 100.089996\n },\n {\n \"currency\": \"BTC\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"BXC\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"CAD\",\n \"balance\": 1000.000000\n },\n {\n \"currency\": \"CDF\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"COP\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"DKK\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"EGP\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"ETH\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"EUR\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"GBP\",\n \"balance\": -24.327801\n },\n {\n \"currency\": \"GHS\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"IDR\",\n \"balance\": 1000.000000\n },\n {\n \"currency\": \"INR\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"JPY\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"KES\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"MWK\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"MXN\",\n \"balance\": -4.770000\n },\n {\n \"currency\": \"NGN\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"NZD\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"RWF\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"THB\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"TZS\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"UGX\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"USD\",\n \"balance\": 167.457992\n },\n {\n \"currency\": \"USDC\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"USDT\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"UZS\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"XAF\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"XOF\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"ZAR\",\n \"balance\": 120.000000\n },\n {\n \"currency\": \"ZMW\",\n \"balance\": 0.000000\n }\n ]\n },\n {\n \"gatewayName\": \"payhost\",\n \"status\": \"failed\",\n \"error\": {\n \"code\": \"error\",\n \"message\": \"Bank does not provide balance\"\n },\n \"balances\": []\n }\n ],\n \"aggregatedBalances\": [\n {\n \"currency\": \"AED\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"AUD\",\n \"balance\": 3412.000000\n },\n {\n \"currency\": \"BRL\",\n \"balance\": 100.089996\n },\n {\n \"currency\": \"BTC\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"BXC\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"CAD\",\n \"balance\": 1000.000000\n },\n {\n \"currency\": \"CDF\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"COP\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"DKK\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"EGP\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"ETH\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"EUR\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"GBP\",\n \"balance\": -24.327801\n },\n {\n \"currency\": \"GHS\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"IDR\",\n \"balance\": 251000.000000\n },\n {\n \"currency\": \"INR\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"JPY\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"KES\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"MWK\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"MXN\",\n \"balance\": -4.770000\n },\n {\n \"currency\": \"NGN\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"NZD\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"RWF\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"THB\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"TZS\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"UGX\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"USD\",\n \"balance\": 167.457992\n },\n {\n \"currency\": \"USDC\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"USDT\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"UZS\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"XAF\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"XOF\",\n \"balance\": 0.000000\n },\n {\n \"currency\": \"ZAR\",\n \"balance\": 120.000000\n },\n {\n \"currency\": \"ZMW\",\n \"balance\": 0.000000\n }\n ]\n}"},{"id":"accf24b9-4787-47af-8733-2888c01fada6","name":"Checking Balance payout-error","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json"}],"body":{"mode":"raw","raw":"{ \r\n \"paymentMethod\" : \"PAYOUT-INTERAC\"\r\n}\r\n","options":{"raw":{"language":"json"}}},"url":"/getBalance"},"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"paymentMethod\": \"PAYOUT-INTERAC\",\n \"status\": \"failed\",\n \"gateways\": [\n {\n \"gatewayName\": \"payhost\",\n \"status\": \"failed\",\n \"error\": {\n \"code\": \"error\",\n \"message\": \"Bank does not provide balance\"\n },\n \"balances\": []\n }\n ],\n \"aggregatedBalances\": []\n}"}],"_postman_id":"b3aaacf3-5f45-48ed-bed2-91e35a8aa207"}],"id":"cbbd040c-a566-4e46-8723-5d480265592d","description":"The Get Balance API (V2) provides orchestrator-level visibility into available balances across multiple payment methods and banking partners. This version enhances the existing balance API by aggregating and returning balance details for all supported payment methods associated with all the PSPs for the merchant
\nOverview
\n- \n
Purpose: Retrieve available balance information across different banks/payment methods.
\n \nScope: Orchestrator-level (not limited to a single merchant or payment method).
\n \nEnhancement over previous version:
\n- \n
Returns balances for all payment methods linked to the orchestrator.
\n \nProvides both consolidated and MID-level (Merchant ID) breakdowns.
\n \n
\n
Request Parameters
\nBehavior
\n- \n
When a valid paymentMethod is provided, the API retrieves:
\n- \n
Balance details across all associated banks/payment methods.
\n \nMID-level breakdown for each bank.
\n \nConsolidated balance per payment method.
\n \n
\nThe API is designed specifically for orchestrators and returns aggregated data across multiple merchants and banking integrations.
\n \n
Success Response
\nOn successful retrieval, the API returns:
\n- \n
Payment Method Details
\n \nList of Banks / Payment Providers
\n \nMID-Level Breakdown
\n \nConsolidated Balance
\n \n
Error Handling
\nIf balance details are not found or the request cannot be processed, the API returns:
\n- \n
Appropriate status code
\n \nError message
\n \n