💻API Documentation

API Specification Common Standards

Protocol Standards and Methods

Action
Standard
Description

Transfer

HTTPS enabled endpoints

Secure interactions (Payments, Customer)

Data Exchange (CRUD)

POST/GET/PUT/DELETE

Varies as per API

Data Format

application/json

All data exchanges (requests and responses made in this format)

Char Encoding

UTF-8

Signature Algorithm

HMAC-SHA512

Signature Requirement

WIP

Signature-checking is required for requesting and receiving data

Logic Judgment

Determine protocol field, service field and transaction status.

Request Header

Attributes
Type
Required
Limitation
Description

content-type

string

Y

application/json

content type

Signature

Build the content

String payload = timestamp + "\n" + nonce + "\n" + body + "\n";

Sign the content

String signature = hex(hmac("sha512", payload, secretKey)).toUpperCase()

NOTE

  • ‘\n’ is LF, ASCII value is '0x0A'

  • Parameter names are case-sensitive;

  • When checking returned data or a push notification signature, the transferred sign parameter is excluded in this signature as it is compared with the created signature.

  • When post the Json body, carefully check the quote, ' is not same as "

Merchant APIs

Base URL - <base_url> : api-azsit.purplepay.app

Authentication

  1. Register as a merchant on PurplePay Dashboard with email and password

  2. Purple Pay authentication API uses Bearer authorization. It should be included in the header

  3. Generating JWT Token

    1. End Point:

      1. Method: POST

      2. URL: <base_url>/auth/token

    2. Request Parameters:

      Attributes (1st level)
      Type
      Required
      Description

      username

      string

      Y

      email id as the username for signing up

      password

      string

      Y

      Strong alphanumeric password with special characters

    3. Response:

      Attributes
      Type
      Required
      Description

      access_token

      string/token

      Y

      JWT token which is to be used to authenticate every request

      refresh_token

      string/token

      Y

      Refresh token to get the new access_token before it expires

    4. Using the JWT Token

      1. Once you have generated a JWT access token, you can use it to authenticate your requests.

      2. The token should be included in the Authorization header with the Bearer keyword, like so:

        **http** Authorization: Bearer <your-jwt-token>

      3. Replace <your-jwt-token> with your actual JWT token.

      4. Remember, all API requests must be made over HTTPS. Non-secure requests will fail.

Payments Config API

  1. It returns details of supported chains and their details.

  2. It also returns data to support and enrich classification around the different attributes of payments such as payment type (merchant, ecommerce, P2P etc).

  3. Endpoint:

    1. Method: GET

    2. URL: <base_url>/payments/chain_config

Create Checkout API

  1. Payments API is used to create orders and generate counterfactual payment addresses to receive payments on different chains

  2. Endpoint:

    1. Method: POST

    2. URL: <base_url>/payments/burner_address

  3. Request Parameters:

    Attributes (1st level)
    Type
    Required
    Description

    api_key

    UUID

    Y

    api_key generated after signing up as a merchant

    payment_type

    enum

    string

    [merchant pos, merchant one time, merchant ecommerce, p2p one time]

    N

    payment_type is one of the values received from the config api. It serves to differentiate the category of source generating the payment.

    order_amount

    float

    Y

    value of the order

    currency

    enum

    string

    [usd]

    N

    currently, the defualt is in US Dollar. Support for generating orders in other currency is WIP and will be launched soon.

    description

    string upto 500 characters

    chain_id

    enum

    int

    testnet: [80001, 81]

    mainnet: [592, ]

    Y

    It is one of the chain ids received from chain_config. This chain id is used to create the counterfactual address on the relevant chain.

    user_order_id

    string

    merchant generated order id

  4. Response:

    Attributes (1st level)
    Attributes (2nd level)
    Attributes (3rd level)
    Type
    Required
    Description

    data

    tokens

    burner_address

    order_amount

    conversion_rate_in_usd

    is_used_for_payment

    transfer_to_merchant_transaction_hash

    burner_contract_deploy_status

    burner_contract_deploy_failure_reason

    symbol

    token_address

    chain_id

    chain_name

    decimals

    image_url

    id

    Payment Id created in Purple Pay

    payment_status

    string

    enum

    [In Progress, Completed, Partially Completed]

    description

    string

    message

    string

    error

Payment Status API

  1. The payment status and verification API tracks and updates the status of payments for the given Purple Pay order id.

  2. Endpoint

    1. Method: GET

    2. URL: <base_url>/payments/payment_verify/<payment_id>

      1. This payment id can be purple pay payment_id or merchant user_order_id.

  3. Request Parameters

    1. payment_id in url path as mentioned above

  4. Response:

    Attributes (1st level)
    Attributes (2nd level)
    Attributes (3rd level)
    Type
    Required
    Description

    data

    id

    payment_details

    tokens

    array of objects

    burner_address

    order_amount

    is_used_for_payment

    symbol

    token_address

    chain_id

    chain_name

    decimals

    image_url

    conversion_rate

    transfer_to_merchant_transaction_hash

    burner_contract_deploy_status

    enum

    string

    [initiated deploy, not deploy, failure deploy, success deploy]

    burner_contract_deploy_failure_reason

    message

    error

    payment_status

PreviousGenerate API KeyNextEcommerce Widget

Last updated