Veengu Platform Frontend API (2.5.9)

Veengu API provides key methods and attributes for managing a digital financial service by Tenants (service providers).

Veengu Tenant code

Also as a part of tenant onboarding, Veengu assignes an unique string code for the Tenant. You should always send your code in v-tenant header. # Note your API keys carry many privileges, so be sure to keep them secure! Do not share your API keys in publicly accessible areas such as GitHub, client-side code, and so forth. # All API requests must be made over HTTPS. Calls made over plain HTTP will fail. API requests without authentication will also fail.

Access Token structure

Veengu Access Token is JSON Web Token (JWT, tools.ietf.org). It consists of three concatenated Base64url-encoded strings, separated by dots .:

• Header: contains metadata about the type of the token and cryptographic algorithms used to secure its contents.

• Payload: contains verifiable security statements, such as an identity of the user and permissions they are allowed.

• Signature: used to validate that the token is trustworthy and has not been tampered with.

Each API request has an associated request identifier. You can find this value in response headers, under V-Request-Id. If you need to contact us about a specific request, providing the request identifier will ensure the fastest possible resolution.

Date and time formats

All dates in the JSON payloads are represented in ISO 8601 date-time format. All date-time fields in responses must include the timezone. You can find more information on Veengu Developer Guide API Overview. To get transaction created date in customer local time you use createdAt attribute in transaction response and transaction history.

During transaction initiation you can define transaction local timezone on application client site with sending localUTCOffset attribute as an offset of user mobile device with the locale time zone in ISO 8601 as an offset from UTC formats:

• ±hh:mm
• ±hhmm
• ±hh

In case localUTCOffset attribute is not specified in transaction request Veengu processing core stores and responses createdAt value as server time with Tenant timezone defines in settings.

Money format

All money in API defined as amount object with mandatory fields value and currency. Currency should be present as currency code in ISO 4217 alfa-3 format. The value field should be present as the float number of monetary units specified in an appropriate currency. Field pattern applies based on currency ISO 4217 definition.

When we make backwards-incompatible changes to the API, we release new, dated versions. The current version is 2.X.Y. Read our API changelog to learn more about backwards compatibility. Some versions could be deprecated which means you cannot choose this version in API settings and all requests return an API format error. To set the API version for a specific request use V-Version header. As a precaution, use API versioning to test a new API version before committing to an upgrade.

For error handling Veengu uses conventional HTTP response codes to indicate success or failure of an API request. In general, error codes in the 2xx range indicate success. Codes in the 4xx range indicate errors that failed given the information provided (e.g., a required parameter is missing, a failed transaction, etc.). Codes in the 5xx range indicate errors with Veengu servers (these are rare). Some 4xx errors that could be handled programmatically (e.g., a transaction is declined) include an error code that briefly explains the error reported.

The Veengu API implements cursor-based pagination via the next and prev parameters. Both parameters take a unique key element that identifies the next or previous page. The prev parameter returns objects listed before the current page. The next parameter returns objects listed after the current page. Only one parameter next or prev should be used in the request. If both parameters are provided, only next is used. The returned object includes cursor object with next/prev parameters if there are more objects (for example, transactions) than the defined limit value in response. If the objects list fits in one page cursor object is empty.

All top-level API resources have support request to get object list via API methods. For instance, you can get customers, accounts, and transactions. These API methods share a common structure, taking at least these three parameters: limit, next and prev.

The following parameters shall be provided to create a new Individual Customer profile with account:

• Personal phone number,
• Solution id.

For creating a new Business Customer account, the following setup parameters should be provided:

• Solution id i.e. the name marketed to the merchants. Identification is the unique id created by the Tenant to internally define the solution

Specific parameters

Country-specific parameters

Users authentication flow with one-tome password

Users authentication flow with mobile application key

Users authentication flow with password

Business customer