Customer profiles API
The customer profiles API allows you to store customer data and multiple payment instruments (for multiple payment methods/connectors) for your customers. Via this API profiles can be retrieved, updated and deleted. To create a profile use the Transaction API.
Customer profiles are an optional feature which is not automatically available for all IXOPAY platform clients!
If you want to get access to all IXOPAY platform features you need to upgrade your plan. Please contact our customer success team at [email protected] or our sales team at [email protected] for more information.
Request format
Requests to the Customer Profile API are sent via HTTPS containing a JSON body.
- The server accepts TLS version ≥ 1.2 connections.
- Content-Type must be
application/json
- Authentication credentials are sent via BASIC Auth (see below)
Headers Example:
Content-Type: application/json; charset=utf-8
Date: Mon, 01 Jan 2018 11:01:36 UTC
Authorization: Basic YW55QXBpVXNlcjpteVBhc3N3b3Jk
X-Signature: DH7MfiGq5QYQusTzWMpWiJpnPz+o1pZbcf7HCiT1+jjc+7UrnmDSpVuHzrRrZ6UxJUYYnOHJfG91zm0VimWXHg==
Authentication
- HTTP: Basic Auth
To authenticate API requests, the API username and password must be sent as BASIC Authentication in the Authorization
header,
as defined in RFC 7617.
To achieve this, the username and password are first concatenated with a :
(colon) separator,
and the resulting string is then Base64 encoded. Here is an example of how this process works:
- Suppose the API username is
anyApiUser
and the password ismyPassword
. - Concatenate the username and password with a
:
separator:anyApiUser:myPassword
. - Base64 encode the concatenated string:
YW55QXBpVXNlcjpteVBhc3N3b3Jk
. - Finally, include the
Authorization
header in the API request with the Base64 encoded string, like so:Authorization: Basic YW55QXBpVXNlcjpteVBhc3N3b3Jk
.
Many programming frameworks will automatically handle the BASIC Authentication process for you once you provide the username and password to the appropriate request object.
Security Scheme Type: | http |
---|---|
HTTP Authorization Scheme: | basic |