Authentication

Server

Generate Public Access Token (JWT token)

GET

https://sandbox.onebrick.io/v2/payments/general

/auth/token

This endpoint allows developers to retrieve a short-lived public access token (JWT) necessary for initiating certain operations within the Brick system. The token is valid for 5 minutes and is intended for single-use only.

Generate Public Access Token (JWT token) › Headers

Client ID

string · required

Your client key (You can collect this from Brick dashboard)

Client Secret

string · required

Your client secret (You can collect this from Brick dashboard)

Generate Public Access Token (JWT token) › Responses

200

status

integer

Default: 0

error

object

GET/auth/token

curl https://sandbox.onebrick.io/v2/payments/general/auth/token \
  --header 'Client ID: <string>' \
  --header 'Client Secret: <string>'

Example Responses

{
    "status": 200,
    "error": null,
    "metaData": {
        "source": "API",
        "entity": "Payment"
    },
    "data": {
        "message": "Access token is valid for 5 minutes and can use one time only",
        "accessToken": "eyJhbGciOiJIUzI1NiJ9.eyJzdWIiOiIxODQ4IiwiY29sb3VyIjoiIzMzMzMzMyIsInJvbGUiOlsiVVNFUiJdLCJuYW1lIjoiRGlzIEFjY291bnQiLCJpc3MiOiJEaXMgQWNjb3VudCIsImV4cCI6MTY1ODM5NTg2OCwiaWF0IjoxNjU4Mzk1NTY4LCJqdGkiOiIzNDJjMTkxZS1hMmY2LTQ1NzQtYjEzMC1hYTU4ZTQ0MjE4YjAiLCJ0cyI6MTY1ODM5NTU2ODc4Mn0.L5mxFmBJbakibo2aKZZq-KkppuhtYGOkPlzOt4WPHGQ",
        "issuedAt": "2022-07-21T16:26:08.782387",
        "expiresAt": "2022-07-21T16:31:08.782387"
    }
}

json

application/json

Get Access Token

POST

https://sandbox.onebrick.io/v2/payments/general

/acceptance/1.0/access-token/b2b

This page provides detailed information about the access token API used in the SNAP standard for QRIS creation and query.

Get Access Token › Headers

Content-Type

string · required

String represents indicate the media type of the resource

Default: application/json

X-CLIENT-KEY

string · required

Client’s client_id

Default: 66a5fc3b-7c57-4e29-b097-88b5909aedcc

X-TIMESTAMP

string · date · required

Client's current local time in yyyy-MM- ddTHH:mm:ss.SSSTZD format

Default: 2024-11-11T18:44:33+07:00

X-SIGNATURE

string · required

Non-Repudiation & Integrity check signature for the requesting

Default: i10jpP3qxAU+K+YtHmqXTnd00tbAdloAMoJsi0W32T4mnGiaZB1JNtWm1DZetUXUE7+93VVn4L5F1YhqheElsjQBnaDmPUxDXWrT8cHakzKz/EYNGFhgnnGVokRLaBnDIP11ASFACt7P7dtTA3EFAoD65NbApyMmKkrPG8siQvyKylx5xHRCq2Zr3WNqWOP4MgCo862PNHNAapu54ikw3B9x1FW/BCTWlm0bzz51HXWvoneyF9boddKGjfDgFJYfVp58RJd8cgvqwCAV/+bzXzen0DqB9Yo2O3XCszD6yMVJz5dMvEkOwSyskILbJsSLa8JqRRh/j66jYLy8JBDOFg==

Get Access Token › Request Body

grant_type

string · required

Must be "client_credentials"

Default: client_credentials

Get Access Token › Responses

200

responseCode

string

responseMessage

string

accessToken

string

tokenType

string

expiresIn

string

POST/acceptance/1.0/access-token/b2b

curl https://sandbox.onebrick.io/v2/payments/general/acceptance/1.0/access-token/b2b \
  --request POST \
  --header 'Content-Type: application/json' \
  --header 'Content-Type: application/json' \
  --header 'X-CLIENT-KEY: 66a5fc3b-7c57-4e29-b097-88b5909aedcc' \
  --header 'X-TIMESTAMP: 2024-11-11T18:44:33+07:00' \
  --header 'X-SIGNATURE: i10jpP3qxAU+K+YtHmqXTnd00tbAdloAMoJsi0W32T4mnGiaZB1JNtWm1DZetUXUE7+93VVn4L5F1YhqheElsjQBnaDmPUxDXWrT8cHakzKz/EYNGFhgnnGVokRLaBnDIP11ASFACt7P7dtTA3EFAoD65NbApyMmKkrPG8siQvyKylx5xHRCq2Zr3WNqWOP4MgCo862PNHNAapu54ikw3B9x1FW/BCTWlm0bzz51HXWvoneyF9boddKGjfDgFJYfVp58RJd8cgvqwCAV/+bzXzen0DqB9Yo2O3XCszD6yMVJz5dMvEkOwSyskILbJsSLa8JqRRh/j66jYLy8JBDOFg==' \
  --data '{
  "grant_type": "client_credentials"
}'

Example Request Body

{
  "grant_type": "client_credentials"
}

json

Example Responses

{
  "responseCode": "2007300",
  "responseMessage": "Successful",
  "accessToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxNjQwIiwiZXhwIjoxNzMxNjYxODY4LCJuYmYiOjE3MzE2NjA5NjgsImlhdCI6MTczMTY2MDk2OH0.meLj72WwkmLTtMa47DUZDgs4EhbhWJbzgQhjTm0sUC4",
  "tokenType": "Bearer",
  "expiresIn": "900"
}

json

application/json

Topup

Generate Public Access Token (JWT token)

GET

https://sandbox.onebrick.io/v2/payments/general

/auth/token

Generate Public Access Token (JWT token) › Headers

Client ID

string · required

Your client key (You can collect this from Brick dashboard)

Client Secret

string · required

Your client secret (You can collect this from Brick dashboard)

Generate Public Access Token (JWT token) › Responses

200

status

integer

Default: 0

error

object

Get Access Token

POST

https://sandbox.onebrick.io/v2/payments/general

/acceptance/1.0/access-token/b2b

This page provides detailed information about the access token API used in the SNAP standard for QRIS creation and query.

Get Access Token › Headers

Content-Type

string · required

String represents indicate the media type of the resource

Default: application/json

X-CLIENT-KEY

string · required

Client’s client_id

Default: 66a5fc3b-7c57-4e29-b097-88b5909aedcc

X-TIMESTAMP

string · date · required

Client's current local time in yyyy-MM- ddTHH:mm:ss.SSSTZD format

Default: 2024-11-11T18:44:33+07:00

X-SIGNATURE

string · required

Non-Repudiation & Integrity check signature for the requesting

Get Access Token › Request Body

grant_type

string · required

Must be "client_credentials"

Default: client_credentials

Get Access Token › Responses

200

responseCode

string

responseMessage

string

accessToken

string

tokenType

string

expiresIn

string