Log inGet started
Airwallex logo
Home
Online Payments
Treasury
Transactional FX
Payouts
Issuing
Scale
Open Banking
Developer Tools
API Reference
Home
Issuing
Introduction to Issuing
Issuing Use Cases
Controls
Authorisation Controls
Currency Based ControlsMerchant Based ControlsTransaction Based ControlsTime Based ControlsRemote Authorisation Controls
Remote Authorisation ScenariosRemote Authorisation TimeoutRemote Authorisation Config Tutorial
Setup your Remote Authorisation EndpointHandling Exceptions
Merchant Category Codes

Remote Authorisation Config Tutorial

You can use our issuing config update endpoint to configure your remote-auth (POST /api/v1/issuing/config/update) and use get issuing config endpoint (GET /api/v1/issuing/config) to view your current remote authorisation configuration. Here’s a tutorial to configure your remote authorisation endpoint in our demo environment:

1. Log into Airwallex Client API to get the access token

Request:

Shell

Response:

JSON

2. Check your current issuing config

Before you config your remote auth, this field won’t show in the return body. Request:

Shell

Response:

JSON

3. Initalise your remote authorisation config

You only need to pass url in the request and will generate a shared secret when there’s no existing remote auth config. Enabled will be false and default_action will be AUTHORIZED as default config if you didn’t pass them in the init request. Please note shared secrets can’t get from GET endpoint, it only presents once when you init your config or pass new_shared_secret parameter as true in the update request which will discard the old shared secret and generate a new one.

Request:

Shell

Response:

JSON

4. Enable your remote authorisation

You need to enable your remote authorisation config if you didn’t pass the enabled param in the init request

Request:

Shell

Response:

JSON

5. Update your default action

You can update your default action via this enpoint

Request:

Response:

6. Request a new shared secret

You can request a new shared secret by passing the new_shared_secret param as true. Please note this will discard the old shared secret and you need to update your system to verify our remote auth request. We highly recommend you do this after disable the remote auth config.

Request:

Shell

Response:

JSON