Account Verification

post

https://sandbox.api.of.ayoconnect.id/it/api/v2.0/account-inquiry-external

This API is used to validate bank accounts.

A response code 2001600 indicates that the request has been successfully accepted and is being processed asynchronously.
If a 5XX16XX response code is received, please wait for the callback response for up to 1 minute before retrying the account validation request, as the transaction may still be processed in the backend system.
If no callback is received after the waiting period, the Account Verification API may be called again.

Recent Requests

Time	Status	User Agent
Retrieving recent requests…

Loading…

Body Params

partnerReferenceNo

string

required

length between 32 and 32

Unique 32-character string. Transaction identifier on the partner system.

beneficiaryAccountNo

string

required

length between 10 and 20

Beneficiary account number.

For e-wallet transfers (GoPay, OVO, ShopeePay), use the customer’s registered phone number in the e-wallet, with prefix 08 (example: 08123456789).

beneficiaryBankCode

string

required

length between 3 and 3

Unique identifier used to identify the beneficiary's bank.

Headers

Content-Type

string

required

length between 16 and 16

Content type accepted by the service. Only 'application/json' is supported.

Authorization

string

required

length between 35 and 35

Authorization header. Only 'Bearer' authentication is supported.

X-EXTERNAL-ID

string

required

length between 32 and 32

Unique identifier (32 alphanumeric characters) to identify the request. It must be unique per request and can't be reused in subsequent requests.

If the same value is used in another request, it will be considered as a duplicated request, and consequently rejected.

X-PARTNER-ID

string

required

length between 6 and 6

Unique identifier (6 alphanumeric characters) to identify the particular merchant. It must be unique per merchant.

X-LATITUDE

string

required

Geographical coordinates of the end customer location

X-LONGITUDE

string

required

Geographical coordinates of the end customer location.

X-TIMESTAMP

string

required

length between 24 and 27

Client's current local time in yyyy-MM-ddTHH:mm:ss.SSSTZD format.

X-SIGNATURE

string

required

Integrity checking. Asymmetric Signature: SHA256withRSA(Private_Key, stringToSign)

stringToSign = client_ID + "|" + X-TIMESTAMP

X-IP-ADDRESS

string

required

Public IP Address of the end customer.

CHANNEL-ID

string

required

length between 5 and 5

Numeric ID that shows which client or application sent the request. It is used for tracking and reporting.

Responses

Callback

200Successful

400Invalid Token

500External Server Error