TrustPay
    en
    • en
    • zh
    • Integration Guide
    • Payment Gateway
      • Payment Callback Specification
      • Enums
      • Risk Control – Merchant Integration
      • C21 Suport Regions
        • TrustPay Supported Billing Countries and US/Canada Regions
      • Card Direct Payin
        POST
      • Cashier Payin
        POST
      • Payment Callback
        POST
      • Balance
        POST
      • Order Query
        POST
      • Order Refund
        POST
      • Fee Query
        POST
    • Credit Card Issuer
      • Available Card
        POST
      • Open Card
        POST
      • Open/Recharge Card Callback
        POST
      • Get Card Detail
        POST
      • Card Recharge
        POST
      • Order List
        POST
      • Card List
        POST
      • Transaction List
        POST
      • Fee Query
        POST
    • Physical Card Issuer
      • Create Cardholder
        POST
      • List Cardholders
        POST
      • Assign Physical Cards
        POST
      • List Assigned Physical Cards
        POST
      • Query Card Balance
        POST
      • Query Card Transactions
        POST
      • Query Account
        POST
      • Card Charge
        POST
    • Schemas
      • VCardDetail
      • VOrderDetail

    Integration Guide

    Communication Protocol#

    Merchants must follow the specified data exchange format when requesting platform services.
    Base URL: https://api.trustpay.money
    All API requests must use the POST method with Content-Type: application/json.
    Both request and response bodies are in JSON format.
    To ensure consistent character encoding, all data packets must use UTF-8.
    Currency unit: USD ($), accurate to two decimal places (cents).

    Signature Rules#

    The signature algorithm is MD5.
    Signature string format:
    key1=value1&key2=value2&secret=secret
    The data to be signed includes all non-empty request parameters except sign, concatenated in A–Z alphabetical order, followed by &secret=secret.
    The secret key can be found on the merchant dashboard under Profile.

    Authentication#

    Add a custom header field to each request:
    X-Api-Key: {your_api_key}
    The API key value can be viewed on the merchant dashboard under Profile.

    Callback Guidelines#

    Callbacks may be sent multiple times; merchants must handle duplicate notifications gracefully.
    Callback data is sent in JSON format with Content-Type: application/json.
    Refer doc: Payment Callback Specification
    Modified at 2026-04-03 04:44:52
    Next
    Payment Callback Specification
    Built with