cURL

curl -X POST "https://api.onekhusa.com/sandbox/v1/checkout/rtp/initiate" \
  --header "Content-Type: application/json" \
  --header "X-Idempotency-Key: your-idempotency-key" \
  -d '{
    "authentication": {
      "apiKey": "API_KEY",
      "apiSecret": "API_SECRET"
    },
    "merchant": {
      "organisationId": "ORG123456789",
      "merchantAccountNumber": 12345678
    },
    "payment": {
      "sourceReferenceNumber": "SRN123456789",
      "description": "GROCERIES PAYMENT",
      "amount": 450000.00
    },
    "route": {
      "successRedirectionUrl": "YOUR_APP_REDIRECTION_SUCCESS_PAGE_URL",
      "failureRedirectionUrl": "YOUR_APP_REDIRECTION_ERROR_PAGE_URL",
      "callbackApiUrl": "YOUR_WEBHOOK_PAYLOAD_ENDPOINT"
    }
  }'

{
  "sourceReferenceNumber": "SRN123456789",
  "merchantAccountNumber": 12345678,
  "paymentTransactionId": "GENERATED_TRANSACTION_ID"
}

Accept Payments

Request To Pay Checkout

The Request to Pay Checkout is a managed OneKhusa service that simplifies the checkout process for accepting payments to be made by third party systems supported by request-to-pay feature. In order to accept payments through the managed checkout page, the process is as follows:

Your system initiates a checkout payment request
On successful payment request, redirect to the hosted checkout page
Finalise the payment through bank account or mobile wallet
Update the payment status in your system through webhook notification
The checkout service redirects to your system to mark the process as successful

Let’s implement the checkout flow to start accepting payments from your customers:

Important: It is recommended to configure the Reversed Request To Pay webhook in case the OneKhusa payment gateway has received a payment reversal after the original transaction was successful so that your system should take an appropriate action.

1. Initiate Payment Request

This step allows your application initiates the payment request and waits for the successful response to redirect to OneKhusa hosted checkout service.

POST

checkout

rtp

initiate

cURL

curl -X POST "https://api.onekhusa.com/sandbox/v1/checkout/rtp/initiate" \
  --header "Content-Type: application/json" \
  --header "X-Idempotency-Key: your-idempotency-key" \
  -d '{
    "authentication": {
      "apiKey": "API_KEY",
      "apiSecret": "API_SECRET"
    },
    "merchant": {
      "organisationId": "ORG123456789",
      "merchantAccountNumber": 12345678
    },
    "payment": {
      "sourceReferenceNumber": "SRN123456789",
      "description": "GROCERIES PAYMENT",
      "amount": 450000.00
    },
    "route": {
      "successRedirectionUrl": "YOUR_APP_REDIRECTION_SUCCESS_PAGE_URL",
      "failureRedirectionUrl": "YOUR_APP_REDIRECTION_ERROR_PAGE_URL",
      "callbackApiUrl": "YOUR_WEBHOOK_PAYLOAD_ENDPOINT"
    }
  }'

{
  "sourceReferenceNumber": "SRN123456789",
  "merchantAccountNumber": 12345678,
  "paymentTransactionId": "GENERATED_TRANSACTION_ID"
}

2. Redirect To Checkout

Once your application receives a successfully initiated payment response, redirect to the following OneKhusa checkout page URL:

https://checkout.onekhusa.com/requestToPay/initiate?ptid=paymentTransactionId

Note that paymentTransactionId is a placeholder for the actual value received from payment response.

Figure 1: Request To Pay Checkout Your initiated payment transaction will be displayed as illustrated in figure 1 above and follow the instructions to pay through the supported banks and mobile money wallets on OneKhusa. Once payment is successful and received, you will be redirected automatically to your application.

3. Simulate Checkout Payment

To simulate a payment made by a customer through managed checkout service, do either one of the following:

Login to merchant portal, navigate to Fake Data – Simulate Accept Request To Pay, then provide details from the checkout (TAN and Amount) and finalise the payment OR
Use Simulate Accept Request To Pay endpoint

Authorizations

Authorization

string

header

required

Bearer authentication header of the form Bearer Token, Where accessToken is the access token used to authenticate the request.

Headers

X-Idempotency-Key

string

A unique key to ensure idempotent requests

Body

application/json

authentication

object

required

Show child attributes

merchant

object

required

Show child attributes

payment

object

required

Show child attributes

route

object

required

Show child attributes

Response

200 - application/json

Successful initiation of checkout request

sourceReferenceNumber

string

required

Unique reference number provided in the request.

Example:

"SRN123456789"

merchantAccountNumber

integer

required

Merchant account used for the transaction.

Example:

12345678

paymentTransactionId

string

required

Generated transaction ID used for redirecting to checkout.

Example:

"GENERATED_TRANSACTION_ID"

Request To Pay Get Payments

​2. Redirect To Checkout

​3. Simulate Checkout Payment

Authorizations

Headers

Body

Response

2. Redirect To Checkout

3. Simulate Checkout Payment