pasbydocs
API reference

Signing

POST signing endpoints — sign, confirm, and wildcard.

Base path: /api/v2/signing · Billing: signature

The gateway picks the request schema from action and whether seeds is present:

ConditionSchemaFields
action: sign, no seedsSignnin (min 11), payload, webhook
action: confirm, no seedsConfirmnin, payloadno webhook
Wildcard + signWildcard signpayload, seeds (1–10), webhookno nin
Wildcard + confirmWildcard confirmpayload, seeds — no webhook

Track completion with flow ping/SSE. For sign, also handle your webhook.

SDK: pasby.signing.sameDevice, differentDevice, wildcardTypeScript SDK.

POST /api/v2/signing/same-device

Headers: x-api-key, x-access-secret

curl -sS -X POST "https://s.pasby.africa/api/v2/signing/same-device" \
  -H "x-api-key: bk-test_YOUR_KEY" \
  -H "x-access-secret: YOUR_APP_SECRET" \
  -H "Content-Type: application/json" \
  -d '{
    "nin": "12345678901",
    "payload": "txn-001",
    "action": "sign",
    "webhook": {
      "host": "https://your-app.com/pasby/events",
      "reference": "txn-001"
    }
  }'

POST /api/v2/signing/different-device

Same body rules as same-device. Typical for web apps where the user completes on their phone.

curl -sS -X POST "https://s.pasby.africa/api/v2/signing/different-device" \
  -H "x-api-key: bk-test_YOUR_KEY" \
  -H "x-access-secret: YOUR_APP_SECRET" \
  -H "Content-Type: application/json" \
  -d '{
    "nin": "12345678901",
    "payload": "order-789",
    "action": "sign",
    "webhook": {
      "host": "https://your-app.com/pasby/events",
      "reference": "order-789"
    }
  }'

POST /api/v2/signing/wildcard

v2 only — omit nin; include seeds (1–10). Webhook required for action: sign.

curl -sS -X POST "https://s.pasby.africa/api/v2/signing/wildcard" \
  -H "x-api-key: bk-test_YOUR_KEY" \
  -H "x-access-secret: YOUR_APP_SECRET" \
  -H "Content-Type: application/json" \
  -d '{
    "payload": "wildcard-sign-001",
    "action": "sign",
    "seeds": 5,
    "webhook": {
      "host": "https://your-app.com/pasby/events",
      "reference": "wildcard-sign-001"
    }
  }'

Legacy v1

Suffixv1 authNotes
same-devicekey + secret + token
different-devicekey + token
wildcardNot available on v1

Full walkthroughs: Signing guide.

Identification

POST endpoints for same-device, different-device, and wildcard identification.

Flow endpoints

Ping, SSE, cancel, polling, and v1 authorize.

On this page

POST /api/v2/signing/same-devicePOST /api/v2/signing/different-devicePOST /api/v2/signing/wildcardLegacy v1