Create a counterparty
Create a new counterparty to transact with.
Test accounts for Sandbox In the Sandbox environment, you cannot add real people and businesses as Revolut counterparties.
To help you simulate Create a counterparty requests for counterparties of profile type personal
, we created some test accounts.
Look inside for test Revtags.
personal
, we created some test accounts.
Look inside for test Revtags. To add a counterparty via Revtag, use one of these pairs for the name
and revtag
fields respectively:
Test User 1
&john1pvki
Test User 2
&john2pvki
- ...
Test User 9
&john9pvki
For more information, see the guides: Create a counterparty.
Access Token
Each Business API request must contain an authorization header in the following format to make a call: Bearer <your_access_token>
.
The access token will be obtained the first time you set up your application and has an expiration of 40 minutes.
During setup, a refresh_token
will also be obtained which allows to obtain a new access_token
.
Never share your client-assertion JWT (JSON web token), access_token
and refresh_token
with anyone, as these can be used to access your banking data and initiate transactions.
Access tokens can be issued with four security scopes and require a JWT (JSON Web Token) signature to be obtained:
READ
: Permissions forGET
operations.WRITE
: Permissions to update counterparties, webhooks, and issue payment drafts.PAY
: Permissions to initiate or cancel transactions and currency exchanges.READ_SENSITIVE_CARD_DATA
: Permissions to retrieve sensitive card details.cautionIf you enable the
READ_SENSITIVE_CARD_DATA
scope for your access token, you must set up IP whitelisting. Failing to do so will prevent you from accessing any Business API endpoint.IP whitelisting means that you must specify an IP or a set of IPs which will be the only IPs from which requests to the API will be accepted. To do so:
- In the Revolut Business app, select the corresponding API certificate.
- In Production IP whitelist, provide the IP(s) which should be whitelisted, and save.
To configure your JWT and obtain the refresh and first access tokens, complete the following steps:
Request
Counterparty to add
Response
Added counterparty