Search...
Log inGet started
Airwallex logo
Home
Core API
Payments
Transactional FX
Payouts
Issuing
Embedded Finance
Global Treasury
Banking as a Service
Payments for Platforms
Developer Tools
Trust Center
Business Account Help Center
API Reference
Back to home
OverviewUnderstanding Banking as a ServiceMarket & infrastructure coverage
Get started
Global Accounts
Held balances
Funds movement
Cards
Create cardholders
Create cards
Authorization controls
Remote authorization
Remote authorization scenariosConfigure remote authorization
Respond to authorization requestsRetrieve authorizationsTest remote authorizationHandle exceptions
Connected accounts
Risk
Compliance Support
Platform operations
Reporting
Test and go live

Configure remote authorization

To be able to respond to remote authorization requests, you must enable remote authorization and configure your default settings. Airwallex falls back to the default settings if your system fails to respond with a decision within 2 seconds due to network failures or request timeouts.

Before you begin

Step 1: Retrieve your remote authorization settings

Use Get issuing config API to check if you have remote authorization set up. If it’s not configured, the response will not contain the remote_auth_settings object.

Shell
Example request
JSON
Example response

Step 2: Initialize and enable remote authorization

When an existing configuration for remote authorization does not exist, use Update issuing config API endpoint to initialize and enable remote authorization.

To initialize, you will only need to provide an HTTPS URL of your remote authorization endpoint and submit the request. This will generate the shared secret when no existing remote authorization configuration exists. The shared_secret will be used to add digital signatures to transaction requests - this field can only be retrieved from Update issuing config API. It returns null in the Get issuing config API response.

Use the following parameters to enable remote authorization:

  • enabled: Set this to true to enable remote authorization. If you do not specify a value, false is set as default.
  • default_action: Specify the default action, AUTHORIZED or DECLINED, in the event of remote authorization failure, for example, network failures, request time-outs. If you do not specify a value, AUTHORIZED is set as default.
  • new_shared_secret: Set this to true to generate a new shared secret. Note that this will discard the old shared secret and you will need to update your system with the new secret to verify the remote auth request. We highly recommend that you do this after disabling the remote auth config.
Shell
Example request
JSON
Example response

Step 3: (Optional) Enable health check

Airwallex has a strict time limit for the full remote authorization call, with a portion allocated to establishing the initial connection between Airwallex and your URL. By enabling a health check endpoint to pre-establish and maintain this connection, the connection time can be significantly reduced, allowing more time for processing the authorization request. Airwallex offers health checks via HTTP GET requests.

HTTP_GET requests

HTTP_GET will be a standard GET call made to a separate URL. Please ensure that a new URL is implemented and has the same host as your remote authorization URL. The URL should be configured to always return 200 OK.

In order to enable this feature, please first ensure that your remote authorization settings have been configured, and a shared_secret has been generated, then contact your Airwallex Account Manager to enable health checks.

On this page