Skip to main content
This API is for EMS integrators. You manage clients, legal signing, card holders, and webhooks. Transaction data arrives via webhooks, not by polling.

Base URL

EnvironmentURL
Productionhttps://api.opencard.io/api/v1/application
Sandboxhttps://sandbox-api.opencard.io/api/v1/application

What’s included

AreaEndpoints
AccountGet/update your account
OAuth ClientsCreate API credentials
Public RecordsCompany lookup before TPA
TPAs + SignatoriesLegal authorization flow
IdentitiesList people for instant card holder onboarding
OrganizationsYour end-clients
Card HoldersOnboard employees (email or identity_id)
WebhooksReceive transaction events
Receipt ScannerOCR photo receipts

What’s NOT here

  • /me — end-user profile API (not for EMS integration)
  • /transactions query — use webhooks instead
  • Admin endpoints (global users, logs, statistics, etc.)

Auth

POST https://api.opencard.io/oauth/token
→ Bearer token on all requests
See Authentication.

Typical flow

  1. POST /accounts/{id}/tpas + signatories
  2. POST /accounts/{id}/organizations
  3. POST .../webhooks
  4. POST .../cardholders
  5. Receive card.transaction.* on your webhook URL
Full walkthrough → Quickstart