Switch to author mode

Debt API v2

Program Interfaces (API) of Debt Service V2

  • Base URL: https://debt.webmoney.com
  • Protocol: HTTPS only (TLS 1.2+)
  • Versioning: The version is included in the path, for example /api/v2/.... Breaking changes are released in a new version.
  • Encoding and format: JSON UTF-8 in request and response bodies.

Authorization (JWT Bearer)

Each request must include an authorization header with a JWT token:

Authorization: Bearer <JWT>

The token is obtained at: https://debt.webmoney.com/Tokens.aspx

Required Headers

For all requests:
  • Accept: application/json
  • Authorization: Bearer <JWT>
Additionally, for POST requests:
  • Content-Type: application/json

Examples (curl)

GET request:
-H "Authorization: Bearer <JWT> \
-H "Accept: application/json"

POST request:
-H "Authorization: Bearer <JWT> \
-H "Accept: application/json" \
-H "Content-Type: application/json"

Data Format

  • Monetary values: decimal with dot separator (e.g. 123.45)
  • Date and time: ISO 8601 UTC (e.g. "2025-01-02T12:34:56Z")
  • Boolean: true/false (JSON)

Error Handling

When an error occurs, the server returns an HTTP status and JSON:

{"error":"...", "error_description":"..."}
Standardized codes:
  • 400 bad_request — request format/validation error (invalid parameters, types).
  • 401 unauthorized — missing or invalid JWT; invalid WMID in the token.
  • 403 access_denied — insufficient rights (scope) or access is denied by a business rule (e.g. blacklist).
  • 404 not_found — the object was not found or its state is not suitable for the operation.
  • 409 conflict — business conflict (already exists/already blocked/insufficient funds, etc.).
  • 429 too_many_requests — the request rate limit has been exceeded.
  • 500 server_error — internal server error or unavailability of external services.

Rate Limiting

When the rate limit requests is exceeded, the server returns *429 too_many_requests and a description.
It is recommended to implement exponential repetition (retry with backoff).

Rights (scope) of the token

Scope Purpose
trust_limits Access to list of credit lines
propose_limit Creating a new trust limit
revoke_limit Revoking (closing) a trust limit
loan_requests getting a list of loan applications
block_borrower Blocking/unblocking a borrower
user_activity Credit rating (participant activity)
loans List of issued loans
loan_details Viewing a particular loan details
loans_by_borrower List of issued loans by borrower
loan_repay Loan repayment operation

List of interfaces

  1. List of credit lines (GET /api/v2/creditlines)
  2. Offer a trust limit (POST /api/v2/creditlines/propose)
  3. Revocation a trust limit (POST /api/v2/creditlines/close)
  4. Getting a list of loan applications (POST /api/v2/tenders/money)
  5. Blocking a borrower (POST /api/v2/borrowers/block)
  6. Credit rating (GET /api/v2/creditrating/{wmid})
  7. List of issued loans (GET /api/v2/loans ...)"
  8. List of issued loans by borrower (GET /api/v2/loans/borrowers/{wmid})
  9. Viewing a particular loan details (GET /api/v2/loans/{id})
  10. Initiation of repayment of an issued loan (POST /api/v2/loans/{id}/repay)