Skip to main content
1

Discover our available APIs and endpoints

Go through our API Reference to identify the API(s) and endpoints you will need for your use case.
2

Sign up to the Developer Portal

By signing up to the Developer Portal and creating an app, you’ll be able to get all the authentication credentials you need to access the Sandbox environment (cf. demo below).
Are you interested in seeing how Qonto Embed could supercharge your platform with embedded financial services? Check out our sample app.
If the use case you’re interested in warrants it, our Partnership team will get in touch to support you in the integration and agree on a partnership contract.
3

Set up the Sandbox environment

Before making your first API calls, we strongly recommend you set up the Sandbox environment to play with dummy data and check if the API responses are the expected ones.
In the following steps, if any verification screen is prompted, please fill 123456.
  1. From the Toolkit, click on “Sandbox web app”. sandbox-web-app-login-screen.png
    Please, do not click on “Open an account”.
  2. Log in with the credentials available in the Developer Portal. Developer Portal - Sandbox GUI access
    Please, do not change this password and the preferred language (english) since it’s a shared account.
  3. If the verification screen is prompted, fill 123456.
You have access to Qonto Sandbox web app!
Do I need to create my own user?The user associated to [email protected] is a shared user.If you need privacy concerning your testing data and/or more autonomy, then you should create your own user.
  1. From the Toolkit, click on “Sandbox web app”.
  2. Log in with the credentials available in the Developer Portal. Developer Portal - Sandbox GUI access
  3. For any organization, click on the “User management” tab.
  4. Click on the “Invite team member” button. sandbox-web-app-invite-team-member.png
  5. Create a new user.
  6. If the verification screen is prompted, fill 123456.
  7. From the Toolkit, click on “Mailcatcher”.
  8. Find the email sent to the email address of your new user.
  9. Click on “Accept invitation” in the email and go through the self-onboarding process.
Your new user is activated!N.B. : You don’t need to verify your identity.
Do I need my own organization?The organizations associated to [email protected] are shared organizations.If you need privacy concerning your testing data and/or more autonomy, then you should create your own organization.
  1. Create your own user (cf. previous step).
  2. From the Toolkit, click on “QA tool”.
  3. Click on “Create Organization”.
  4. Fill the following fields: qa-tool-create-organization-form.png
    • Owner : the email address of your new user.
    • Price plan code : choose your plan depending on the functionalities you need to test; indeed, some functionalities are only available for given plans (cf. Qonto pricing for more details).
    • Organization name
    • Balance amount : it will be the amount available in your test bank account, 100000 € will be a good start!
  5. Submit the form. qa-tool-create-organization-success.png
From the Toolkit, click on “Sandbox web app”. Your new organization is created!
4

Make your first API call

To call the Sandbox environment, you should use Sandbox base URLs not Production base URLs.
  1. Fork our Postman collections in your workspace:
  1. Fork our Postman environments in your workspace:
  1. On your workspace, select an environment before making any API call. postman-environment-to-select.png
Your Postman workspace is set up!
You’ll find all the authentication credentials you need in the Developer Portal.
Don’t forget to include the X-Qonto-Staging-Token header in your API calls to the Sandbox environment.
If you need to authenticate through:
  • OAuth 2.0 (customers using sensitive endpoints and partners) 👉 follow those steps;
  • your API Key (customers only) 👉 follow those steps.
5

Build your integration

Not a developer? Use Make or Zapier (no-code tools) to build your integration!
Here are some examples of the Business API most used capabilities:
To do so, you will need to call 2 endpoints:
  1. Retrieve the authenticated organization and list bank accounts
    🔗 EndpointGET https://thirdparty.qonto.com/v2/organization
    🔒 AuthAPI Key or OAuth 2.0 (organization.read scope)
    📲 SCANo
    To learn more about this endpoint, click here.
  2. List transactions
    You will need to specify the idor the iban of the bank account retrieved with the previous API call.
    🔗 EndpointGET https://thirdparty.qonto.com/v2/transactions
    🔒 AuthAPI Key or OAuth 2.0 (organization.read scope)
    📲 SCANo
    To learn more about this endpoint, click here.
Create a SEPA transfer to a trusted beneficiary
This endpoint doesn’t require SCA (Strong Customer Authentication) once the beneficiary is trusted. However, you must verify the SEPA beneficiary before initiating the transfer. A beneficiary can only be trusted through the Qonto app.
Step 1: Verify the SEPA PayeeBefore creating the transfer, you must verify the SEPA beneficiary:
🔗 EndpointPOST https://thirdparty.qonto.com/v2/sepa_payee_verifications
🔒 OAuth scopeOAuth 2.0 only (payment.write scope)
📋 PurposeVerify that the beneficiary’s IBAN and name match
To learn more about this endpoint, click here.Step 2: Create the SEPA TransferOnce the beneficiary is verified, you can initiate the transfer:
🔗 EndpointPOST https://thirdparty.qonto.com/v2/sepa_transfers
🔒 OAuth scopeOAuth 2.0 only (payment.write scope)
📲 SCANo 👉 the SEPA transfer creation will be fully automated.
👤 Beneficiary typeOnly trusted beneficiary; the list of trusted beneficiaries can be retrieved through the List beneficiaries endpoint.
🔢 Number of transfers1
To learn more about this endpoint, click here.
6

Release your integration

All the API operations can be replicated from the Sandbox to the Production environment by following the next steps:
  1. Get your Production credentials through the Developer Portal.
    If you are using the Onboarding API, you will need to sign an ORIAS mandate (France only) and a partnership contract with Qonto in order to release your integration to Production.
  2. Replace your Sandbox credentials by your Production credentials.
    The X-Qonto-Staging-Token header is not necessary in Production.
  3. Replace the endpoints base URL.
If you are a licensed partner, you must identify yourself through your QSeal certificate when calling our Business API endpoints in Production (cf. the requirements); otherwise you will receive a 401 Unauthorized error to your API calls.
Your integration is ready to be released in Production!We would be super grateful if you could take a few minutes to share your feedback regarding our Public APIs: Tell us what you think
7

Publish your integration in our Marketplace (optional)

To publish your app in our Integrations & Partnership section, you need to meet the following requirements:
  1. Your integration should be used at least by 25 beta testers.
  2. Once you meet the first requirement, send us at [email protected]:
    • a video of the functionalities of your integration;
    • credentials so we can login into your product and test your integration.
  3. Once your integration is approved, you will have to provide us with the information you want to display in the integration page.