{ "info": { "_postman_id": "a1b2c3d4-e5f6-7890-abcd-ef1234567890", "name": "Versell - Pix API v1.0", "description": "Coleção completa da API Versell para operações Pix.\n\n## Módulos\n- **CASH IN**: Recebimento via Pix (QR Code, cobranças, webhooks, reembolsos)\n- **CASH OUT**: Envio via Pix (transferências por chave, QR Code, saldo, webhooks)\n\n## URLs Base\n- API de Contas: https://pagamentos.basspago.com.br\n- API de QR Codes (Pix): https://api.pix.basspago.com.br\n- Finance (Webhook Receiver): https://finance.versell.com.br\n\n## Autenticação\nOAuth2 com client_credentials + certificado mTLS.\nTokens expiram em 300s (5 min). Limite: 10 requests/min no endpoint de token.\n\n## Como usar\n1. Configure as variáveis client_id e client_secret na aba Variables\n2. Configure o certificado mTLS nas Settings do Postman\n3. Execute primeiro o request Get Access Token do módulo desejado\n4. O token será salvo automaticamente na variável correspondente", "schema": "https://schema.getpostman.com/json/collection/v2.1.0/collection.json" }, "variable": [ { "key": "pix_base_url", "value": "https://api.pix.basspago.com.br", "type": "string" }, { "key": "accounts_base_url", "value": "https://pagamentos.basspago.com.br", "type": "string" }, { "key": "finance_base_url", "value": "https://finance.versell.com.br", "type": "string" }, { "key": "client_id", "value": "SEU_CLIENT_ID", "type": "string" }, { "key": "client_secret", "value": "SEU_CLIENT_SECRET", "type": "string" }, { "key": "cashin_access_token", "value": "", "type": "string" }, { "key": "cashout_access_token", "value": "", "type": "string" }, { "key": "txid", "value": "SEU_TXID", "type": "string" }, { "key": "chave_pix", "value": "SUA_CHAVE_PIX", "type": "string" }, { "key": "e2eid", "value": "SEU_E2EID", "type": "string" }, { "key": "devolucao_id", "value": "SEU_DEVOLUCAO_ID", "type": "string" }, { "key": "idempotency_key", "value": "SEU_IDEMPOTENCY_KEY", "type": "string" } ], "item": [ { "name": "CASH IN", "description": "Endpoints para recebimento de Pix.\nBase URL: {{pix_base_url}}", "item": [ { "name": "1. Get Access Token (Cash In)", "event": [ { "listen": "test", "script": { "exec": [ "if (pm.response.code === 200) {", " var jsonData = pm.response.json();", " pm.collectionVariables.set('cashin_access_token', jsonData.access_token);", " console.log('Cash In Token salvo! Expira em ' + jsonData.expires_in + 's');", "}" ], "type": "text/javascript" } } ], "request": { "method": "POST", "header": [ { "key": "Content-Type", "value": "application/x-www-form-urlencoded" } ], "body": { "mode": "urlencoded", "urlencoded": [ { "key": "client_id", "value": "{{client_id}}", "type": "text" }, { "key": "client_secret", "value": "{{client_secret}}", "type": "text" }, { "key": "grant_type", "value": "client_credentials", "type": "text" } ] }, "url": { "raw": "{{pix_base_url}}/oauth/token", "host": ["{{pix_base_url}}"], "path": ["oauth", "token"] }, "description": "Obtém o access token para operações de Cash In.\nLimite: 10 requests/min. Token expira em 300s. Requer mTLS.\nO token é salvo automaticamente na variável cashin_access_token." }, "response": [ { "name": "200 - Success", "status": "OK", "code": 200, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"access_token\": \"eyJhbGciOi...\",\n \"expires_in\": 300,\n \"refresh_expires_in\": 0,\n \"token_type\": \"Bearer\",\n \"not-before-policy\": 1680810673,\n \"scope\": \"profile email qrcodes\"\n}" } ] }, { "name": "2. Create QR Code (Cobrança)", "request": { "method": "POST", "header": [ { "key": "Content-Type", "value": "application/json" }, { "key": "Authorization", "value": "Bearer {{cashin_access_token}}" } ], "body": { "mode": "raw", "raw": "{\n \"calendario\": {\n \"expiracao\": 3600\n },\n \"devedor\": {\n \"cpf\": \"12345678909\",\n \"nome\": \"Nome do Devedor\"\n },\n \"valor\": {\n \"original\": \"10.00\"\n },\n \"chave\": \"{{chave_pix}}\",\n \"solicitacaoPagador\": \"Descrição do pagamento\",\n \"infoAdicionais\": [\n {\n \"nome\": \"Pedido\",\n \"valor\": \"12345\"\n }\n ]\n}" }, "url": { "raw": "{{pix_base_url}}/cob", "host": ["{{pix_base_url}}"], "path": ["cob"] }, "description": "Cria uma nova cobrança Pix (QR Code dinâmico). O txid é gerado automaticamente pela API." }, "response": [ { "name": "201 - Created", "status": "Created", "code": 201, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"calendario\": {\n \"criacao\": \"2025-01-15T10:00:00.000Z\",\n \"expiracao\": 3600\n },\n \"txid\": \"txid-gerado-automaticamente\",\n \"revisao\": 0,\n \"loc\": {\n \"id\": 1234,\n \"location\": \"api.pix.basspago.com.br/qr/v2/abc123\"\n },\n \"location\": \"api.pix.basspago.com.br/qr/v2/abc123\",\n \"status\": \"ATIVA\",\n \"devedor\": {\n \"cpf\": \"12345678909\",\n \"nome\": \"Nome do Devedor\"\n },\n \"valor\": {\n \"original\": \"10.00\"\n },\n \"chave\": \"sua-chave-pix\",\n \"solicitacaoPagador\": \"Descrição do pagamento\",\n \"infoAdicionais\": [\n {\n \"nome\": \"Pedido\",\n \"valor\": \"12345\"\n }\n ],\n \"pixCopiaECola\": \"00020126580014br.gov.bcb.pix...\"\n}" } ] }, { "name": "3. Update QR Code (Cobrança)", "request": { "method": "PUT", "header": [ { "key": "Content-Type", "value": "application/json" }, { "key": "Authorization", "value": "Bearer {{cashin_access_token}}" } ], "body": { "mode": "raw", "raw": "{\n \"calendario\": {\n \"expiracao\": 7200\n },\n \"valor\": {\n \"original\": \"25.00\"\n },\n \"solicitacaoPagador\": \"Descrição atualizada\"\n}" }, "url": { "raw": "{{pix_base_url}}/cob/{{txid}}", "host": ["{{pix_base_url}}"], "path": ["cob", "{{txid}}"] }, "description": "Atualiza uma cobrança Pix existente usando o txid." }, "response": [ { "name": "200 - Updated", "status": "OK", "code": 200, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"calendario\": {\n \"criacao\": \"2025-01-15T10:00:00.000Z\",\n \"expiracao\": 7200\n },\n \"txid\": \"txid-exemplo-12345\",\n \"revisao\": 1,\n \"loc\": {\n \"id\": 1234,\n \"location\": \"api.pix.basspago.com.br/qr/v2/abc123\"\n },\n \"location\": \"api.pix.basspago.com.br/qr/v2/abc123\",\n \"status\": \"ATIVA\",\n \"valor\": {\n \"original\": \"25.00\"\n },\n \"chave\": \"sua-chave-pix\",\n \"solicitacaoPagador\": \"Descrição atualizada\"\n}" } ] }, { "name": "4. Get QR Code Details", "request": { "method": "GET", "header": [ { "key": "Authorization", "value": "Bearer {{cashin_access_token}}" } ], "url": { "raw": "{{pix_base_url}}/cob/{{txid}}", "host": ["{{pix_base_url}}"], "path": ["cob", "{{txid}}"] }, "description": "Consulta os detalhes de uma cobrança usando o txid." }, "response": [ { "name": "200 - Success", "status": "OK", "code": 200, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"calendario\": {\n \"criacao\": \"2025-01-15T10:00:00.000Z\",\n \"expiracao\": 3600\n },\n \"txid\": \"txid-exemplo-12345\",\n \"revisao\": 0,\n \"loc\": {\n \"id\": 1234,\n \"location\": \"api.pix.basspago.com.br/qr/v2/abc123\"\n },\n \"location\": \"api.pix.basspago.com.br/qr/v2/abc123\",\n \"status\": \"ATIVA\",\n \"devedor\": {\n \"cpf\": \"12345678909\",\n \"nome\": \"Nome do Devedor\"\n },\n \"valor\": {\n \"original\": \"10.00\"\n },\n \"chave\": \"sua-chave-pix\",\n \"solicitacaoPagador\": \"Descrição do pagamento\",\n \"pixCopiaECola\": \"00020126580014br.gov.bcb.pix...\"\n}" } ] }, { "name": "5. Configure Webhook (Cash In)", "request": { "method": "PUT", "header": [ { "key": "Content-Type", "value": "application/json" }, { "key": "Authorization", "value": "Bearer {{cashin_access_token}}" } ], "body": { "mode": "raw", "raw": "{\n \"uri\": \"{{finance_base_url}}/webhook/pix/cashin\",\n \"enabled\": true,\n \"headers\": {\n \"X-Webhook-Secret\": \"SEU_HEADER_SECRETO\"\n }\n}" }, "url": { "raw": "{{pix_base_url}}/webhook/{{chave_pix}}", "host": ["{{pix_base_url}}"], "path": ["webhook", "{{chave_pix}}"] }, "description": "Configura o webhook para notificações de Pix recebidos. Apenas Pix com txid são notificados. IPs dinâmicos - identifique via header customizado. Webhook aponta para: {{finance_base_url}}" }, "response": [ { "name": "200 - Configured", "status": "OK", "code": 200, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"webhookUrl\": \"https://finance.versell.com.br/webhook/pix/cashin\",\n \"chave\": \"sua-chave-pix\",\n \"criacao\": \"2025-01-15T10:00:00.000Z\"\n}" } ] }, { "name": "6. Request for Refund (Devolução)", "request": { "method": "PUT", "header": [ { "key": "Content-Type", "value": "application/json" }, { "key": "Authorization", "value": "Bearer {{cashin_access_token}}" } ], "body": { "mode": "raw", "raw": "{\n \"valor\": \"10.00\",\n \"natureza\": \"ORIGINAL\",\n \"descricao\": \"Devolução solicitada pelo cliente\"\n}" }, "url": { "raw": "{{pix_base_url}}/pix/{{e2eid}}/devolucao/{{devolucao_id}}", "host": ["{{pix_base_url}}"], "path": ["pix", "{{e2eid}}", "devolucao", "{{devolucao_id}}"] }, "description": "Solicita devolução de um Pix recebido usando o E2EID e o ID de devolução. Motivo PACS.004: MD06 ou SL02." }, "response": [ { "name": "200 - Refund Requested", "status": "OK", "code": 200, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"id\": \"devolucao-id-12345\",\n \"rtrId\": \"D12345678202301011234abcdef12345\",\n \"valor\": \"10.00\",\n \"natureza\": \"ORIGINAL\",\n \"descricao\": \"Devolução solicitada pelo cliente\",\n \"horario\": {\n \"solicitacao\": \"2025-01-15T10:30:00.000Z\"\n },\n \"status\": \"EM_PROCESSAMENTO\"\n}" } ] } ] }, { "name": "CASH OUT", "description": "Endpoints para envio de Pix.\nBase URL: {{accounts_base_url}}", "item": [ { "name": "1. Get Access Token (Cash Out)", "event": [ { "listen": "test", "script": { "exec": [ "if (pm.response.code === 200) {", " var jsonData = pm.response.json();", " pm.collectionVariables.set('cashout_access_token', jsonData.access_token);", " console.log('Cash Out Token salvo! Expira em ' + jsonData.expires_in + 's');", "}" ], "type": "text/javascript" } } ], "request": { "method": "POST", "header": [ { "key": "Content-Type", "value": "application/x-www-form-urlencoded" } ], "body": { "mode": "urlencoded", "urlencoded": [ { "key": "client_id", "value": "{{client_id}}", "type": "text" }, { "key": "client_secret", "value": "{{client_secret}}", "type": "text" }, { "key": "grant_type", "value": "client_credentials", "type": "text" } ] }, "url": { "raw": "{{accounts_base_url}}/oauth/token", "host": ["{{accounts_base_url}}"], "path": ["oauth", "token"] }, "description": "Obtém o access token para operações de Cash Out.\nLimite: 10 requests/min. Token expira em 300s. Requer mTLS.\nO token é salvo automaticamente na variável cashout_access_token." }, "response": [ { "name": "200 - Success", "status": "OK", "code": 200, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"access_token\": \"eyJhbGciOi...\",\n \"expires_in\": 300,\n \"refresh_expires_in\": 0,\n \"token_type\": \"Bearer\",\n \"not-before-policy\": 1680810673,\n \"scope\": \"profile email qrcodes\"\n}" } ] }, { "name": "2. Get Account Balance (Saldo)", "request": { "method": "GET", "header": [ { "key": "Authorization", "value": "Bearer {{cashout_access_token}}" } ], "url": { "raw": "{{accounts_base_url}}/api/v2/accounts/balances/", "host": ["{{accounts_base_url}}"], "path": ["api", "v2", "accounts", "balances", ""] }, "description": "Consulta o saldo disponível da sua conta." }, "response": [ { "name": "200 - Success", "status": "OK", "code": 200, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"available\": 150000,\n \"blocked\": 5000,\n \"total\": 155000,\n \"currency\": \"BRL\"\n}" } ] }, { "name": "3. Transfer by Pix Key (Enviar Pix)", "request": { "method": "POST", "header": [ { "key": "Content-Type", "value": "application/json" }, { "key": "Authorization", "value": "Bearer {{cashout_access_token}}" } ], "body": { "mode": "raw", "raw": "{\n \"amount\": 1000,\n \"description\": \"Pagamento via Pix\",\n \"pixKey\": \"email@exemplo.com\",\n \"pixKeyType\": \"EMAIL\",\n \"idempotencyKey\": \"{{idempotency_key}}\"\n}" }, "url": { "raw": "{{accounts_base_url}}/api/v2/pix/payments/dict", "host": ["{{accounts_base_url}}"], "path": ["api", "v2", "pix", "payments", "dict"] }, "description": "Envia um Pix usando uma chave Pix.\nTipos aceitos: CPF, CNPJ, EMAIL, PHONE, EVP (chave aleatória).\nCampo amount em centavos (1000 = R$ 10,00)." }, "response": [ { "name": "201 - Created", "status": "Created", "code": 201, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"id\": \"pay-uuid-12345\",\n \"idempotencyKey\": \"key-exemplo-12345\",\n \"amount\": 1000,\n \"description\": \"Pagamento via Pix\",\n \"pixKey\": \"email@exemplo.com\",\n \"pixKeyType\": \"EMAIL\",\n \"status\": \"PROCESSING\",\n \"createdAt\": \"2025-01-15T10:30:00.000Z\"\n}" } ] }, { "name": "4. Get Transfer Details", "request": { "method": "GET", "header": [ { "key": "Authorization", "value": "Bearer {{cashout_access_token}}" } ], "url": { "raw": "{{accounts_base_url}}/api/v2/pix/payments/idempotencyKey/{{idempotency_key}}", "host": ["{{accounts_base_url}}"], "path": ["api", "v2", "pix", "payments", "idempotencyKey", "{{idempotency_key}}"] }, "description": "Consulta os detalhes de uma transferência Pix usando a idempotencyKey." }, "response": [ { "name": "200 - Success", "status": "OK", "code": 200, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"id\": \"pay-uuid-12345\",\n \"idempotencyKey\": \"key-exemplo-12345\",\n \"amount\": 1000,\n \"description\": \"Pagamento via Pix\",\n \"pixKey\": \"email@exemplo.com\",\n \"pixKeyType\": \"EMAIL\",\n \"status\": \"SETTLED\",\n \"endToEndId\": \"E12345678202301011234abcdef12345\",\n \"createdAt\": \"2025-01-15T10:30:00.000Z\",\n \"settledAt\": \"2025-01-15T10:30:05.000Z\",\n \"recipient\": {\n \"name\": \"Nome do Destinatário\",\n \"document\": \"***456789**\",\n \"bankName\": \"Banco Exemplo\"\n }\n}" } ] }, { "name": "5. Initiate Payment by QR Code", "request": { "method": "POST", "header": [ { "key": "Content-Type", "value": "application/json" }, { "key": "Authorization", "value": "Bearer {{cashout_access_token}}" } ], "body": { "mode": "raw", "raw": "{\n \"qrCode\": \"COLE_O_PAYLOAD_DO_QR_CODE_AQUI\",\n \"amount\": 1000,\n \"description\": \"Pagamento via QR Code\",\n \"idempotencyKey\": \"{{idempotency_key}}\"\n}" }, "url": { "raw": "{{accounts_base_url}}/api/v2/pix/payments/qrc", "host": ["{{accounts_base_url}}"], "path": ["api", "v2", "pix", "payments", "qrc"] }, "description": "Inicia um pagamento Pix via QR Code.\nCampo amount em centavos (1000 = R$ 10,00)." }, "response": [ { "name": "201 - Created", "status": "Created", "code": 201, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"id\": \"pay-uuid-67890\",\n \"idempotencyKey\": \"key-exemplo-67890\",\n \"amount\": 1000,\n \"description\": \"Pagamento via QR Code\",\n \"status\": \"PROCESSING\",\n \"createdAt\": \"2025-01-15T10:30:00.000Z\"\n}" } ] }, { "name": "6. Configure Webhook (Cash Out)", "request": { "method": "POST", "header": [ { "key": "Content-Type", "value": "application/json" }, { "key": "Authorization", "value": "Bearer {{cashout_access_token}}" } ], "body": { "mode": "raw", "raw": "{\n \"uri\": \"{{finance_base_url}}/webhook/pix/cashout\",\n \"enabled\": true,\n \"headers\": {\n \"X-Webhook-Secret\": \"SEU_HEADER_SECRETO\"\n }\n}" }, "url": { "raw": "{{accounts_base_url}}/api/v2/webhooks/transfer", "host": ["{{accounts_base_url}}"], "path": ["api", "v2", "webhooks", "transfer"] }, "description": "Configura webhook para notificações de Cash Out (transferências liquidadas ou canceladas). Webhook aponta para: {{finance_base_url}}" }, "response": [ { "name": "201 - Created", "status": "Created", "code": 201, "header": [ { "key": "Content-Type", "value": "application/json" } ], "body": "{\n \"id\": \"webhook-uuid-12345\",\n \"uri\": \"https://finance.versell.com.br/webhook/pix/cashout\",\n \"enabled\": true,\n \"events\": [\"TRANSFER_SETTLED\", \"TRANSFER_CANCELLED\"],\n \"createdAt\": \"2025-01-15T10:00:00.000Z\"\n}" } ] } ] }, { "name": "WEBHOOK TEST EXAMPLES", "description": "Exemplos de payloads de webhook para testes locais no seu finance.", "item": [ { "name": "[Test] Webhook Cash In - Pix Recebido", "request": { "method": "POST", "header": [ { "key": "Content-Type", "value": "application/json" }, { "key": "X-Webhook-Secret", "value": "SEU_HEADER_SECRETO" } ], "body": { "mode": "raw", "raw": "{\n \"pix\": [\n {\n \"endToEndId\": \"E12345678202301011234abcdef12345\",\n \"txid\": \"txid-exemplo-12345\",\n \"chave\": \"sua-chave-pix\",\n \"valor\": \"50.00\",\n \"horario\": \"2025-01-15T10:30:00.000Z\",\n \"pagador\": {\n \"cpf\": \"12345678909\",\n \"nome\": \"Nome do Pagador\"\n },\n \"infoPagador\": \"Pagamento referente ao pedido #12345\"\n }\n ]\n}" }, "url": { "raw": "{{finance_base_url}}/webhook/pix/cashin", "host": ["{{finance_base_url}}"], "path": ["webhook", "pix", "cashin"] }, "description": "Simula o payload que a OnlyUp envia quando um Pix é recebido. Use para testar seu receiver." } }, { "name": "[Test] Webhook Cash Out - Transferência Liquidada", "request": { "method": "POST", "header": [ { "key": "Content-Type", "value": "application/json" }, { "key": "X-Webhook-Secret", "value": "SEU_HEADER_SECRETO" } ], "body": { "mode": "raw", "raw": "{\n \"event\": \"TRANSFER_SETTLED\",\n \"data\": {\n \"idempotencyKey\": \"key-exemplo-12345\",\n \"amount\": 1000,\n \"status\": \"SETTLED\",\n \"endToEndId\": \"E12345678202301011234abcdef12345\",\n \"settledAt\": \"2025-01-15T10:35:00.000Z\"\n }\n}" }, "url": { "raw": "{{finance_base_url}}/webhook/pix/cashout", "host": ["{{finance_base_url}}"], "path": ["webhook", "pix", "cashout"] }, "description": "Simula o payload enviado quando uma transferência Cash Out é liquidada. Use para testar seu receiver." } } ] } ] }