webhooks

Fincore API (1.0.0)

Monato is a financial technology company specializing in SPEI transfer services in Mexico. We provide secure, fast, and reliable payment solutions for businesses, enabling seamless bank transfers through our API and platform

Download OpenAPI description
fincore-openapi.json
fincore-openapi.yaml
Languages
Servers
https:/apicore.stg.finch.lat/

webhooks

Webhooks

Get notified about new MONEY_IN events.Webhook

Request

Send MONEY_IN webhook event notification.

Bodyapplication/json

Information about a new Money IN event.

id_msgstring(uuid)
Example: "a7a126e8-fa74-411c-ad2b-b000f277bb0d"
msg_namestring
Example: "MONEY_IN"
msg_datestring(date-time)
Example: "2025-04-02"
bodyobject
application/json
{
  "id_msg": "a7a126e8-fa74-411c-ad2b-b000f277bb0d",
  "msg_name": "MONEY_IN",
  "msg_date": "2025-04-02",
  "body": {
    "id": "1595465866",
    "beneficiary_account": "646180529600044117",
    "beneficiary_name": "John Smith",
    "beneficiary_rfc": "XYZ123456789",
    "payer_account": "137180210044008609",
    "payer_name": "Juan Perez",
    "payer_rfc": "XYZ987654321",
    "payer_institution": "40002",
    "amount": "123.00",
    "transaction_date": "20250402",
    "tracking_key": "50118609TBRNZ00I07219647",
    "payment_concept": "Payment for invoice 4567",
    "numeric_reference": "2504021"
  }
}

Responses

Webhook received successfully

Get notified about Status updates.Webhook

Request

Send Status updates for Money Outs

Bodyapplication/json

Information about new status

id_msgstring(uuid)
Example: "1b3b4567-e89b-12d3-a456-426600174000"
msg_namestring
Example: "STATUS_UPDATE"
msg_datestring(date-time)
Example: "2025-03-05T10:26:01Z"
bodyobject
application/json
{
  "id_msg": "1b3b4567-e89b-12d3-a456-426600174000",
  "msg_name": "STATUS_UPDATE",
  "msg_date": "2025-03-05T10:26:01Z",
  "body": {
    "tracking_key": "20250305FINCH9AAX30000I",
    "status": "LIQUIDATED",
    "update_at": "2025-03-05T10:26:01.161000"
  }
}

Retrieve client credentials

Request

Returns a list of credentials associated with a specific client.

Path
clientIdstring(uuid)required

The unique identifier of the client.

Example: c2d1d1e3-3340-4170-980e-e9269bbbc551
curl -i -X GET \
  https:/apicore.stg.finch.lat/v1/clients/c2d1d1e3-3340-4170-980e-e9269bbbc551/credentials \
  -H 'x-api-key: YOUR_API_KEY_HERE'

Responses

A list of client credentials.

Bodyapplication/json
dataArray of objects(Credential)
Response
application/json
{
  "data": [
    { … }
  ]
}

Create authentication token

Request

Generates an authentication credential token for a private account.

Path
clientIdstringrequired

Unique identifier for the client.

Bodyapplication/jsonrequired
client_idstringrequired
Example: "c2d1d1e3-3340-4170-980e-e9269bbbc551"
client_secretstringrequired
Example: "your_client_secret_here"
curl -i -X POST \
  'https:/apicore.stg.finch.lat/v1/clients/{clientId}/auth/credential-tokens' \
  -H 'Content-Type: application/json' \
  -H 'x-api-key: YOUR_API_KEY_HERE' \
  -d '{
    "client_id": "c2d1d1e3-3340-4170-980e-e9269bbbc551",
    "client_secret": "your_client_secret_here"
  }'

Responses

Successfully created credential token.

Bodyapplication/json
idstring(uuid)
Example: "1307f4e3-3960-4b98-9a14-0b6839245cc9"
client_idstring(uuid)
Example: "c2d1d1e3-3340-4170-980e-e9269bbbc551"
client_credential_idstring(uuid)
Example: "e981c6d8-4d49-45f2-a7ee-f956dca15500"
tokenstring

JWT authentication token

Example: "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjbGllbnRfaWQiOiJjMmQxZDFlMy0zMzQwLTQxNzAtOTgwZS1lOTI2OWJiYmM1NTEiLCJleHAiOjE3NDEyODE0MTl9.ziSqMClLqwUVfyM15bqUF_7-PINY0ZiWkH01s8pO3gA"
statusstring
Enum"ACTIVE""INACTIVE"
Example: "ACTIVE"
expires_atstring(date-time)
Example: "2025-03-06 11:16:59.491631"
created_atstring(date-time)
Example: "2025-03-05 11:16:59.488685-06:00"
updated_atstring(date-time)
Example: "2025-03-05 11:16:59.488685-06:00"
deleted_atstring or null
Example: "None"
Response
application/json
{
  "id": "1307f4e3-3960-4b98-9a14-0b6839245cc9",
  "client_id": "c2d1d1e3-3340-4170-980e-e9269bbbc551",
  "client_credential_id": "e981c6d8-4d49-45f2-a7ee-f956dca15500",
  "token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjbGllbnRfaWQiOiJjMmQxZDFlMy0zMzQwLTQxNzAtOTgwZS1lOTI2OWJiYmM1NTEiLCJleHAiOjE3NDEyODE0MTl9.ziSqMClLqwUVfyM15bqUF_7-PINY0ZiWkH01s8pO3gA",
  "status": "ACTIVE",
  "expires_at": "2025-03-06 11:16:59.491631",
  "created_at": "2025-03-05 11:16:59.488685-06:00",
  "updated_at": "2025-03-05 11:16:59.488685-06:00",
  "deleted_at": "None"
}

Retrieve accounts for a client

Request

Returns a paginated list of accounts for the specified client.

Path
clientIdstringrequired

Unique identifier of the client

curl -i -X GET \
  'https:/apicore.stg.finch.lat/v1/clients/{clientId}/accounts' \
  -H 'Authorization: Bearer <YOUR_JWT_HERE>'

Responses

Successful response with account details

Bodyapplication/json
currentPageinteger
Example: 1
perPageinteger
Example: 50
totalIteminteger
Example: 1
dataArray of objects(Account)
Response
application/json
{
  "currentPage": 1,
  "perPage": 50,
  "totalItem": 1,
  "data": [
    { … }
  ]
}

Create a private account

Request

Endpoint to create a private account for a client.

Path
clientIdstring(uuid)required

Unique identifier of the client.

Example: 4bf92b25-f457-447d-bfb5-a185e9ffe3e3
Bodyapplication/jsonrequired
bank_idstring(uuid)required
Example: "d90bde89-d3b9-476b-9ce4-6d5633966011"
owner_idstring(uuid)required
Example: "4bf92b25-f457-447d-bfb5-a185e9ffe3e3"
client_bank_adapter_idstring(uuid)required
Example: "4bb0d00c-ce4a-4b65-9848-fa973ae785b3"
client_idstring(uuid)required
Example: "4bf92b25-f457-447d-bfb5-a185e9ffe3e3"
account_idstring(uuid)required
Example: "9df37c0a-ef5a-4e95-a5f9-cc0103e2edb6"
curl -i -X POST \
  https:/apicore.stg.finch.lat/v1/clients/4bf92b25-f457-447d-bfb5-a185e9ffe3e3/private_accounts \
  -H 'Authorization: Bearer <YOUR_JWT_HERE>' \
  -H 'Content-Type: application/json' \
  -d '{
    "bank_id": "d90bde89-d3b9-476b-9ce4-6d5633966011",
    "owner_id": "4bf92b25-f457-447d-bfb5-a185e9ffe3e3",
    "client_bank_adapter_id": "4bb0d00c-ce4a-4b65-9848-fa973ae785b3",
    "client_id": "4bf92b25-f457-447d-bfb5-a185e9ffe3e3",
    "account_id": "9df37c0a-ef5a-4e95-a5f9-cc0103e2edb6"
  }'

Responses

Private account created successfully.

Bodyapplication/json
idstring(uuid)
Example: "4c3093a6-2e6c-4637-8d58-f27d5f639176"
bankIdstring(uuid)
Example: "d3435bd9-998d-4e8a-9067-6b71d5fd3ac7"
clientIdstring(uuid)
Example: "c2d1d1e3-3340-4170-980e-e9269bbbc551"
clientBankAdapterIdstring(uuid)
Example: "b7b89b2a-161a-46df-9d60-a60e26aea4d9"
accountIdstring(uuid)
Example: "1934444f-d0bb-4bb4-94d9-b13bc7c487d1"
instrumentIdstring(uuid)
Example: "6ad80330-31bc-410c-93e1-3fbbc5401a53"
ownerIdstring(uuid)
Example: "c2d1d1e3-3340-4170-980e-e9269bbbc551"
ownerTypestring
Example: "CLIENT"
accountNumberstring
Example: "999909456345"
clabeNumberstring
Example: "646189999909456345"
availableBalancestring
Example: "0.00"
accountTypestring
Example: "PRIVATE_ACCOUNT"
accountStatusstring
Example: "ACTIVE"
auditobject
bankAdapterstring
Example: "STP"
Response
application/json
{
  "id": "4c3093a6-2e6c-4637-8d58-f27d5f639176",
  "bankId": "d3435bd9-998d-4e8a-9067-6b71d5fd3ac7",
  "clientId": "c2d1d1e3-3340-4170-980e-e9269bbbc551",
  "clientBankAdapterId": "b7b89b2a-161a-46df-9d60-a60e26aea4d9",
  "accountId": "1934444f-d0bb-4bb4-94d9-b13bc7c487d1",
  "instrumentId": "6ad80330-31bc-410c-93e1-3fbbc5401a53",
  "ownerId": "c2d1d1e3-3340-4170-980e-e9269bbbc551",
  "ownerType": "CLIENT",
  "accountNumber": "999909456345",
  "clabeNumber": "646189999909456345",
  "availableBalance": "0.00",
  "accountType": "PRIVATE_ACCOUNT",
  "accountStatus": "ACTIVE",
  "audit": {
    "createdAt": "2025-03-05 11:00:56.264527-06:00",
    "updatedAt": "2025-03-05 11:00:56.264527-06:00",
    "deletedAt": "None",
    "blockedAt": "None",
    "activatedAt": "None",
    "suspendedAt": "None"
  },
  "bankAdapter": "STP"
}

Create a new instrument

Request

Path
clientIdstringrequired
Example: c2d1d1e3-3340-4170-980e-e9269bbbc551
Bodyapplication/jsonrequired
bank_idstring
Example: "3054ff18-32a0-478d-b9fe-b5261f9a6e1f"
client_idstring
Example: "c2d1d1e3-3340-4170-980e-e9269bbbc551"
instrument_aliasstring
Example: "Instrumento A"
instrument_typestring
Example: "SENDER_RECEIVER"
rfcstring
Example: "ND"
virtual_clabeobject
curl -i -X POST \
  https:/apicore.stg.finch.lat/v1/owners/c2d1d1e3-3340-4170-980e-e9269bbbc551/instruments \
  -H 'Authorization: Bearer <YOUR_JWT_HERE>' \
  -H 'Content-Type: application/json' \
  -d '{
    "bank_id": "3054ff18-32a0-478d-b9fe-b5261f9a6e1f",
    "client_id": "c2d1d1e3-3340-4170-980e-e9269bbbc551",
    "instrument_alias": "Instrumento A",
    "instrument_type": "SENDER_RECEIVER",
    "rfc": "ND",
    "virtual_clabe": {
      "bank_id": "3054ff18-32a0-478d-b9fe-b5261f9a6e1f",
      "account_number": "",
      "clabe_number": "646180000000001801",
      "holder_name": "John Smith"
    }
  }'

Responses

Successful creation of private account

Bodyapplication/json
idstring
Example: "d3fdb481-2058-46c8-807d-4eaf866ae1ec"
bankIdstring
Example: "3054ff18-32a0-478d-b9fe-b5261f9a6e1f"
clientIdstring
Example: "c2d1d1e3-3340-4170-980e-e9269bbbc551"
ownerIdstring
Example: "c2d1d1e3-3340-4170-980e-e9269bbbc551"
instrumentAliasstring
Example: "Instrumento A"
instrumentStatusstring
Example: "ACTIVE"
instrumentTypestring
Example: "SENDER_RECEIVER"
instrumentDetailobject
auditobject
rfcstring
Example: "ND"
Response
application/json
{
  "id": "d3fdb481-2058-46c8-807d-4eaf866ae1ec",
  "bankId": "3054ff18-32a0-478d-b9fe-b5261f9a6e1f",
  "clientId": "c2d1d1e3-3340-4170-980e-e9269bbbc551",
  "ownerId": "c2d1d1e3-3340-4170-980e-e9269bbbc551",
  "instrumentAlias": "Instrumento A",
  "instrumentStatus": "ACTIVE",
  "instrumentType": "SENDER_RECEIVER",
  "instrumentDetail": {
    "accountNumber": "None",
    "clabeNumber": "646180000000001801",
    "holderName": "John Smith"
  },
  "audit": {
    "createdAt": "2025-03-05 18:54:04.127190-06:00",
    "updatedAt": "2025-03-05 18:54:04.127190-06:00",
    "deletedAt": "None",
    "blockedAt": "None"
  },
  "rfc": "ND"
}

Create a money out transaction

Request

Bodyapplication/jsonrequired
client_idstring(uuid)
Example: "c2d1d1e3-3340-4170-980e-e9269bbbc551"
source_instrument_idstring(uuid)
Example: "b5a3e093-4b78-45b8-9be0-dec8b1bff5a1"
destination_instrument_idstring(uuid)
Example: "d3fdb481-2058-46c8-807d-4eaf866ae1ec"
transaction_requestobject
curl -i -X POST \
  https:/apicore.stg.finch.lat/v1/transactions/money_out \
  -H 'Authorization: Bearer <YOUR_JWT_HERE>' \
  -H 'Content-Type: application/json' \
  -d '{
    "client_id": "c2d1d1e3-3340-4170-980e-e9269bbbc551",
    "source_instrument_id": "b5a3e093-4b78-45b8-9be0-dec8b1bff5a1",
    "destination_instrument_id": "d3fdb481-2058-46c8-807d-4eaf866ae1ec",
    "transaction_request": {
      "external_reference": "1234567",
      "description": "lorem ipsum dolor sit amet",
      "amount": "1.95",
      "currency": "MXN"
    }
  }'

Responses

Successfully created transaction

Bodyapplication/json
idstring(uuid)
Example: "16811ee8-1ef9-4dd4-8d84-9c2df89cf302"
bankIdstring(uuid)
Example: "d3435bd9-998d-4e8a-9067-6b71d5fd3ac7"
clientIdstring(uuid)
Example: "c2d1d1e3-3340-4170-980e-e9269bbbc551"
externalReferencestring
Example: "1234567"
trackingIdstring
Example: "20250306FINCHVLIKQ5SKUM"
descriptionstring
Example: "lorem ipsum dolor sit amet"
amountstring
Example: "1.95"
currencystring
Example: "MXN"
categorystring
Example: "DEBIT_TRANS"
subCategorystring
Example: "SPEI_DEBIT"
transactionStatusstring
Example: "INITIALIZED"
auditobject
Response
application/json
{
  "id": "16811ee8-1ef9-4dd4-8d84-9c2df89cf302",
  "bankId": "d3435bd9-998d-4e8a-9067-6b71d5fd3ac7",
  "clientId": "c2d1d1e3-3340-4170-980e-e9269bbbc551",
  "externalReference": "1234567",
  "trackingId": "20250306FINCHVLIKQ5SKUM",
  "description": "lorem ipsum dolor sit amet",
  "amount": "1.95",
  "currency": "MXN",
  "category": "DEBIT_TRANS",
  "subCategory": "SPEI_DEBIT",
  "transactionStatus": "INITIALIZED",
  "audit": {
    "createdAt": "2025-03-06 11:57:55.408000-06:00",
    "updatedAt": "2025-03-06 11:57:55.408000-06:00",
    "deletedAt": "None",
    "blockedAt": "None"
  }
}

Register a webhook

Request

Endpoint to register a new url where to receive webhooks.

Bodyapplication/jsonrequired
client_idstringrequired
Example: "{{clientId}}"
urlstring(uri)required
Example: "https://example.com/webhook"
tokenstringrequired
Example: "secretToken0123"
webhook_typestringrequired
Enum"MONEY_IN""STATUS_UPDATE"
Example: "MONEY_IN"
curl -i -X POST \
  https:/apicore.stg.finch.lat/v1/webhooks \
  -H 'Content-Type: application/json' \
  -d '{
    "client_id": "{{clientId}}",
    "url": "https://example.com/webhook",
    "token": "secretToken0123",
    "webhook_type": "MONEY_IN"
  }'

Responses

Webhook successfully created

Bodyapplication/json
idstring
Example: "29806117-2b15-4682-87f0-350e6695fe91"
clientIdstring
Example: "c2d1d1e3-3340-4170-980e-e9269bbbc551"
urlstring
Example: "https://example.com/webhook"
tokenstring
Example: "secretToken0123"
webhookTypestring
Example: "MONEY_IN"
webhookStatusstring
Example: "ACTIVE"
createdAtstring(date-time)
Example: "2025-04-03 13:40:54.056794-06:00"
updatedAtstring(date-time)
Example: "2025-04-03 13:40:54.056794-06:00"
deletedAtstring or null
Example: "None"
blockedAtstring or null
Example: "None"
deletedBystring or null
Example: "None"
blockedBystring or null
Example: "None"
Response
application/json
{
  "id": "29806117-2b15-4682-87f0-350e6695fe91",
  "clientId": "c2d1d1e3-3340-4170-980e-e9269bbbc551",
  "url": "https://example.com/webhook",
  "token": "secretToken0123",
  "webhookType": "MONEY_IN",
  "webhookStatus": "ACTIVE",
  "createdAt": "2025-04-03 13:40:54.056794-06:00",
  "updatedAt": "2025-04-03 13:40:54.056794-06:00",
  "deletedAt": "None",
  "blockedAt": "None",
  "deletedBy": "None",
  "blockedBy": "None"
}
2025 by Monato. All rights reserved.