added

2025-09-11

about 10 hours ago by PAYBIS POLAND Sp. z o.o. Latvia filiale

ℹ️
API /v3/request brings enhanced traceability and security for server-to-server partners while leaving existing widget-based integrations untouched. The centerpiece is the new userIp field, enabling precise client identification and better abuse mitigation.

Key changes

New endpoint

POST /v3/request is now available.
The existing /v2/request endpoint is still supported, so current widget integrations do not need to change.

Required field: userIp

Must be included in every /v3/request body.
Accept the first public IP address if a chain is provided (e.g., from X-Forwarded-For).
Supports both IPv4 and IPv6.

Validation rules

IPv4: validate using an ip2long() equivalent (PHP link provided for reference).
IPv6: validate with the standard IPv6 filter.

Action checklist

✅ Switch server-to-server calls to POST /v3/request.

✅ Always supply a valid public userIp.

✅ Handle the 400 INVALID_USER_IP error in your integration.