REST · HMAC · SSE · OPENAPI 3.1

An API built for engineers.

Official SDKs in six languages, an unlimited sandbox and HMAC-SHA256-signed webhooks. Under the hood, Solana and Sui run on our gRPC node backbone for ultra-fast on-chain dispatch.

Developers

Three lines. One payment.

Official SDKs in JavaScript, TypeScript, Python, PHP, Go, Rust. REST API everywhere, plus gRPC endpoints for Solana and Sui.

TypeScript first
HMAC-SHA256 signed webhooks
Hosted checkout pages
Embeddable Elements
Unlimited free sandbox
gRPC for low-latency

Read the docs GitHub

api · v1

// npm i @abyxo/node
import Abyxo from "@abyxo/node";

const abyxo = new Abyxo("sk_live_…");

const session = await abyxo.checkout.sessions.create({
  amount: 4990,            // 49,90 €
  currency: "EUR",
  accept: ["BTC", "ETH", "USDC", "SUI"],
  success_url: "https://shop.io/ok",
});

res.redirect(session.url);

# pip install abyxo
import abyxo

abyxo.api_key = "sk_live_…"

session = abyxo.checkout.Session.create(
    amount=4990,            # 49,90 €
    currency="EUR",
    accept=["BTC", "ETH", "USDC", "SUI"],
    success_url="https://shop.io/ok",
)

return redirect(session.url)

// go get github.com/abyxo/abyxo-go
package main

import (
    "github.com/abyxo/abyxo-go"
    "github.com/abyxo/abyxo-go/checkout/session"
)

abyxo.Key = "sk_live_…"

s, _ := session.New(&abyxo.CheckoutSessionParams{
    Amount:     abyxo.Int64(4990),
    Currency:   abyxo.String("EUR"),
    Accept:     []string{"BTC", "ETH", "USDC", "SUI"},
    SuccessURL: abyxo.String("https://shop.io/ok"),
})

http.Redirect(w, r, s.URL, 303)

# 3-line integration
curl https://api.abyxo.app/v1/checkout/sessions \
  -u sk_live_…: \
  -d "amount=4990" \
  -d "currency=EUR" \
  -d "accept[]=BTC" \
  -d "accept[]=ETH" \
  -d "accept[]=USDC" \
  -d "accept[]=SUI" \
  -d "success_url=https://shop.io/ok"

Documentation

Everything you need.

OpenAPI 3.1 spec, Postman collection, copy-paste examples in six languages, and the gRPC endpoint documented in Protobuf.

Webhooks · HMAC-SHA256

Server-side validation.

Compute an HMAC-SHA256 over the raw body using your webhook secret, then constant-time compare with the Abyxo-Signature header.

// Express.js — HMAC validation
import crypto from "node:crypto";

app.post("/webhook", express.raw({ type: "*/*" }), (req, res) => {
  const sig = req.headers["abyxo-signature"];
  if (typeof sig !== "string") return res.status(401).end();

  const expected = crypto
    .createHmac("sha256", process.env.ABYXO_WHSEC)
    .update(req.body)
    .digest("hex");

  const a = Buffer.from(sig, "hex");
  const b = Buffer.from(expected, "hex");
  if (a.length !== b.length || !crypto.timingSafeEqual(a, b)) {
    return res.status(401).end();
  }
  // + replay-check via Abyxo-Timestamp

  const event = JSON.parse(req.body.toString("utf8"));
  if (event.type === "checkout.completed") {
    // Fulfill the order
  }
  res.json({ ok: true });
});

Changelog

Recent releases.

Ready to collect crypto ?

Create your account in 60 seconds. Unlimited free trial, no card required.

Start for free Book a demo