PAXSTORE exposes reseller, merchant, terminal and merchant category related APIs for thirdparty system convenience. So that the authorized thirdparty systems can do operations for reseller, merchant, terminal and merchant category without logging into PAXSTORE's admin console. The exposed API is RESTful formatted. PAXSTORE provides this dotnet SDK to simplify the remote invoke.
All the APIs of this SDK will return the object Paxstore.OpenApi.Model.Result.
When using the SDK to call the REST APIs it will do basic validations like required validation and length validation for the inputted parameter(s) before the SDK send the request to remote server. And if the basic validation failed SDK will return the Result object with BusinessCode=-1 and the ValidationErrors.
Below is the structure of class Paxstore.OpenApi.Model.Result
| Property | Type | Description |
|---|---|---|
| BusinessCode | int | The business code, it reprensent the API invoke result. 0 means invoke the API success, if it is -1 means the the parameter length and required validation failed. For other business codes please refer to the message property |
| Message | string | The description of BusinessCode |
| ValidationErrors | IList | Client side validation errors. |
| Data | T(generic) | The actural response content, the structure will be described in each APIs. And for pagination search the search result data will be in another property PageInfo<T> |
| PageInfo | PageInfo<T> | The search result. If the operation is a search operation the data property is null. For the structure of PageInfo please refer to below |
| RateLimit | string(int format) | The maximum number of requests you're permitted to make per 10 minutes. |
| RateLimitRemain | string(int format) | The number of requests remaining in the current rate limit window. |
| RateLimitReset | string(long format) | The time at which the current rate limit window resets in UTC epoch millisecond. |
Structure of PageInfo
| Property | Type | Description |
|---|---|---|
| PageNo | int | current page number |
| Limit | int | page size |
| TotalCount | long | total match record number |
| HasNext | bool | indicate whether there's next page |
| DataSet | IList<T> | data list of current page |
Below figure listed the global business codes, those business codes may appear in every result of API call. This document won't list those business codes in the following API chapters when introducing the APIs.
| Business Code | Message | Description |
|---|---|---|
| 0 | Successful API call. | |
| -4 | Unknow SDK request error! | The message for this error code is not fix, "Unknow SDK request error!" is the default message for this error code, if developer encounter this error code please contact with our support |
| -3 | Connection timeout! | Connection timeout |
| -2 | BaseUrl not correct! | The API BaseUrl may not correct |
| 129 | Authentication failed | |
| 104 | Client key is missing or invalid | |
| 108 | Marketplace is not available | |
| 109 | Marketplace is not active | |
| 105 | External System Integration not enable | |
| 103 | Access token is invalid | |
| 102 | Access token is missing | |
| 101 | Invalid request method | The request method is not correct |
| 113 | Request parameter is missing or invalid | |
| 429 | Too many request | Request number exceed the maximum number in the current rate limit window |
| 997 | Malformed or illegal request | The JSON in request body is not a valid JSON |
| 998 | Bad request | |
| 999 | Unknown error | Unknow error, please contact with support. |
For API requests using apiKey and apiSecret, you can make up to 3000 requests per 10 minutes. Authenticated requests are associated with the apiKey and apiSecret. This means that all thirdparty systems using the same apiKey and apiSecret share the same quota of 3000 requests per 10 minutes.
For unauthenticated requests, the rate limit allows for up to 20 requests per 30 minutes. Unauthenticated requests are associated with the originating IP address.
The returned HTTP headers of any API request show your current rate limit status:
| Header Name | Description |
|---|---|
| X-RateLimit-Limit | The maximum number of requests you're permitted to make per 10 minutes |
| X-RateLimit-Remaining | The number of requests remaining in the current rate limit window |
| X-RateLimit-Reset | The time at which the current rate limit window resets in UTC epoch millisecond |
The above 3 response headers are encapsulated in class of Paxstore.OpenApi.Model.Result.
If you exceed the rate limit, an error response code is 429:
The default value of connect timeout and read timeout is 5000(milliseconds). And the configuration is API level.
Sample of configure connect timeout and read timeout
AppApi API = new AppApi(TestConst.API_BASE_URL, TestConst.API_KEY, TestConst.API_SECRET);
API.SetConnectionTimeoutTime(30000);
API.SetReadWriteTimeoutTime(30000);
If the proxy is not setted, request will go to Paxstore directly. If the server of thirdparty system does not have the abiliti to access Paxstore directly duto security purpose they can use proxy. The proxy configuration is API level. Below is the interface to set proxy.
public void SetProxy(IWebProxy proxy)
Sample codes
ResellerApi API = new ResellerApi(TestConst.API_BASE_URL, TestConst.API_KEY, TestConst.API_SECRET);
IWebProxy proxy = new WebProxy("localhost", 1080);
ICredentials credentials = new NetworkCredential("username", "password");
proxy.Credentials = credentials;
API.SetProxy(proxy);
Note: If the proxy server don't need username and password the credentials is not needed.
If the thirdparty systems want to call the REST APIs they must enable external system access in PAXSTORE admin console for the certain marketplaces and get the access key and access secret.
Below are the step for enabling external system access and get access key and access secret.
Log in to PAXSTORE admin console as Super Admin or Market Admin and click General Setting in left menu.
Click the left tab External System to show the external system configuration page.
From above screenshot we know the external system access is disabled by default. To enable it please click the enable/disable switch. And once user clicked the switch it will pop up a confirm dialog to let user confirm.
Click OK button to continue enabling the external system access. Click the CANCEL button to cancel current operation to keep external system access disabled.
After click OK button the external system access is enabled and the access key is shown in the page. But the access secret is replaced by asterisks for security purpose.
Click the eye icon in external system configuration page to get the access secret.
Please click OK button. And it will show the access secret instead of asterisks.
For security purpose it only allow user to see the access secret one time. When user next time log in the access secret is replaced by asterisks again and no eye icon beside it. If user want to get the access secret again he/she must click the RESET button to get the new access key and access secret.
Please keep the access key and access secret safely. Once the access key or access secret leaks please goto external system configuration page to disable external system access or reset the access key and access secret.
Please refer to https://www.nuget.org/packages/Paxstore.OpenApi/
Log into Admin Center of demo marketplace using marketplace admin account. Enable the 3rd system access for current marketplace and get key and secret.
Base URL of API: https://api.whatspos.com/p-market-api
using Paxstore.OpenApi;
using Paxstore.OpenApi.Model;
using System;
using System.Collections.Generic;
using System.Linq;
using System.Text;
using System.Threading.Tasks;
namespace Paxstore.Test.ApiTest
{
class Sample
{
string BASEURL = "https://api.whatspos.cn/p-market-api/";
string KEY = "YOUR KEY";
string SECRET = "YOUR SECRET";
public Result<PagedReseller> GetResellers()
{
ResellerApi resellerApi = new ResellerApi(BASEURL, KEY, SECRET);
Result<PagedReseller> resellerList = resellerApi.SearchReseller(1, 10, ResellerSearchOrderBy.Name, "reseller", ResellerStatus.Active);
return resellerList;
}
}
}
See the Apache 2.0 license file for details.
Copyright 2018 PAX Computer Technology(Shenzhen) CO., LTD ("PAX")
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at following link.
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.