Aera Wallets API

• 📔 DOCUMENTATION: New Response code and added some missing descriptions/examples added:
  • 68513 = Invalid CVD signature.
• ⚙️ FEATURE: New full hybrid payment flow, where full amount no longer has to be covered in full by a firm funding source.
• ⚙️ FEATURE: Added support for multiple firm funding sources in the same transaction (in preparations for Bancontact).
• 🐛 BUGFIX: Onboarding the same payment instrument multiple times to the same wallet (which should only result in override of existing information about that payment instrument) caused a broken state for the payment instrument priority. This could be seen as a "Duplicate key error" and cause errors during opening the wallet dashboard, as well as during transactions.
• 🐛 BUGFIX: Now sending currency on all sub-transactions/payment instruments listed in transactionDetails in Merchant callback.
• 🐛 BUGFIX: Not sending payment instruments with status AUTHORIZATION_PENDING In merchant callback. Neither when transactions fail, nor when success. All payment instruments should have reached a "final state" before sending callback to merchant/ECR.
• 🐛 BUGFIX: For full hybrid payment, now showing correct amount on firm funding source in transactionDetails when amount is reallocated from voucher to firm funding source in merchant callback.
• 🔒SECURITY: Internal security patches.

Wallets SDK

• Merchant Specific preferences
  • App language supported
• Aera Secure ID
  • Aera Secure ID SDK is updated, remember to update. Small updates to code as well
• Success and Error types:
  • Removed standard flow related Success types: userCancelledAuthentication, userCancelledOnboarding, userClosedWallet and userClosedPaymentDialog.
  • Removed Standard flow related errros:
    • errors WEBVIEW_ERROR(68002) SESSION_EXPIRED_ERROR(68004)
  • Removed unused error after new Hybrid payment flow:
    • NETWORK_INVALID_REDIRECT_URI(68306)
  • Added new error
    • INVALID_FORMAT_ERROR(68008).
  • Changed code for INVALID_REDIRECT_URI(68306).

⚠️ SID SDK Update: Please update Aera Secure ID SDK included in the Wallets SDK delivery. Secure ID updated with new design, error handling improved

SID SDK iOS Version: v2.000 SID SDK Android Version: v2.0TE

See SDK version log for technical details

Aera Wallets API

• New Response codes
• Extend PSP -> WLW apis to support new/updated fields (amountDetails and transactionDetails) for the following functionality (see updated Aera PSP API documentation):
  • Get transaction status (ECR -> PSP)
  • Merchant callback (PSP -> ECR)

• ❗️

  Temporary reduced wait time before WSP events are sent (60s -> 10s). Will be reset to 60s later this year.

• Bugfix:
  • Empty string for redirect_uri from DPA will cause a bad request exception (HTTP status 400) and in turn a controlled error from the Wallets SDK.
  • Sending Merchant callback even in error scenarios.

Internal changes (not effecting WSP)

• Internal security patches.
• Implemented stability for API calls to internal Aera services and balance checks.

Aera Wallets API

New features

• New Wallet Management API endpoint for creating session that can be used for initiating onboarding of a payment instrument: Create payment instrument session.
  • This endpoint introduces a new "concept": paymentInstrumentType. Read more about "Participating Payment System VS Payment Instrument Type" here.
  • This endpoint also introduces a new WLW Response code 68708.
• DPA can now configure a set of allowed redirect URLs.

  • 📘

    Note: This list of URLs has to be communicated to Aera, and Aera will then add them to the DPA configuration in our systems.

• Add support for XTRA acquiring using the Aera PSP.

Aera Wallets SDK

• Prerequisites Updated with Secure ID whitelisting info
• Aera Secure ID New section added for Secure ID deeplinking implementation
• Merchant Specific preferences Config is no longer used for language or theme. System browser pick up consumer device settings automatically.
• SDK Methods
  • Add new param "authRedirectUri" to getOpenWalletUrl and deleteWallet for secure ID deeplinking during onboarding
  • Remove "Config" param for all methods. Theme and language are now picked up by the system browser using SDK method "openURL"
  • Add new SDK method "OpenURL" enabling opening the wallets dashboard via the Wallets SDK implemented system browser (instead of DPA implemented webview)
  • Removed Webview section as it will be deprecated in the future. Webview logic is still available in the SDK.
  • Removed Standard flow section as it will be deprecated in the future. Using "getOpenWalletUrl" and "openURL" instead of "openWallet" is advised.
  • Section "SDK Methods" into Generic and native specific methods instead of partial vs standard flow
  • Change "Partial vs Standard flow" to "Mobile app vs SDK responsibilities" and update description
• Success and error types Updated with BROWSER_CLOSED, URL_NOT_SUPPORTED_ERROR and NETWORK_INVALID_REDIRECT_URI_ERROR
• Definitions
  • Removed "Config" model
  • Update "PaymentData" and "PaymentResult" with proprietaryData. Edit orderId to merchantReference.
  • Add "ProprietaryData" and "ProprietaryDataAttribute" models

See code related changes in the SDK Version Log

Aera Wallets API

WSP API changes

• Added new field (proprietaryData) will be received by the WLW, from the ECR/PSP and passed on the WSP in the Process WLW transaction init request and Process WLW transaction result request requests.

Functional changes to the WLW

• WLW is now integrated to the real Aera PSP.
• If a consumer tries to add the same payment instrument twice to the same wallet, WLW will no longer return an error. It will accept the new information and overwrite the existing payment instrument.

❗️

A re-onboarding for all wallet SDKs is needed for Get Wallet details to work. If not the WSP will receive this response:

Wallet details error response

{
  "responseInfo": {
    "message": "Wallet onboarding expired, new consumer onboarding required to get user info.",
    "responseCode": "68508",
    "cid": "Root=1-69bd9f62-51729bf116c43ca24cf3652d",
    "cidType": "x-amzn-trace-id",
    "timeStamp": "2026-03-20T19:26:27.127Z"
  }
}

Aera Wallets SDK

Aera Wallets API

📘

This release contains no changes to the WLW API specifications.

Aera PSP API docs

We have updated the Aera PSP API documentation.

Other Updates

• General security patches
• Now sending dateOfBirth to XTRA issuing API during onboarding of XTRA payment instruments.

Aera Wallets API

Bugfix:

• Made sure to always populate the field sessionExpirationTime when WLW is calling the WSP endpoint: Process WLW transaction init request

Aera Wallets SDK

Aera Wallets API

• New WSP wallet management endpoints
  • Get Payment Instruments in wallet
  • Delete a payment instrument from a Wallet
• Updated response body for Get Wallet details
• New query parameters for Get Wallet details
  • includeSDKInfo = When set to true this will populate the list sdkIds with the id of all the SDKs associated with this wallet.
  • includeUserInfo = When set to true this will populate the userInfo field.
• Other small improvements
  • No longer require the field identityTrustAnchor on Create Xtra Payment Instrument.
  • Sending WSP events when onboarding an XTRA payment instrument.
  • Expanded the data field within the WSP events for payment instrument onboarding to include:
    • maskedPan
    • nickname
  • Now sending WSP events both when a consumer or WSP delete a single payment instrument from a wallet.

📘

For developers, read API version log for more details.

Aera Wallets SDK

• Android Wallets SDK for iOS is now available for staging! The functionality includes the partial Wallets SDK flow for open wallet and payment. The Wallets SDK documentation has been updated to include iOS specifics, and should be revisited.
• Merchant Specific Preferences: Android and iOS: A Config parameter is now available to send currently selected language from Membership App to the rest of the wallet.

See code related changes in the SDK Version Log

Aera Wallets API

New page for response codes

Response codes

Updated demo PSP headers

Added the following headers, to make the demo PSP even more similar to the actual PSP:

• idempotency-key

❗️

The DemoPSP must be treated as what it is; a demo application. Changes in the API definitions may still be needed to successfully integrate towards the real Aera PSP.

New request body examples for transactions

Request examples

Updated request/response examples in API Reference for each endpoint

• DemoPSP
• DemoWSP
• WspWalletsManagement
• SessionManagement

Duplicate validation

• Consumers will no longer be able to onboard the same MONIZZE account (duplicates) multiple times to the same wallet. The same MONIZZE account can still be onboard to multiple wallets.
• Duplicate XTRA accounts, with the same IBAN can't be onboard to the same wallet. The same XTRA account can still be onboard to multiple wallets.

New Session details endpoint

See Wallet Session Management for more details. You can find the API specifications here.

Aera Wallets SDK

• Success and error types Updated and improved
• WalletCallback now requires success return model as type
• Merchant Specific preferences Branding is now supported by the Wallets Dashboard based on WSP Config. Updated preferences/configurations information.
• Security section improved. Will be updated further for later releases.

New SDK Version 2025.11.00 available Hybrid payment and other improvements from 2025.10.00-2025.11.00 are now available in the Android Wallets SDK. Update the Secure ID SDK as well, distributed together with the Wallets SDK.

See code related changes in the SDK Version Log

Aera Wallet API

WSP Management API

• New endpoint for onboarding XTRA payment instruments

New transaction status

• SIGNED = Consumer has signed transaction and it is no longer possible to cancel the transaction. See Transactions.

Breaking changes

• Explicitly clarifying expectations related to normal handling of Aera Wallet API.

Aera Wallets SDK

• Hybrid payment updates since 2025.10.00:
  • Definitions updated
    • PaymentInstrument: Currency added
    • PaymentData/PaymentResult:
      • TBS/PaymentDataToBeSigned removed. Relevant fields moved up to PaymentData/PaymentResult.
      • OrderId added
      • TransactionType added
    • DPA format/localize/translate responsibilities noted

Aera Wallets API

WLW ➡️ WSP integration changes

• Changed field(s) in Process WLW transaction init request
  • sessionId within the session object was always equal to the field transactionId. To be consistent, we have removed the field transactionId, meaning you should rely on sessionId within the session object.
  • Removed status field.
• Change field Process WLW transaction result request.
  • transactionId ➡️ sessionId
• Change field in Process WLW events:
  • In the data field you have been able to expect a transactionId when receiving transaction events, this field has now changed to sessionId. See example event in WSP Events table.

ECR ➡️ PSP integration changes

• New endpoints that will replace old endpoints:
  • Wallet sale
  • Wallet hybrid sale
  • Get transaction status
  • Cancel transaction

Aera Wallets SDK

• Hybrid payment updates:
  • Methods
    • SignPaymentData in method signPayment is now optional, as instruments can be preselected before payment UI display and consumer approval.
  • Definitions updated
    • PaymentData
    • AmountDetails removed. TransactionDetails added.
    • SignPaymentData
    • New model "PaymentResult" for transaction feedback
    • PaymentInstrument