Making Requests and Authentication

Making Requests

To interact with the Dwolla API, all requests must include the Accept header:

Accept: application/vnd.dwolla.v1.hal+json

For POST requests, specify either of the following Content-Type:

Content-Type: application/vnd.dwolla.v1.hal+json
Content-Type: application/json

All request and response bodies are JSON encoded. Requests must be made over HTTPS. Any non-secure requests will be redirected (HTTP 302) to the HTTPS equivalent URI.

POST https://api.dwolla.com/customers
Content-Type: application/json

Accept: application/vnd.dwolla.v1.hal+json
Authorization: Bearer myOAuthAccessToken123
{
"foo": "bar"
}

... or ...

GET https://api.dwolla.com/accounts/a84222d5-31d2-4290-9a96-089813ef96b3/transfers

Authentication

All requests require either an OAuth access token or a client_id and client_secret in order to authenticate with the API. OAuth access tokens are passed via the Authorization HTTP header: Authorization: Bearer {access_token_here}

API Host

Production: https://api.dwolla.com Sandbox: https://api-sandbox.dwolla.com

Introduction

Resources

Making Requests

Authentication

API Host

Introduction

Resources

​Making Requests

​Authentication

​API Host

Making Requests

Authentication

API Host