Product Overview

This feature will notify partners when there is virtual account payment.

There will be cases where the transaction time in the “transactionDateTime” field during notification and get report in the “paymentDate” field has a time difference in the transaction. if you experience this case, the thing that needs to be noted is that the transactionDateTime in  the notification is the time when sending the transaction notification enters the bookkeeping process. 

Service users are required to reconcile every day, especially for checking anomaious transactions.

For reconcillation, you can use the following options :

1. Using the Get Report Date BRIVA API

2. Using the Get Report Time BRIVA API 

3. Using the Mutation Info API v2.0

4. Using MT940 H+1

Flow API

Endpoint Description

This feature will notify partners when there is a virtual accounts payment. This notification does not contain a process to retry when it fails to flag, so we recommend that you continue to validate get reports for transactions that have been completed

paid but not getting notifications To use this feature, partners must provide an endpoint url to receive notifications from BRI, with the following specifications: following:

General Information

Header Structure

Request Structure

Response Structure

Request & Response Payload Sample

Request

{
   "brivaNo":"8888001256798654",
   "billAmount":"22000",
   "transactionDateTime":"20201005102753",
   "journalSeq":"2027912345671234567",
   “terminalId”:”1”
}

curl --location -g --request POST '{url}/api/v1.0/notification' \
--header 'BRI-Signature: VaJc6t6Bqjewhgia+QvNoTAEBgX9eEhaBYxPAhSulEM=' \
--header 'BRI-Timestamp: 2021-08-26T09:40:48.818Z' \
--header 'Content-Type: application/json' \
--data-raw '{
 "brivaNo": "8888001256798654",
 "billAmount": "22000",
 "transactionDateTime": "20201005102753",
 "journalSeq": "2027912345671234567",
“terminalId”:”1”
}

Normal Response

{   
    "responseCode": "0000",
    "responseDescription": "Success"
}

Error Response

{
  "responseCode": "0102",
  "responseDescription": "Invalid Signature"
}

Briva WS Notif is a service provided by BRI to provide notifications to customers partner when there is a virtual account payment.

In order for partners to receive notifications from BRI, there are several specifications that must be met: adjusted by partner are as follows:

1. Header Structure Parameters that partners must provide in the header is as follows:
   • BRI-Signature To ensure that the data sent is genuine and can't be denied, from our side we will send a signature and must verified by partners. How to make a signature, partners can refer to web page https://developers.bri.co.id/docs/documentation#signature.
   • BRI-Timestamp Time when sending API request. The time format must be follows the ISO8601 format (yyyy-MM-ddTHH:mm:ss.SSSZ).
   • Content-Type Type JSON on Content-Type is equipped with application/json.

Signature

Signature ensures that the data sent is genuine and cannot be refuted. The signature is generated by the service user and verified by the service recipient.

The signature is formed from a predetermined payload, by implementing the SHA256-HMAC algorithm with the Consumer Key as the key. Then, encryption of this signature will be carried out using Base64. The final result will be put in the X-BRI-Signature attribute in the Header.

Payload

The payload is composed of path, verb, token, timestamp, and body. Example payloads:

path=https://service-vendor.tcd-dev.id/api/briapi/request-inquiry&verb=GET&token=Bearer R04XSUbnm1GXNmDiXx9ysWMpFWBr ×tamp=2019-01-02T13:14:15.678Z&body=

The details will be explained below:

1. Path

The value of the path is obtained from the partner URL that was hit by BRI

Example:

https://service-vendor.tcd-dev.id/api/briapi/request-inquiry

2. Verb

HTTP methods must be capital letters, i.e. GET, POST, PUT, PATCH, and DELETE.

3. Token

The token used is taken from the Authorization header. This token will be sent by the BRIAPI team, after registering the URL partner

Example:

Bearer R04XSUbnm1GXNmDiXx9ysWMpFWBr

4. Timestamp

Time when sending API request. The time format must follow the ISO8601 format (yyyy-MM-ddTHH:mm:ss.SSSZ).

Example:

2019-01-02T13:14:15.678Z

Timestamp must be in UTC or GMT +0 timezone

5. Body

Body when sending API requests. Example:

&body={"hello":"world"}

If there is no body of the request, for example using the GET method, leave it blank. Example:

&body=

The parameters that must be provided by the partner in the body of the request are as follows :

• brivaNo, is the virtual account number, String with a maximum of 14 characters. Provisions for VA Number:
  [CorporateCode]*+[CustomerCode]** *
[CorporateCode] : company code created by BRI (numeric [5])
  [CustomerCode] : customer code generated by 3rd party (numeric [Max 13 character])
• billAmount, is the number of bills, String with a maximum of 18 characters
• transactionDateTime, is the time when the inquiry request, with the format: yyyyMMddHHmmss
• journalSeq, is the unique ID that each transaction has, String with Maximum character is 30.
• terminalId, is a payment channel at BRI, String with a maximum character is 1.

List of Error/Response Code

Every user of the API needs to do transaction reconciliation everyday, especially on transactions that contain anomalies.
There are some options user can use to do transaction reconsiliation :

1. Using Get Report Date BRIVA API
2. Using Get Report Time BRIVA API
3. Using Account Statement v2.0 API
4. Using MT940 after the day of transaction