No-risk mobile check cashing service delivering money in minutes for a fee or in 10 days for free.
API requests MUST be performed using a secure transport layer over HTTPS with a minimum TLS version of 1.2.
All API activity will be sanitized, recorded and retained as per Ingo's data retention strategy.
The APIs are designed for machine to machine communication and are restricted by adding our partner's IP addresses to an "Allowed List" of IP addresses.
A single IP, multiple IPs or a range of IPs can be added to the list.
The Client Id and Client Secret will be provisioned by Ingo Client Services and provided via a PGP encrypted file format.
We will need our client's Public Key information to encrypt the authentication credentials.
Before clients can go live, Ingo Money will work closely with the Client Integration and Application Engineering teams to ensure that all possible known responses are being handled appropriately.
This process will ensure our clients are well prepared for their production deployments and edge cases have been covered.
The certification process may include but is not limited to the following scenarios:
As with any external network dependency, we recommend our clients use a fault-tolerant API access strategy with a retry policy. An example can be located here Resilience policies.