Sedifex Docs
Sedifex Integration API Guide
This guide explains how a partner website connects to Sedifex for products/services and bookings .
integration-api-guide.md
Sedifex Integration API Guide#
This guide explains how a partner website connects to Sedifex for products/services and bookings.
The most important rule is simple:
Use one Website Integration API key for the whole website. The same key can load products/services, create bookings, check availability, open checkout, and read booking records.
Sedifex remains the source of truth for catalog data, bookings, checkout, payment status, customer records, and reporting.
1. Source-of-truth model#
Use this mapping when building client websites:
| Website action | Sedifex record | Dashboard page |
|---|---|---|
| Show products/services on a website | products, services, publicListings, v1IntegrationProducts | Products / Services |
| Create a service booking | integrationBookings | Bookings |
| Read booking status | integrationBookings | Bookings |
| Create product checkout/order | integrationOrders | Online Orders |
| Pay-on-delivery product order | integrationOrders | Online Orders / Pay on Delivery |
| Read gallery images | Gallery integration endpoint | Website / Gallery |
| Read promo/banner content | Promo integration endpoint | Website / Promo |
Do not use integrationBookings for product purchases. Product purchases should become orders. Bookings are for appointments, services, consultations, courses, training, travel support, and other scheduled requests.
2. Required environment variables#
Set these in the website backend or server environment.
bash
SEDIFEX_API_BASE_URL=https://us-central1-sedifex-web.cloudfunctions.net
SEDIFEX_INTEGRATION_API_BASE_URL=https://us-central1-sedifex-web.cloudfunctions.net
SEDIFEX_STORE_ID=<store_id>
NEXT_PUBLIC_SEDIFEX_STORE_ID=<store_id>
SEDIFEX_BOOKING_TARGET_STORE_ID=<store_id>
SEDIFEX_INTEGRATION_API_KEY=<website_integration_key>
SEDIFEX_PRODUCTS_API_KEY=<same_website_integration_key>
SEDIFEX_BOOKING_API_KEY=<same_website_integration_key>
SEDIFEX_CONTRACT_VERSION=2026-04-13
Key rule#
Use the same Website Integration API key for these values:
bash
SEDIFEX_INTEGRATION_API_KEY=<same_key>
SEDIFEX_PRODUCTS_API_KEY=<same_key>
SEDIFEX_BOOKING_API_KEY=<same_key>
The extra names are kept for older websites and templates. New integrations only need one real Sedifex key.
Security rule#
Do not expose the API key in browser code. Never put the API key in NEXT_PUBLIC_* variables. Only the store ID may be public.
3. Authentication headers#
Authenticated Sedifex integration endpoints should receive these headers:
http
x-api-key: <website_integration_key>
Authorization: Bearer <website_integration_key>
X-Sedifex-Contract-Version: 2026-04-13
Accept: application/json
Authorization is optional for most endpoints, but sending both x-api-key and Authorization is recommended for compatibility.
Sedifex responses may include:
http
x-sedifex-contract-version: 2026-04-13
x-sedifex-request-id: <request_id>
Log x-sedifex-request-id when debugging errors.
4. Contract version#
Current contract version:
txt
2026-04-13
Every integration request should send:
http
X-Sedifex-Contract-Version: 2026-04-13
If the version does not match, Sedifex can return:
json
{
"error": "contract-version-mismatch",
"expectedVersion": "2026-04-13",
"receivedVersion": "2026-01-01"
}
5. Product and service catalog#
Endpoint#
http
GET /v1IntegrationProducts?storeId=<storeId>
Full URL example:
txt
https://us-central1-sedifex-web.cloudfunctions.net/v1IntegrationProducts?storeId=<storeId>
Use this endpoint when a client website needs to show Sedifex products or services.
Example request with curl#
bash
curl -H "x-api-key: $SEDIFEX_INTEGRATION_API_KEY" \
-H "Authorization: Bearer $SEDIFEX_INTEGRATION_API_KEY" \
-H "X-Sedifex-Contract-Version: 2026-04-13" \
"https://us-central1-sedifex-web.cloudfunctions.net/v1IntegrationProducts?storeId=$SEDIFEX_STORE_ID"
Example request with PowerShell#
powershell
$baseUrl = "https://us-central1-sedifex-web.cloudfunctions.net"
$storeId = "YOUR_STORE_ID"
$apiKey = "YOUR_WEBSITE_INTEGRATION_KEY"
$headers = @{
"x-api-key" = $apiKey
"Authorization" = "Bearer $apiKey"
"X-Sedifex-Contract-Version" = "2026-04-13"
"Accept" = "application/json"
}
$url = "$baseUrl/v1IntegrationProducts?storeId=$storeId"
Invoke-RestMethod -Uri $url -Headers $headers -Method GET | ConvertTo-Json -Depth 20
Response shape#
json
{
"ok": true,
"storeId": "store_123",
"count": 7,
"products": [
{
"id": "service-schengen-travel-assistance-a65e6f",
"storeId": "store_123",
"name": "Schengen Travel Assistance",
"category": "Professional Services",
"description": "Service description",
"price": 600,
"priceMinor": 60000,
"stockCount": null,
"itemType": "service",
"type": "SERVICE",
"imageUrl": "https://...",
"imageUrls": ["https://..."],
"imageAlt": "Schengen Travel Assistance",
"updatedAt": "2026-05-23T12:00:00.000Z"
}
],
"publicProducts": [],
"publicServices": []
}
How to render products and services#
Use these fields:
| Field | Meaning |
|---|---|
id | Sedifex item ID |
name | Product/service name |
price | Major currency price, for example 600 |
priceMinor | Minor currency price, for example 60000 pesewas |
itemType | product, service, or course |
type | PRODUCT, SERVICE, or COURSE |
imageUrl | Main image |
imageUrls | Extra images |
category | Display category |
description | Display description |
For service pages, filter by either:
ts
item.itemType === 'service'
or:
ts
item.type === 'SERVICE'
Public fallback endpoint#
For read-only public catalog display, Sedifex also supports:
http
GET /publicQuickPayCatalog?storeId=<storeId>
This endpoint does not require an API key. It is useful as a fallback for public storefronts, but the recommended integration endpoint is still /v1IntegrationProducts.
6. Gallery and promo content#
Gallery#
http
GET /integrationGallery?storeId=<storeId>
Use this for website gallery images.
Promo#
http
GET /v1IntegrationPromo?storeId=<storeId>
Use this for banners, promotional sections, and featured content.
Use the same Website Integration API key unless the endpoint is specifically public.
7. Booking API#
Use bookings for:
- appointments
- consultations
- service requests
- travel assistance
- school registration
- course enrolment
- beauty/spa sessions
- interviews and document review services
Create booking endpoint#
http
POST /v1IntegrationBookings?storeId=<storeId>
Full URL example:
txt
https://us-central1-sedifex-web.cloudfunctions.net/v1IntegrationBookings?storeId=<storeId>
Read booking records endpoint#
http
GET /v1IntegrationBookings?storeId=<storeId>
Optional filters:
http
GET /v1IntegrationBookings?storeId=<storeId>&status=pending
GET /v1IntegrationBookings?storeId=<storeId>&serviceId=<serviceId>
Create booking request#
json
{
"serviceId": "service-schengen-travel-assistance-a65e6f",
"serviceName": "Schengen Travel Assistance",
"bookingDate": "2026-05-25",
"bookingTime": "09:00",
"quantity": 1,
"notes": "Customer wants help with documents.",
"customer": {
"name": "Customer Name",
"email": "customer@example.com",
"phone": "+233200000000"
},
"paymentMethod": "paystack_checkout",
"paymentAmount": 600,
"sourceChannel": "client_website",
"attributes": {
"source": "website_booking_form",
"sourceLabel": "Client website",
"pageUrl": "https://clientsite.com/book",
"timezone": "Africa/Accra",
"locale": "en-GB"
}
}
Required booking fields#
At minimum, send:
json
{
"serviceId": "service_123",
"bookingDate": "2026-05-25",
"bookingTime": "09:00",
"customer": {
"name": "Customer Name",
"phone": "+233200000000"
}
}
Recommended fields:
| Field | Why it matters |
|---|---|
serviceId | Links the booking to a Sedifex service |
serviceName | Keeps the record readable even if the service changes later |
bookingDate | Customer requested date |
bookingTime | Customer requested time |
customer.name | Customer identity |
customer.email | Confirmation and follow-up email |
customer.phone | WhatsApp/call follow-up |
paymentAmount | Amount expected or paid |
paymentMethod | Example: paystack_checkout, manual, cash, momo |
notes | Customer request details |
sourceChannel | Example: client_website |
attributes.pageUrl | Helps staff know where the booking came from |
Create booking with PowerShell#
powershell
$baseUrl = "https://us-central1-sedifex-web.cloudfunctions.net"
$storeId = "YOUR_STORE_ID"
$apiKey = "YOUR_WEBSITE_INTEGRATION_KEY"
$headers = @{
"x-api-key" = $apiKey
"Authorization" = "Bearer $apiKey"
"X-Sedifex-Contract-Version" = "2026-04-13"
"Accept" = "application/json"
"Content-Type" = "application/json"
}
$body = @{
serviceId = "service_123"
serviceName = "Document Review Service"
bookingDate = "2026-05-25"
bookingTime = "09:00"
quantity = 1
notes = "Customer needs support."
customer = @{
name = "Customer Name"
email = "customer@example.com"
phone = "+233200000000"
}
paymentMethod = "manual"
paymentAmount = 600
sourceChannel = "client_website"
attributes = @{
source = "website_booking_form"
pageUrl = "https://clientsite.com/book"
timezone = "Africa/Accra"
locale = "en-GB"
}
} | ConvertTo-Json -Depth 20
$url = "$baseUrl/v1IntegrationBookings?storeId=$storeId"
Invoke-RestMethod -Uri $url -Headers $headers -Method POST -Body $body | ConvertTo-Json -Depth 20
Successful booking response#
json
{
"ok": true,
"storeId": "store_123",
"bookingId": "abc123",
"reference": "IB-ABC123",
"status": "pending",
"bookingStatus": "pending_approval"
}
Booking status values#
Common booking statuses:
| Status | Meaning |
|---|---|
pending | Booking received and waiting for staff action |
pending_approval | Booking needs approval |
confirmed | Booking confirmed |
completed | Service completed |
cancelled | Booking cancelled |
rescheduled | Booking changed to a different time/date |
Common payment statuses:
| Payment status | Meaning |
|---|---|
payment_pending | Payment not confirmed yet |
paid | Payment confirmed |
manual_review | Staff should review payment manually |
refunded | Payment refunded |
When Sedifex staff update a booking, Sedifex can send the customer email if notifications are enabled.
8. Availability API#
Use this when the website needs to show appointment times before creating a booking.
http
GET /v1IntegrationAvailability?storeId=<storeId>&serviceId=<serviceId>&from=<fromIso>&to=<toIso>
Example:
txt
https://us-central1-sedifex-web.cloudfunctions.net/v1IntegrationAvailability?storeId=store_123&serviceId=service_123&from=2026-05-25T00:00:00.000Z&to=2026-05-30T23:59:59.999Z
Use the same Website Integration API key headers.
9. Checkout and product orders#
Product purchases should use checkout/order endpoints, not booking endpoints.
Recommended flow:
- Customer selects product/service on the website.
- Website backend receives cart/customer data.
- Backend calls Sedifex checkout preview if totals are needed.
- Backend calls Sedifex checkout create.
- Customer pays through the payment flow.
- Sedifex records the order and payment status.
- Website shows the final order status from Sedifex.
Typical checkout payload:
json
{
"storeId": "store_123",
"merchantId": "store_123",
"clientOrderId": "WEB-PAY-1778870000000",
"sourceChannel": "client_website",
"sourceLabel": "Client Website",
"currency": "GHS",
"items": [
{
"type": "PRODUCT",
"item_type": "product",
"item_id": "product_123",
"qty": 1
}
],
"customer": {
"name": "Customer Name",
"email": "buyer@example.com",
"phone": "+233200000000"
},
"returnUrl": "https://clientsite.com/checkout/success",
"cancelUrl": "https://clientsite.com/checkout/failed"
}
Do not trust totals calculated only in the browser. Always confirm totals server-side with Sedifex before payment.
10. Next.js server example#
This example keeps the Sedifex API key server-side.
ts
const SEDIFEX_BASE_URL = process.env.SEDIFEX_API_BASE_URL ?? 'https://us-central1-sedifex-web.cloudfunctions.net'
const SEDIFEX_STORE_ID = process.env.SEDIFEX_STORE_ID!
const SEDIFEX_API_KEY = process.env.SEDIFEX_INTEGRATION_API_KEY!
const SEDIFEX_CONTRACT_VERSION = process.env.SEDIFEX_CONTRACT_VERSION ?? '2026-04-13'
function sedifexHeaders() {
return {
'x-api-key': SEDIFEX_API_KEY,
Authorization: `Bearer ${SEDIFEX_API_KEY}`,
'X-Sedifex-Contract-Version': SEDIFEX_CONTRACT_VERSION,
Accept: 'application/json',
}
}
export async function getSedifexServices() {
const url = new URL('/v1IntegrationProducts', SEDIFEX_BASE_URL)
url.searchParams.set('storeId', SEDIFEX_STORE_ID)
const response = await fetch(url, {
headers: sedifexHeaders(),
next: { revalidate: 30 },
})
if (!response.ok) throw new Error(`Sedifex catalog failed: ${response.status}`)
const payload = await response.json()
return (payload.publicServices?.length ? payload.publicServices : payload.products || [])
.filter((item: any) => (item.itemType || item.type || '').toLowerCase() === 'service')
}
Example booking route:
ts
export async function createSedifexBooking(input: {
serviceId: string
serviceName?: string
bookingDate: string
bookingTime: string
customer: { name: string; email?: string; phone?: string }
notes?: string
}) {
const url = new URL('/v1IntegrationBookings', SEDIFEX_BASE_URL)
url.searchParams.set('storeId', SEDIFEX_STORE_ID)
const response = await fetch(url, {
method: 'POST',
headers: {
...sedifexHeaders(),
'Content-Type': 'application/json',
},
body: JSON.stringify({
...input,
sourceChannel: 'client_website',
attributes: {
source: 'website_booking_form',
},
}),
})
if (!response.ok) throw new Error(`Sedifex booking failed: ${response.status}`)
return response.json()
}
11. Error handling#
Recommended behavior:
| Status/error | Meaning | What to do |
|---|---|---|
400 missing-store-id | storeId was not sent | Check env vars and URL params |
400 contract-version-mismatch | Wrong contract header | Update SEDIFEX_CONTRACT_VERSION |
401 invalid-api-key | Key is wrong or not for that store | Regenerate Website Integration API key |
401 unauthorized | Missing or invalid credentials | Check headers |
404 | Endpoint path wrong or function not deployed | Check base URL and endpoint name |
429 | Too many requests | Retry with backoff |
5xx | Temporary Sedifex/server issue | Retry with backoff and log request ID |
Always log:
- endpoint URL without secrets
storeId- response status
- response body
x-sedifex-request-idif available
Never log the full API key.
12. Caching guidance#
| Data | Suggested cache |
|---|---|
| Products/services | 30–120 seconds |
| Gallery | 60–300 seconds |
| Promo content | 60–300 seconds |
| Availability | 0–30 seconds |
| Checkout totals | Do not cache as final truth |
| Booking creation | Never cache POST responses as reusable actions |
13. Security checklist#
- Keep the Website Integration API key server-side only.
- Do not put the API key in
NEXT_PUBLIC_*variables. - Use one key per client website/backend.
- Rotate the key if it is pasted in chat, logs, screenshots, or shared publicly.
- Validate customer input before sending it to Sedifex.
- Confirm product prices and checkout totals server-side.
- Do not use browser-only calculations for payment totals.
- Log request IDs, not secrets.
14. Related guides#
docs/integration-contract.mddocs/integration-quickstart.mddocs/client-website-cart-design-guide.mddocs/paystack-split-checkout-url.mddocs/webhooks-signature-verification.mddocs/wordpress-install-guide.md