Release Version 4.38.0 (June 22, 2025)

22. 06. 2025

Pre-deployment steps

To be done before deployment
Check configuration changes and apply them in the `application.yaml` if the default configuration has been overridden, there
Check if the release contains migrations. Migrations can affect deployment and downtime.
Use `GET /i18n/export/{fileName}` to download files with the current i18n properties. Check if the downloaded file is correct.

Post-deployment steps

To be done after deployment
Verify permission changes and assign or remove required permissions if they have been overridden
Add new properties from the I18n properties changes to the downloaded i18n properties file, and add translations for them if needed. Use `POST /i18n/import` to upload and apply a previously downloaded i18n file with added new properties.

To be done after deployment

Verify permission changes and assign or remove required permissions if they have been overridden

Add new properties from the I18n properties changes to the downloaded i18n properties file, and add translations for them if needed.

Use POST /i18n/import to upload and apply a previously downloaded i18n file with added new properties.

Release migrations

–

Changes to notice

Changes to notice
`PATCH /authentication/users/{userId}/totp` was replaced with `POST /totp`

New functionality

We have started implementing the new Merchant Portal aimed at improving the merchant experience. For more information, feel free to reach us.

Improvements

Feature	Description
If OTP confirmation is required for the account closure, it is specified in the API response	`"confirmationRequired": true/false` is returned in the API response
`/api/v1/actuator/` is removed from the authentication flow to improve performance	–
Ability to filter the list of contracts on UI based on whether they are default or not, and show default status in the Contracts list	New filter and field “Is default” added to the CRO → Contracts
According to ISO 3166 added new CountryCodes `AQ("Antarctica", "Antarctica", "Antarctic", "ATA", 10), BV("Bouvet Island", "Bouvet Island", "Bouvet Islander", "BVT", 74), HM("Heard Island and McDonald Islands", "Heard Island and McDonald Islands", "Heard and McDonald Islander", "HMD", 334), PS("Palestine", "State of Palestine", "Palestinian", "PSE", 275), TF("French Southern Territories", "French Southern Territories", "French Southern Territories", "ATF", 260),`

Fixes

–

API changes

Updated

For endpoints:

POST /v1/merchant-payments/{identifier}/execute

POST /v1/merchant-payments/{identifier}/calculate

for request object paymentInstrument parameter instrumentType added new value: PAYMENT_CARD

also in request object paymentInstrument parameter value is required for the new type, and should contain Provider identifier

request example:

{ "paymentInstrument": { "instrumentType": "PAYMENT_CARD", "value": "Cybersource" } }

Also in responses on create, update and view added new field txId

response example:

_1reo1wug _o572qvpr _1eimjvyg _bfhktkvp _syaz1fxt _ect41odn _1ozdn7od _7xinn7od _t7aun7od _1v15u2gc _ilvcu2gc _m29uu2gc _17wyu2gc _pn28u2gc _gz9fu2gc _1hmyegat _vblregat _vbulegat _wozj1yev _1agb1yev _lkm81yev _tv41hkgb _1hmimyb0 _1ra01n1a _1d4j1y44 _1f8gstnw _1pzyb3bt _j1w0ww7y _13cdh2mm _15ba126e _zvy9f705 _qcxof705 _14y71a66 _j0l11wug _1weckb7n _1na21hna _1xx2grf3 _x7c815vq _lh0y15vq _1m3815vq _qk1e15vq _12l6ysn8 _uga3ysn8 _mx8b7mnp _1kr87mnp _xo19t94y _1bemt94y _nalpstnw _151dstnw _1exb1q9c _1hgu1q9c _1mgnt94y _nhket94y _h909m7j4 _scgayz1z _ipl81e17 _jeky1l04 _1gec1a66 _1gx21e5h _1ls01ule _vm2c1rh5 _12ok1rh5 _rude1ule _1q16glyw _1io6glyw _juomusic _lcwuusic _1552u2gc _12afu2gc _28ddu2gc _1i8zu2gc _12tu1a66 _zu0j1a66 _euyxusvi _cahfusvi _zhnuidpf _1amdidpf _mbgcpf9b _bu7zpf9b _131n1giz _gy101giz _1wfuwrk5 _16kzwrk5 _9kk3moej _cjus1w1g _9k2r1m30 _nhmw1m30 _yl021m30 _eiht5x2v _t9zb5x2v _mqok1w1g _3hsg1w1g _i7ngn7od _9wu1fb2s _1xcoh55r _1t361fxt _137bh55r _1k7d1fxt _97lipnps _12nh9lu1 _1g0517qg _i2ig10m5 _326z1fxt _113p131l _1n6tpnps _tgu817qg _1k47pnps _g0lx1fxt _ys4e131l _7gp8h55r _1yvq10m5 _1vww10m5 _1rju10m5 _1v0lh55r _wmyy17qg _748n17qg _1mfn17qg _1d7e17qg _p2vr17qg _19o610m5 _kxov17qg _1np517qg _m2f517qg _1b9tpnps _1tq6pnps _1rd2pnps _1pbkpnps _k3lipnps _13zt131l _2g12fb2s _k86b10m5 _b5iy131l _gti3131l _1f0gpnps _9d3e17qg _qdiapnps _72uvpnps _13dgkb7n _170714ej _1i3h1txw _1huoidpf _1a9lidpf _20bqidpf _1oggidpf _bympidpf _9nnjidpf" tabindex="0" role="region" data-code-lang="" data-ds--code--code-block="" data-testid="renderer-code-block" aria-label="Scrollable content">{ "payment": { "identifier": "693324990950", "qrCodeMediaFileId": "0197552b-0926-7e96-a172-1e6c629c669e", "qrCodeMediaFileLink": "http://localhost/api/v1/media-files/resources/b6300e6c-0e79-4bf3-b651-5b63f112e886.png", "paymentLink": "http://localhost/front-office/merchant-payment/693324990950", "pos": { "id": "019753dc-49b9-73fb-b814-8c8d530a4363" }, "parameters": { "apiType": "v3", "invoiceAmount": 10.0000, "orderDescription": "description", "paymentInstrument": "PAYMENT_CARD" }, "date": "2025-06-09T14:49:32.789Z", "createdByUser": { "id": "01974f88-d350-72b5-8396-b730033f8690", "name": "Merchant Default", "profileOrganizationId": "01974f88-cfbc-7a50-b7cb-c1da1f7a75dc" }, "status": "pending", "currency": { "id": "01974f88-bbc6-7460-87ac-a27e60851d62", "sn": "EUR", "code": "EUR", "symbol": "€", "type": "FIAT" }, "urls": {}, "txId": "0197552b-3640-792e-8f96-d048936d12e1" } }

PUT /v1/close/coin/{serial}

The response was changed to:

{ "confirmationRequired": true }

confirmationRequired = true if confirmation required, otherwise – false

PATCH /authentication/users/{userId}/totp was replaced with POST /totp

totpSecretparameter was removed from the request body for API:

PATCH /profiles/{userId}/security-settings

userId parameter was removed from the request body for API

POST /authorization/totp

Added

POST /merchant-payments/{identifier}/access-token

Deprecated/Deleted

–

I18n properties changes

–

Configuration changes

The following parameters were added to application.yaml file:

token: access: ... login-changer-ttl: 60 # in minutes payment-executor-ttl: 30 # in minutes ...

Database changes

–

Permission changes

The new technical role payment_executor was created, and the new permission PAYMENT_EXECUTOR was assigned to this role. PAYMENT_EXECUTOR permission allows calling the following API operations:

POST /merchant-payments/{identifier}/execute
POST /gate/transactions/{tx}/submit