Step 2: Backend Integration — Mercoa

If you are using Mercoa for just payments check out our Creating Payouts via API guide.

Mercoa has a fully documented REST API that can be used in any language. We also have Node, Python, Java, .NET, and Go SDKs for easy backend integration.

At Mercoa, we aim to provide a seamless and whitelabeled experience for your users. As part of this experience, Mercoa does not force users to create a new account or log in to a different system.

Instead, Mercoa uses JWT tokens that you can generate to transparently authenticate the user session on the frontend.

Steps to generate a token:

User logs into your platform
Find the Mercoa Entity that corresponds to that user’s business.
Optional: Sync individual users and their roles. This is required for Approvals.
Generate a JWT and pass it to the frontend.
Use the JWT with our frontend SDK, React Components, or embedded iFrame.

Creating a Token

Let’s create an endpoint that authenticates the user, generates a JWT with the entityId, and return the generated token. We will use Mercoa’s Generate JWT Token endpoint to make this easy.

1 from django.http import HttpResponse
2 from mercoa.client import Mercoa
3 
4 client = Mercoa(token="YOUR_API_KEY")
5 
6 def generate_mercoa_token(request):
7   client.entity.get_token(entity_id="ENTITY_ID_FROM_STEP_ONE",{})
8   return HttpResponse(token)

Using the Token

Now that we have a token, we can use it to authenticate the user in our frontend application. Tokens have a default expiration of 1 hour, but you can change this by passing in the expiresIn option when generating the token.

1	from django.http import HttpResponse
2	from mercoa.client import Mercoa
3
4	client = Mercoa(token="YOUR_API_KEY")
5
6	def generate_mercoa_token(request):
7	client.entity.get_token(entity_id="ENTITY_ID_FROM_STEP_ONE",{})
8	return HttpResponse(token)