At no point is a private key returned as part of this end-point. We manually return data to the customer based on successful identity verification. Also due to the cold nature of storing our private keys it would not be possible for this end-point to return data.
\nField Information
\nResponse Codes
\n","urlObject":{"path":["decrypt-rsa"],"host":["{{HOST}}"],"query":[],"variable":[]}},"response":[{"id":"51f7386d-0183-4072-838a-fe9501bff452","name":"200 - OK","originalRequest":{"method":"POST","header":[],"body":{"mode":"raw","raw":"{\n \"priv\": \"Field Information
\nResponse Codes
\n","urlObject":{"path":["decrypt-pwd"],"host":["{{HOST}}"],"query":[],"variable":[]}},"response":[{"id":"2481595b-5f44-44c6-8d19-6891f1498766","name":"200 - OK","originalRequest":{"method":"POST","header":[],"body":{"mode":"raw","raw":"{\n \"password\": \"The following provides example test data, public and private keys, which can be used to stub and test the endpoints without having to engage CoinCover.
\nThe following keys are TEST keys only and should be used for encrypting and decrypting TEST data only.
\nPublic Key
\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
Signature
\nIKY3TAEs4FsK9rpCUsLFgeAy0mtkrIS0NpHe7Q8S7Un5Ufnk73mD5VEiZR4owdSKAxX7lR1iZ184/Bcpxl8iyJA=
Private Key
\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
When pulling a key from CoinCover using the /encryption-key endpoint, the response object contains a signature & public key property.
The signature & public key can be used in conjunction with a CoinCover provided signing key to verify that the key has indeed come from CoinCover.
\nBelow, is a small Node.js example of how this may be achieved:
\nconst bitcoinMessage = require('bitcoinjs-message');\nconst bjs = require('bitcoinjs-lib');\nconst { BIP32Factory } = require('bip32');\nconst ecc = require(\"tiny-secp256k1\");\nconst verifyKeyIsFromCoincover = (publicKey, signature, signingKey) => {\n const bip32 = BIP32Factory(ecc);\n const signingPublicKey = bip32.fromBase58(signingKey).publicKey\n let signingKeyAddress = bjs.payments.p2pkh({ pubkey: signingPublicKey }).address;\n const verified = bitcoinMessage.verify(publicKey, signingKeyAddress, signature)\n console.log({ verified })\n}\nconst PUBLIC_KEY_HEX = \"YOUR_PUBLIC_KEY\"\nconst SIGNATURE = \"YOUR_PUBLIC_KEY_SIGNATURE\"\nconst COIN_COVER_PROVIDED_PUBLIC_SIGNING_KEY = \"REQUEST_SIGNING_KEY_FROM_COINCOVER\"\nverifyKeyIsFromCoincover(PUBLIC_KEY_HEX, SIGNATURE, COIN_COVER_PROVIDED_PUBLIC_SIGNING_KEY)\n\n\n\n","_postman_id":"4c8002bf-0bd9-4803-a184-e056eb482a01","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"7b50a7a9-1fa7-4aa4-b35d-c6792b4834f1","id":"7b50a7a9-1fa7-4aa4-b35d-c6792b4834f1","name":"ReCOVER","type":"folder"}}}],"id":"7b50a7a9-1fa7-4aa4-b35d-c6792b4834f1","description":"NOTE: In order for this script to work, a test signing key will need to be requested from CoinCover & assigned to
\nCOIN_COVER_PROVIDED_PUBLIC_SIGNING_KEY. ThePUBLIC_KEY_HEX&SIGNATUREmust be assigned the value of the public key & signature retrieved from the/encryption-keyendpoint.
CoinCover provides a safe non-custodial way to store private keys and data.
\nData must always be encrypted prior to it being sent to CoinCover.
\nThis can be achieved with a combination of two methods:
\n- \n
Symmetric encryption with a password
\n \nAsymmetric encryption with a public key
\n \n
The usage is dependent on what is being encrypted.
\nWhere the data relates to a private key or seed that can be used to access funds, then this must be double-encrypted, using both methods sequentially.
\nThe customer or end-user holds the password for decryption. CoinCover holds the private key to decrypt. Importantly, the data should be encrypted with a password first and then the public key.
\nOnce the data has been encrypted, it can be sent to CoinCover and stored within the secure platform.
\nIn the event of a disaster, CoinCover can work with the holder of the password to recover access to the underlying data.
\nAt the end of this section you'll find some test data and keys that you can use to get to grips with our API.
\n","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"id":"30f5f4f4-8551-4053-91be-aff7d3ab5e0b","type":"text/javascript","exec":[""]}},{"listen":"test","script":{"id":"f57430a6-778f-4083-8dcb-c636b1e32b3c","type":"text/javascript","exec":[""]}}],"_postman_id":"7b50a7a9-1fa7-4aa4-b35d-c6792b4834f1"},{"name":"Transaction Protection for Consumers","item":[{"name":"Integration Guides","item":[{"name":"Authentication","item":[],"id":"4dcccf5d-729a-411a-b36d-92d72109b0f8","description":"Set up Authentication Tokens
\nTo use CoinCover's services, a bearer token is required. These are unique for TEST and PROD environments.
\nTo test within the Sandbox environment, a TEST token will be provided by your Account Manager.
\nOnce contractual agreements have been made and the test configuration has been validated a PROD token will be supplied.
\nEndpoints
\nTEST
\n\n\n\n
PRODUCTION
\n\n\n\n","_postman_id":"4dcccf5d-729a-411a-b36d-92d72109b0f8","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","name":"Transaction Protection for Consumers","type":"folder"}}},{"name":"Protection per Transaction","item":[],"id":"3c619f51-019d-4aae-8f45-c17df8344bc3","description":"
This flow allows for every signed up customer on your platform to gain the peace of mind that comes with CoinCover protection.
\nCoinCover's Protection Workflow Diagram:
\nIntegration Guide
\nStep 1: Integrate Transaction Check endpoint
\nAfter a user on your platform creates a transaction, you will send the necessary data to the ‘/Transaction’ API endpoint (link here). This returns either a Green (Protected) or Red (Not Protected) status for that specific transaction.
\n- \n
Green: Provide the user with the option to purchase Protection.
\n \nRed: We recommend advising the customer and carrying out an additional risk review.
\n \n
This flow is for organisations that want CoinCover Protection to be part of a subscription model.
\nAs part of the subscription, customers pay the partner, enabling them to benefit from CoinCover Protection on all of their transactions.
\nStep 1: User Registration
\nWhen a user signs up for the subscription service CoinCover will need this user to be registered in the CoinCover risk engine using the '/user' endpoint (link here).
\nStep 2: Integrate Transaction Check endpoint
\nAfter a sign up user on your platform creates a transaction, you will send the necessary data to the ‘/Transaction’ API endpoint (link here). This returns either a Green (Protected) or Red (Not Protected) status for that specific transaction.
\n- \n
Green: Provide the user with the option to purchase Protection.
\n \nRed: We recommend advising the customer and carrying out an additional risk review.
\n \n
CoinCover’s Transaction Protection for consumers is an API-first product that provides the foundational building blocks of Protection. You can tailor the components you need to create a solution that best suits your business.
\nPlease find below guides for the most common use cases of our Product:
\nAuthentication
\nAll our endpoints require authentication to be accessed. This guide explains the entire authentication process, helping you securely connect to our platform.
\n\nProtection Per Transaction
\nLearn how to integrate our Protection product so that CoinCover can protect your end-user withdrawals. This guide walks you through the necessary steps to enable Protection for each transaction.
\n\nSubscription for Protection
\nDiscover how to incorporate our Protection feature into a subscription model, allowing an account to be fully covered by CoinCover. This guide outlines the process for setting up Protection subscriptions and Protecting the account.
\n\n","_postman_id":"224389fe-7c9a-4935-b61e-7758bc6e6a40","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","name":"Transaction Protection for Consumers","type":"folder"}}},{"name":"API Reference","item":[{"name":"Check Transaction","id":"26626742-e8b0-440c-bdeb-ff1ecc9ecba0","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}"},"url":"{{HOST}}/transaction","description":"Transactions should be sent to CoinCover before they are published or broadcast to the blockchain.
\nCoinCover requires core elements of a blockchain transaction including the transaction Hash which allows CoinCover to reconcile this for any published transactions. Transactions need to be associated to a wallet and an end-user.
\nThe coin/token type needs to be defined in the API call. Please find in this link the tokens that CoinCover support - https://www.coincover.com/knowledge-hub/assets-we-protect
\nThreat Detected Codes
\nField Information
\nHTTP Status Codes
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","name":"Transaction Protection for Consumers","type":"folder"}},"urlObject":{"path":["transaction"],"host":["{{HOST}}"],"query":[],"variable":[]}},"response":[{"id":"6a30d2e8-c194-41cc-8070-1cf17a511689","name":"200 - OK","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"3d0ee9d3-4d85-5c8e-af77-3bc9feec83f2\",\n \"status\": \"GREEN\",\n \"message\": \"Transaction is protected by CoinCover.\"\n}"},{"id":"6beb62e1-5a5c-4112-9a42-ada8b5811bed","name":"200 - OK (50202)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"45bf9605-e388-5636-8949-9598ea872c3e\",\n \"status\": \"RED\",\n \"code\": \"50202\",\n \"message\": \"The destination wallet address is suspected to be involved with malicious behaviour.\",\n \"meta\": {\n \"category\": \"SUSPECTED_MALICIOUS_ADDRESS\",\n \"providerCategory\": null,\n \"blocklistedAddress\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\"\n }\n}"},{"id":"5e07673e-5a03-4652-9ab1-c28cd740fa59","name":"200 - OK (50102)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"c1ed3a7d-37ca-587c-b8b0-fe5ce018f2ad\",\n \"status\": \"RED\",\n \"code\": \"50102\",\n \"message\": \"The destination wallet address has previously been associated with reported scam.\",\n \"meta\": {\n \"category\": \"SCAMMING_ADDRESS\",\n \"providerCategory\": \"Scamming\",\n \"blocklistedAddress\": \"0x5B2b8b9c674e67F718BB54Cc62C2a2E13308229d\"\n }\n}"},{"id":"f53d4384-2672-4ed1-a650-6cc2a88ada83","name":"200 - OK (50307)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"5e78aaaf-adae-5348-83e4-108879cc98a8\",\n \"status\": \"RED\",\n \"code\": \"50307\",\n \"message\": \"The transaction amount breaches the maximum daily amount for your organisation.\",\n \"meta\": {\n \"tokenAmount\": 100,\n \"usdAmount\": 34801,\n \"usdLimit\": 5000,\n \"amountBreachedBy\": \"$29,801.00\"\n }\n}"},{"id":"b28c2f25-d39a-438d-bc9b-296dd2a5084c","name":"200 - OK (50106)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"c1ed3a7d-37ca-587c-b8b0-fe5ce018f2ad\",\n \"status\": \"RED\",\n \"code\": \"50106\",\n \"message\": \"The destination wallet address has previously been associated with blackmail activities.\",\n \"meta\": {\n \"category\": \"BLACKMAIL_ACTIVITIES\",\n \"providerCategory\": \"blackmail scam\",\n \"blocklistedAddress\": \"3NMn7e4tvH8fsbLrsGx5h1ZDHSpv3t8n6d\"\n }\n}"},{"id":"df6223d8-6e4d-4c5d-9d3b-93849cb34355","name":"200 - OK (50102)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"23f94b8b-e68e-57ff-bf67-3670900768ce\",\n \"status\": \"RED\",\n \"code\": \"50102\",\n \"message\": \"The destination wallet address has previously been associated with reported scam.\",\n \"meta\": {\n \"category\": \"SCAMMING_ADDRESS\",\n \"providerCategory\": \"Scamming\",\n \"blocklistedAddress\": \"0xCE04bB02c933bdAd15c2397b09AF2717CA581327\"\n }\n}"},{"id":"87edd815-fd71-4e38-a794-7d396a08a170","name":"400 - Bad Request (Unsupported)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"invalid\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"Bad Request","code":400,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"statusCode\": 400,\n \"error\": \"Bad Request\",\n \"message\": \"Coin XTZ_ETHERLINK is unsupported at this time\"\n}"},{"id":"3d6e1ff2-919a-4a00-971c-39602db7e503","name":"400 - Bad Request (Unrecognised)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"invalid\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"Bad Request","code":400,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"statusCode\": 400,\n \"error\": \"Bad Request\",\n \"message\": \"Unrecognised coin name provided. The coin you entered is currently not supported. Please verify the coin_id format or try another coin_id. For further assistance, kindly contact our support team. Thank you.\"\n}"}],"_postman_id":"26626742-e8b0-440c-bdeb-ff1ecc9ecba0"},{"name":"Create new user","id":"a9513606-cd26-460e-9b13-ef890cbae3a3","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"userId\": \"jb001\",\n \"firstName\": \"Joe\",\n \"lastName\": \"Blogs\",\n \"dob\": \"1975-05-01\",\n \"residenceCountry\": \"US\",\n \"nationality\": \"US\"\n}","options":{"raw":{"language":"json"}}},"url":"{{HOST}}/user","description":"Create new user is used to create a new User Registration for an existing User within a partner's systems. The User Id that is associated with user in the partner's systems should be specified in the request body along with the relevant user details as stated in the Field Information table.
\nField Information
\nResponse Codes
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","name":"Transaction Protection for Consumers","type":"folder"}},"urlObject":{"path":["user"],"host":["{{HOST}}"],"query":[],"variable":[]}},"response":[{"id":"ca33fc06-9ed2-4196-adbb-2aae107b74a8","name":"Create new user","originalRequest":{"method":"POST","header":[{"key":"Content-Type","name":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"userId\": \"jb001\",\n \"firstName\": \"Joe\",\n \"lastName\": \"Blogs\",\n \"dob\": \"1975-05-01\",\n \"residenceCountry\": \"US\",\n \"nationality\": \"US\"\n}","options":{"raw":{"language":"json"}}},"url":"https://api.txm.coincover.com/user"},"status":"Created","code":201,"_postman_previewlanguage":null,"header":null,"cookie":[],"responseTime":null,"body":""}],"_postman_id":"a9513606-cd26-460e-9b13-ef890cbae3a3"},{"name":"Update existing user","id":"af2f3538-23e5-43bc-881f-039d10febe8b","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"PATCH","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"firstName\": \"Joe\",\n \"lastName\": \"Blogs\",\n \"residenceCountry\": \"US\"\n}"},"url":"/user/${userId}","description":"Field Information
\nResponse Codes
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","name":"Transaction Protection for Consumers","type":"folder"}},"urlObject":{"path":["user","${userId}"],"query":[],"variable":[]}},"response":[{"id":"3d44f7a8-e27b-4a1d-9b19-6bbb0657ac7d","name":"Update existing user","originalRequest":{"method":"PATCH","header":[{"key":"Content-Type","name":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"firstName\": \"Joe\",\n \"lastName\": \"Blogs\",\n \"residenceCountry\": \"US\"\n}","options":{"raw":{"language":"json"}}},"url":"https://api.txm.coincover.com/user/jb001"},"status":"No Content","code":204,"_postman_previewlanguage":null,"header":null,"cookie":[],"responseTime":null,"body":""}],"_postman_id":"af2f3538-23e5-43bc-881f-039d10febe8b"},{"name":"Create user plan","id":"ef4829b9-c061-4f56-9cc4-a6a730652e1a","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"levelUsd\": 1000\n}","options":{"raw":{"language":"json"}}},"url":"{{HOST}}/user/${userId}/plan","description":"Field Information
\nResponse Codes
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","name":"Transaction Protection for Consumers","type":"folder"}},"urlObject":{"path":["user","${userId}","plan"],"host":["{{HOST}}"],"query":[],"variable":[]}},"response":[{"id":"7711de9d-e9e3-43c6-a2f8-e083d6b5a712","name":"Create user plan","originalRequest":{"method":"POST","header":[{"key":"Content-Type","name":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"levelUsd\": 1000\n}","options":{"raw":{"language":"json"}}},"url":"https://api.txm.coincover.com/user/jb001/plan"},"status":"Created","code":201,"_postman_previewlanguage":null,"header":null,"cookie":[],"responseTime":null,"body":""}],"_postman_id":"ef4829b9-c061-4f56-9cc4-a6a730652e1a"},{"name":"Update user plan","id":"223a39e8-2748-464d-b6b3-134761fba6e1","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"PATCH","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"levelUsd\": 500\n}","options":{"raw":{"language":"json"}}},"url":"/user/${userId}/plan","description":"Field Information
\nResponse Codes
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","name":"Transaction Protection for Consumers","type":"folder"}},"urlObject":{"path":["user","${userId}","plan"],"query":[],"variable":[]}},"response":[{"id":"8ea91935-2d80-4b4b-9215-2a2a4ec5c7e6","name":"Update user plan","originalRequest":{"method":"PATCH","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"levelUsd\": 500\n}","options":{"raw":{"language":"json"}}},"url":"https://api.txm.coincover.com/user/jb001/plan"},"_postman_previewlanguage":null,"header":null,"cookie":[],"responseTime":null,"body":null}],"_postman_id":"223a39e8-2748-464d-b6b3-134761fba6e1"}],"id":"458c560d-f251-408a-b88a-0124cebf314e","description":"Our comprehensive API references and guides enable you to thoroughly explore our products and features, ensuring you can integrate with us as quickly as possible.
\nThe integration guides offer step-by-step instructions for our most common use cases. If you’d like to test the integration, please contact your Sales Representative, who can provide you with a bearer token for our test environment.
\n","_postman_id":"458c560d-f251-408a-b88a-0124cebf314e","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","name":"Transaction Protection for Consumers","type":"folder"}}}],"id":"3c6c497c-2b81-460c-b99c-e5878dc411fe","description":"Transaction protection for your users
\nCoinCover protects your users by actively monitoring and validating outgoing transactions pre-broadcast against CoinCover’s risk engine. The risk engine is an advanced, multi-layered screening solution that evaluates blockchain transactions in real-time to identify, flag and notify users when something is suspicious.
\nCoinCover’s risk engine provides a binary response of ‘Red’ or ‘Green’ to indicate if a transaction appears either malicious or safe to send, respectively. If the risk engine fails to meet the service description, then the customer may make a claim against the CoinCover guarantee.
\nIf a transaction is marked as ‘Red’ we will provide you with the reason for this decision and the description of this reason in the API response.
\nCoinCover’s risk engine is an API-native solution. This allows you to integrate the solution directly into your UI/UX, ensuring that the solution fits with your branding and desired user experience.
\nIf you would like to test the functionality of the Transaction Check API, please contact your Sales Rep, who will set up a test account for you.
\n","auth":{"type":"noauth","isInherited":false},"event":[{"listen":"prerequest","script":{"id":"129be808-4000-4965-8fb2-c7ffdb9c4849","type":"text/javascript","exec":[""]}},{"listen":"test","script":{"id":"e5f5e339-76ad-45a0-aaa2-b6a92b3f3bdb","type":"text/javascript","exec":[""]}}],"_postman_id":"3c6c497c-2b81-460c-b99c-e5878dc411fe"},{"name":"Transaction Protection for Institutions","item":[{"name":"Getting started","item":[],"id":"c5616c8c-08ba-4ba7-9acd-2bb3b4dc1fb5","description":"In order to integrate CoinCover's Transaction Protection for Institutions, follow these steps:
\n- \n
Set up authentication tokens
\n \nRegister users
\n \nIntegrate transaction check
\n \nConfigure partner connections
\n \n
Set up Authentication Tokens
\nTo use CoinCover's services, a bearer token is required. These are unique for TEST and PROD environments. A TEST token can be requested from our Sales team and a PROD token is supplied once contractual agreements have been made and the test configuration has been validated by our Sales Engineering team.
\nEndpoints
\nTEST
\n\n\n\n
PRODUCTION
\n\n\n\n
Register users
\nCoinCover requires users existing within a partner's systems to be registered with essential user details.
\nThe partner acknowledges the contractual declarations that any user details provided have been verified via suitable KYC practices and that 2FA is active on an account.
\nIntegrate transaction checker
\nCoinCover needs to analyse transactions before they are sent to the blockchain.
\nFor each transaction analysed, CoinCover will provide a response indicating whether the transaction is protected by CoinCover or not.
\n'Not protected' responses will contain the relevant reason code and description.
\nConfigure partner connections
\nCoinCover requires relevant partner platforms to be configured with read-only access to completed transactions.
\nThis is required to train machine learning models, monitor wallet activity to detect suspicious patterns and reconcile any real-time transaction protection decisions with the completed transactions.
\nFollow the steps listed for the relevant platforms under the Partner Connections section.
\n","_postman_id":"c5616c8c-08ba-4ba7-9acd-2bb3b4dc1fb5","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","name":"Transaction Protection for Institutions","type":"folder"}}},{"name":"User management","item":[{"name":"Create new user","id":"951a093d-059a-4868-880d-a47bc2d39995","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"userId\": \"jb001\",\n \"firstName\": \"Joe\",\n \"lastName\": \"Blogs\",\n \"dob\": \"1975-05-01\",\n \"residenceCountry\": \"US\",\n \"nationality\": \"US\"\n}","options":{"raw":{"language":"json"}}},"url":"{{HOST}}/user","description":"Create new user is used to create a new User Registration for an existing User within a partner's systems. The User Id that is associated with user in the partner's systems should be specified in the request body along with the relevant user details as stated in the Field Information table.
\nField Information
\nResponse Codes
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","name":"Transaction Protection for Institutions","type":"folder"}},"urlObject":{"path":["user"],"host":["{{HOST}}"],"query":[],"variable":[]}},"response":[{"id":"aaab9fa0-4833-4654-bc35-6ab313a66f8f","name":"Create new user","originalRequest":{"method":"POST","header":[{"key":"Content-Type","name":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"userId\": \"jb001\",\n \"firstName\": \"Joe\",\n \"lastName\": \"Blogs\",\n \"dob\": \"1975-05-01\",\n \"residenceCountry\": \"US\",\n \"nationality\": \"US\"\n}","options":{"raw":{"language":"json"}}},"url":"https://api.txm.coincover.com/user"},"status":"Created","code":201,"_postman_previewlanguage":null,"header":null,"cookie":[],"responseTime":null,"body":""}],"_postman_id":"951a093d-059a-4868-880d-a47bc2d39995"},{"name":"Update existing user","id":"65b54b64-fc06-4d42-b665-838e0c879d8b","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"PATCH","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"firstName\": \"Joe\",\n \"lastName\": \"Blogs\",\n \"residenceCountry\": \"US\"\n}"},"url":"/user/${userId}","description":"Field Information
\nResponse Codes
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","name":"Transaction Protection for Institutions","type":"folder"}},"urlObject":{"path":["user","${userId}"],"query":[],"variable":[]}},"response":[{"id":"c04c0b2d-f7d0-416c-bb1a-198d1052e108","name":"Update existing user","originalRequest":{"method":"PATCH","header":[{"key":"Content-Type","name":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"firstName\": \"Joe\",\n \"lastName\": \"Blogs\",\n \"residenceCountry\": \"US\"\n}","options":{"raw":{"language":"json"}}},"url":"https://api.txm.coincover.com/user/jb001"},"status":"No Content","code":204,"_postman_previewlanguage":null,"header":null,"cookie":[],"responseTime":null,"body":""}],"_postman_id":"65b54b64-fc06-4d42-b665-838e0c879d8b"}],"id":"93131683-c006-46f3-b514-94fec6acf3eb","description":"Overview
\nThis section contains APIs that are used to create and manage user registrations.
\n","_postman_id":"93131683-c006-46f3-b514-94fec6acf3eb","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","name":"Transaction Protection for Institutions","type":"folder"}}},{"name":"Business management","item":[{"name":"Create new business user","id":"9290559f-ce4b-449e-8d9e-381186d18066","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"businessId\": \"jb001\",\n \"name\": \"Company Name\",\n \"address\": \"13 Gerrard St\",\n \"registrationNumber\": \"12345-6789\",\n \"contactPersonName\": \"Joe Blogs\",\n \"contactPersonEmail\": \"joe@company.com\",\n \"contactPersonPhone\": \"+447822000000\"\n}","options":{"raw":{"language":"json"}}},"url":"/business","description":"Create new user is used to create a new User Registration for an existing User within a partner's systems. The User Id that is associated with user in the partner's systems should be specified in the request body along with the relevant user details as stated in the Field Information table.
\nField Information
\nResponse Codes
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","name":"Transaction Protection for Institutions","type":"folder"}},"urlObject":{"path":["business"],"query":[],"variable":[]}},"response":[{"id":"c0e3b31b-ef8f-4227-bc08-90b7f7694914","name":"Create new business user","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json"},{"key":"Authorization","value":"Bearer ${API_TOKEN}"}],"body":{"mode":"raw","raw":"{\n \"businessId\": \"jb001\",\n \"name\": \"Company Name\",\n \"address\": \"13 Gerrard St\",\n \"registrationNumber\": \"12345-6789\",\n \"contactPersonName\": \"Joe Blogs\",\n \"contactPersonEmail\": \"joe@company.com\",\n \"contactPersonPhone\": \"+447822000000\"\n}"},"url":"https://api.txm.coincover.com/business"},"_postman_previewlanguage":null,"header":null,"cookie":[],"responseTime":null,"body":null}],"_postman_id":"9290559f-ce4b-449e-8d9e-381186d18066"},{"name":"Update existing business user","id":"4bf7f352-a300-41ff-8a78-03f99bdf8ba0","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"PATCH","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"name\": \"Company Name\",\n \"address\": \"72 Horseferry Rd\",\n \"registrationNumber\": \"12345-6789\",\n \"contactPersonName\": \"Joe Blogs\",\n \"contactPersonEmail\": \"joe@company.com\",\n \"contactPersonPhone\": \"+447822000000\"\n}"},"url":"/business/${businessId}","description":"Field Information
\nResponse Codes
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","name":"Transaction Protection for Institutions","type":"folder"}},"urlObject":{"path":["business","${businessId}"],"query":[],"variable":[]}},"response":[{"id":"9183e9cb-7095-4b9a-84f3-b4256a842a18","name":"Update existing business user","originalRequest":{"method":"PATCH","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"name\": \"Company Name\",\n \"address\": \"72 Horseferry Rd\",\n \"registrationNumber\": \"12345-6789\",\n \"contactPersonName\": \"Joe Blogs\",\n \"contactPersonEmail\": \"joe@company.com\",\n \"contactPersonPhone\": \"+447822000000\"\n}"},"url":"https://api.txm.coincover.com/business/${businessId}"},"_postman_previewlanguage":null,"header":null,"cookie":[],"responseTime":null,"body":null}],"_postman_id":"4bf7f352-a300-41ff-8a78-03f99bdf8ba0"}],"id":"19214cf6-c6a4-466d-af70-276fd401bf50","description":"Overview
\nThis section contains APIs that are used to create and manage business registration.
\n","_postman_id":"19214cf6-c6a4-466d-af70-276fd401bf50","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","name":"Transaction Protection for Institutions","type":"folder"}}},{"name":"Transaction Check","item":[{"name":"Check Transaction","id":"2f8ccb87-7213-4208-bd32-fb38b45898c4","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}"},"url":"{{HOST}}/transaction","description":"Transactions should be sent to CoinCover before they are published or broadcast to the blockchain.
CoinCover requires core elements of a blockchain transaction including the transaction Hash* which allows CoinCover to reconcile this for any published transactions.
*For Fireblocks customers who are unable to provide a transaction Hash, a unique reference for the transaction can be submitted in place of the transaction Hash, from the /v1/transaction Fireblocks endpoint (please see the Fireblocks Field Information table).
Transactions need to be associated to a wallet and an end-user.
\n*For Fireblocks customers who need to provide a walletId, the tuple of the vaultId and assetId can be provided as the walletId in the form of ${vaultId}-${assetId} (please see the Fireblocks Field Information table).
\nThe chain and coin/token type needs to be defined.
\nNote that tokens must be supported contractually and the list of token names can be found at https://www.coingecko.com/en/api/documentation
\nField Information
\nFireblocks Field Information
\nOnly applicable to customers who have assets on Fireblocks.
\nHTTP Status Codes
\n","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","name":"Transaction Protection for Institutions","type":"folder"}},"urlObject":{"path":["transaction"],"host":["{{HOST}}"],"query":[],"variable":[]}},"response":[{"id":"c12e9b41-7982-41f2-a27a-e41f03a3883c","name":"200 - OK","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"3d0ee9d3-4d85-5c8e-af77-3bc9feec83f2\",\n \"status\": \"GREEN\",\n \"message\": \"Transaction is protected by CoinCover.\"\n}"},{"id":"c77d830f-3c6e-46c4-ab53-bdd2104b517f","name":"200 - OK (50202)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"45bf9605-e388-5636-8949-9598ea872c3e\",\n \"status\": \"RED\",\n \"code\": \"50202\",\n \"message\": \"The destination wallet address is suspected to be involved with malicious behaviour.\",\n \"meta\": {\n \"category\": \"SUSPECTED_MALICIOUS_ADDRESS\",\n \"providerCategory\": null,\n \"blocklistedAddress\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\"\n }\n}"},{"id":"b6617fea-f5e5-4bdb-afd4-0b9bb1513407","name":"200 - OK (50102)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"c1ed3a7d-37ca-587c-b8b0-fe5ce018f2ad\",\n \"status\": \"RED\",\n \"code\": \"50102\",\n \"message\": \"The destination wallet address has previously been associated with reported scam.\",\n \"meta\": {\n \"category\": \"SCAMMING_ADDRESS\",\n \"providerCategory\": \"Scamming\",\n \"blocklistedAddress\": \"0x5B2b8b9c674e67F718BB54Cc62C2a2E13308229d\"\n }\n}"},{"id":"8908b825-da04-4491-9b47-0431ffdfeec9","name":"200 - OK (50307)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"5e78aaaf-adae-5348-83e4-108879cc98a8\",\n \"status\": \"RED\",\n \"code\": \"50307\",\n \"message\": \"The transaction amount breaches the maximum daily amount for your organisation.\",\n \"meta\": {\n \"tokenAmount\": 100,\n \"usdAmount\": 34801,\n \"usdLimit\": 5000,\n \"amountBreachedBy\": \"$29,801.00\"\n }\n}"},{"id":"173b9266-d7f7-41d4-8389-97ef97208fda","name":"200 - OK (50106)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"c1ed3a7d-37ca-587c-b8b0-fe5ce018f2ad\",\n \"status\": \"RED\",\n \"code\": \"50106\",\n \"message\": \"The destination wallet address has previously been associated with blackmail activities.\",\n \"meta\": {\n \"category\": \"BLACKMAIL_ACTIVITIES\",\n \"providerCategory\": \"blackmail scam\",\n \"blocklistedAddress\": \"3NMn7e4tvH8fsbLrsGx5h1ZDHSpv3t8n6d\"\n }\n}"},{"id":"4fdc6caf-1214-4c58-8b2b-629efa2d613a","name":"200 - OK (50102)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"bitcoin-cash\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"OK","code":200,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"transactionUUID\": \"23f94b8b-e68e-57ff-bf67-3670900768ce\",\n \"status\": \"RED\",\n \"code\": \"50102\",\n \"message\": \"The destination wallet address has previously been associated with reported scam.\",\n \"meta\": {\n \"category\": \"SCAMMING_ADDRESS\",\n \"providerCategory\": \"Scamming\",\n \"blocklistedAddress\": \"0xCE04bB02c933bdAd15c2397b09AF2717CA581327\"\n }\n}"},{"id":"ed0ec4c9-7d33-4dcf-bfda-57032fc4f0a6","name":"400 - Bad Request (Unsupported)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"invalid\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"Bad Request","code":400,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"statusCode\": 400,\n \"error\": \"Bad Request\",\n \"message\": \"Coin XTZ_ETHERLINK is unsupported at this time\"\n}"},{"id":"c8d0457d-e527-4028-9a2d-d31186942746","name":"400 - Bad Request (Unrecognised)","originalRequest":{"method":"POST","header":[{"key":"Content-Type","value":"application/json","type":"text"},{"key":"Authorization","value":"Bearer ${API_TOKEN}","type":"text"}],"body":{"mode":"raw","raw":"{\n \"transactionCustomerId\": \"b27f38b9-5158-4b4b-ae2f-a030852f98cd\",\n \"transactionHash\": \"GL8636339870050078\",\n \"coin\": \"invalid\",\n \"walletId\": \"1FjgpyeeWTRd7BxTXHEL2rjCj8\",\n \"outputs\":[\n {\n \"destination\": \"16bG5v7VkCeadwzyD1CqAvL6soJ3nfGAhh\",\n \"amount\": \"356\",\n \"userId\": \"27a73667-fb36-4708-822f-8b2c79cb817e\"\n }\n ]\n}","options":{"raw":{"language":"json"}}},"url":"/transaction"},"status":"Bad Request","code":400,"_postman_previewlanguage":"json","header":[{"key":"Content-Type","value":"application/json","description":"","type":"text"}],"cookie":[],"responseTime":null,"body":"{\n \"statusCode\": 400,\n \"error\": \"Bad Request\",\n \"message\": \"Unrecognised coin name provided. The coin you entered is currently not supported. Please verify the coin_id format or try another coin_id. For further assistance, kindly contact our support team. Thank you.\"\n}"}],"_postman_id":"2f8ccb87-7213-4208-bd32-fb38b45898c4"}],"id":"354885a7-c957-47c6-8f9e-79dd5dd294e0","description":"Transactions should be sent to the Risk Engine before they are broadcast to the blockchain.
\nFor each transaction checked, CoinCover will provide a response indicating whether the transaction is 'Green' (protected by CoinCover) or 'Red' (not protected by CoinCover). 'Red' responses will contain the relevant reason code and description.
\nThreat Detected Codes
\n","event":[{"listen":"prerequest","script":{"id":"ebe683bf-9a9f-4728-8247-b0c8769b59e7","type":"text/javascript","exec":[""]}},{"listen":"test","script":{"id":"d31a8602-fd1d-4774-8ab6-00300cd5ecb6","type":"text/javascript","exec":[""]}}],"_postman_id":"354885a7-c957-47c6-8f9e-79dd5dd294e0","auth":{"type":"noauth","isInherited":true,"source":{"_postman_id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","name":"Transaction Protection for Institutions","type":"folder"}}}],"id":"3d672221-6065-4e2c-a12a-59191fc9c0d8","description":"Transaction screening and monitoring for protected wallets
\nCoinCover protects your wallets and workspaces by actively monitoring and validating outgoing transaction events.
\nDuring various transaction stages, we'll promptly notify you that a transaction is protected by CoinCover or of any potential threats and suspicious activity, ensuring robust protection at all times.
\nIntegration methods
\n- \n
Screening and monitoring API: Use our API to directly send transaction details and receive responses within milliseconds. This allows for real-time monitoring and immediate feedback on each transaction's protected status.
\n \nPartner connections guide: Implement event-based monitoring by configuring webhooks with your preferred wallet service provider. Our guides include specific setup instructions for:
\n \n
- \n
Bitgo
\n \nFireblocks
\n \nForDeFi
\n \n
Enabling CoinCover Transaction Protection and ReCOVER services on BitGo
\nCreating a read-only API token and adding Webhooks, which only has access to protected wallets, is required to enable protection services for BitGo wallets.
\nThis process creates a dedicated BitGo user account with viewer access to covered wallets and then adds a viewer only API token.
\nStep 1: Create a viewer account and add Viewer API token to existing BitGo Account
\n- \n
Create a new BitGo user, specifically for the purpose of CoinCover monitoring
\n \nIf using a BitGo Enterprise account, add the user to the enterprise and get any approvals required to make it available to add to wallets
\n \nFor each covered wallet, add the dedicated user as a Viewer, again, ensuring any approvals for such actions are completed
\n \nLog in as the dedicated user
\n \n
Step 2: Add Viewer API token to existing BitGo Account
\n- \n
In the BitGo console, under the user in the top right-hand corner, click on Account Settings
\n \nSelect Developer Options
\n \nClick on the plus sign next to Access tokens
\n \nSet the token label to:
\nCoincover Monitoring Token\nLeave the duration as
\n315360000\nCopy the following 5 IP addresses into the box:
\n
18.133.68.226,3.11.149.135,3.11.127.247,18.169.123.165,18.169.110.69
Note a ‘,’ is left between each ip address. \nRemove any tokens specified under Lifetime Spending Limits using the ‘x’ to the left of each option
\n \nSet Permissions to View
\n \nWhen ready, check the box next to I agree and click on Add Access Token
\n \nOnce clicked, you will be prompted for your 2FA device to authenticate the token creation
\n \n
Step 3: Add a Webhook to each wallet protected by CoinCover
\n- \n
In the BitGo console, select a wallet and navigate to the Settings tab.
\n \nScroll towards the end of the page and click \"+ Add Webhook\".
\n \nProvide a name for the Webhook and select \"Transactions\".
\n \nAdd the relevant URL which CoinCover will generate and send to you, containing a unique token reference for your organisation.
\n \nExample format below:
\n \n
- \n
Check the services agreement and then Add Webhook.
\n \nRepeat Step 3 for each wallet protected by CoinCover.
\n \n
Enabling CoinCover protection services on Fireblocks
\nCreate a read-only API user, which has read-only access to specified vaults in a Fireblocks workspace.
\nConfigure the webhook URL on the Fireblocks console which is required to provide CoinCover with a view of completed transactions.
\nStep 1: Add a New API User to Fireblocks and Securely Send the API Key to CoinCover
\nTo provide CoinCover with read-only access to the relevant data on Fireblocks, you will need to complete the following steps to add a new API user on the Fireblocks console.
\n- \n
Follow this Fireblocks guide to Add a new API user.
\n \nName the new user with a relevant name e.g. ‘CoinCover’
\n \nSelect the Role as ‘Viewer’ from the dropdown list
\n \n
Please note: if you wish to use IP address whitelisting then please follow this Fireblocks guide to Whitelist IP addresses for API requests and use those listed below:
\n- \n
- Attach the .csr file provided by CoinCover: \n
Please note: the new user will need to be approved on Fireblocks by someone with the relevant permissions in your organisation.
\n- \n
Once you have set up the new API user, navigate to the Users tab, where you should see the new API user in the list.
\n \nClick the key icon next to the API username as shown in the above image to Copy the API key.
\n \nThen share this API key securely with a member of the Solutions Engineering team at CoinCover.
\n \n
Step 2: Ensure Webhooks are Enabled
\n- \n
Check that Webhooks are enabled by:
\n \nLogin into your Fireblocks console
\n \nNavigate to the console settings from the avatar dropdown menu
\n \nOn the General tab, look for the Configure Webhook URL section to validate webhooks are enabled
\n \nIf you do not see the Configure Webhook URL section under the general tab, then they are not enabled, and you will need to Contact Fireblocks requesting that webhooks are enabled on your workspace
\n \n
Step 3: Configure Webhook URL
\n- \n
On the Fireblocks Console > Avatar > Drop down menu > Navigate to settings > General (following the same instructions as in step 1)
\n \nIn the Configure Webhook URL section, select the Manage URL button
\n \nAdd the relevant URL which CoinCover will generate and send to you, containing a unique token reference for your organisation.
\n \nExample format below:
\n \n
- \n
- Press ‘Save’ \n
Once the above steps have been completed, a member of the Solutions Engineering team at CoinCover will validate the connection.
\n","_postman_id":"aa52190b-5274-42c6-99a7-c0edff7c78ab"},{"name":"ForDeFi","item":[],"id":"90b3e246-6618-4992-9dcf-4c7cf000496f","description":"ForDeFi Integration with CoinCover
\nStep 1: Create an API User on ForDeFi
\n- \n
Log in to your ForDeFi account.
\n \nNavigate to the User Management area and click “+ Add Users”.
\n \nSelect the API user tab.
\n \nName the new API user something relevant like 'CoinCover API'.
\n \nGenerate the API key for this user and securely store it.
\n \n
![](\"https://lh7-us.googleusercontent.com/docsz/AD_4nXeJeFkE7WmjoJV7_xOMtaGQ8n8AWtm4sUVX__McdubgX_3D_yxjt7Ria0P-Mx9XsFS-zIk7dP5SxNCEUpGbbztOXRwx12pysnDwlo7PN8tOFPmpzHneNsZQuk_Q2gmdqDz2j9euqOR2jAFmN6nsLHrVsqTq?key=Q0w5Esf3XlRC38ZFPJXebQ\")
\n\nStep 2: Create a Rule for the API User on ForDeFi
\n![](\"https://lh7-us.googleusercontent.com/docsz/AD_4nXcUniQd8pxEgh3WIF40DkvmNmujH6cO0CE-KdYODJ15olpOHtmzDAR-iIrYrM5C8Oh4XwhKm-wnvnpSNDItF9Sg-XI_NVjm4vzZ3FsvklNiyUUM5rwNMGukm_SVM9EwAuEJ9fO1xZwZ_KApdmxRszcuE8LH?key=Q0w5Esf3XlRC38ZFPJXebQ\")
\n\n- \n
Create a new transaction policy rule with an appropriate name like ‘CoinCover Read-only’.
\n \nIn the ‘Source’ section, select the CoinCover API user previously created as the initiator.
\n \nLeaving everything else as default, in the ‘Action’ section, select ‘Block’.
\n \nThen ‘Save’.
\n \n
Note: This ensures that the CoinCover API user is blocked from performing any actions on your ForDeFi account.
\n![](\"https://lh7-us.googleusercontent.com/docsz/AD_4nXfa3iLkSXwzRsHJM-Dp5JugVWUb2poPBqw2yFPFB3bXATu37EWAPYWAq5AScinUjKVdz5ADwc3uXHaDxwt1bj0rV_UonR8RE2lEbjHLIfq0lgfH8IAUoOfCVE1NKas5PPsQ1gx0v2tN9-rM8OHA_dQnrS8?key=Q0w5Esf3XlRC38ZFPJXebQ\")
\n\nImportant note: You must ensure that in all policies you have selected a specific group of users to be approvers, rather than leaving the default “Any“. The ‘CoinCover API user must be excluded from all lists of approvers on other Transaction Policies in order to prevent CoinCover from having the ability to approve/reject the signing of a transaction. This aligns with ForDeFi’s general recommendations for transaction policies.
\nStep 3: Share API Key with CoinCover
\n- \n
- Contact CoinCover's Solutions Engineering team and securely share the API key you generated for the 'CoinCover' API user. \n
Step 4: Configure Webhook URL on ForDeFi
\nIn this section, we will configure webhooks in order to provide CoinCover with transaction events so that CoinCover can be notified of transaction events occurring in your account and protect your transactions.
\n![](\"https://lh7-us.googleusercontent.com/docsz/AD_4nXfvtSVrEn1qEUR7nuqqkUhxccl48vPySsQvRoivfI5qfT1hpNjTRY8ZTZqGdO-NVm1Sf9TK-XvtBf3EwswDxkFhvl55SnKWW1WhzWIhFaZYjxKtwZgu29jpJEI17_ZFkvBH6MOZokjubXkqCPGAAThd7LfJ?key=Q0w5Esf3XlRC38ZFPJXebQ\")
\n\n- \n
In your ForDeFi account, navigate to the settings area.
\n \nSelect the Webhooks tab and click Configure webhook.
\n \nPopulate the ‘Callback URL’ with the URL provided to you by CoinCover.
\n \n
![](\"https://lh7-us.googleusercontent.com/docsz/AD_4nXcfqWkOXXgwHBCd-5MCsx3a91oYhTJntgRAueRfbFejQa6E6QPB22-Y30VOgJFpGV11_x0nuejM9_6D9wfPkm-crWSwoN5dUA9WCzM2RsFB_yn-lwThqvhrwChgVmj6rutByaOEktzHxuSbZtz4ECRgU89M?key=Q0w5Esf3XlRC38ZFPJXebQ\")
\n\n- \n
Choose the ‘Transactions’ event trigger.
\n \nClick ‘Test webhook’ to ensure the webhook URL is valid.
\n \nSave the webhook configuration.
\n \n
Step 5: Validate Connection
\nOnce you have completed the above steps, a member of the CoinCover team will validate the connection and ensure that CoinCover's protection services are seamlessly integrated with your ForDeFi platform.
\nIf you encounter any issues or need further assistance during the integration process, please don't hesitate to reach out to CoinCover's support team for prompt assistance.
\n","_postman_id":"90b3e246-6618-4992-9dcf-4c7cf000496f"}],"id":"4bca44ea-7e9d-4e46-bb56-842e6daff3e8","description":"How our partner connections work.
\nTo ensure the comprehensive monitoring and protection of your digital assets, it is essential for CoinCover to integrate with your chosen wallet service providers, referred to as 'Partners'. By establishing this connection, CoinCover gains the ability to view transaction events and monitor ongoing activities of your digitial assets. This integration is crucial for providing real-time security alerts and proactive screening of transactions to prevent unauthorised movement of funds and potential threats.
\nWhy connect your wallet service provider?
\nConnecting your wallet service provider with CoinCover allows us to:
\n- \n
Monitor transaction events: We track all transactions in real-time, ensuring that any suspicious activity is identified and addressed promptly.
\n \nProtect digital assets: Our systems provide layers of security to protect your funds, with the option to provide additional checks prior to moving funds.
\n \nView ongoing activity: By having visibility into the ongoing activity on your wallets, CoinCover can further enhance threat detection models based on your organisation's activity and offer insights with recommendations to adjust your claim limits to remain fully protected.
\n \n
How to Connect?
\nTo initiate this process, you will need to configure your wallet service provider to allow CoinCover access. This typically involves generating read-only API users and setting up specific permissions that enable us to receive transaction data without compromising the control or security of your assets.
\n","_postman_id":"4bca44ea-7e9d-4e46-bb56-842e6daff3e8"}]}