Branded payment pages
Use approved branding on 0Base payment pages without implying partner-owned infrastructure.
Branded payment pages build customer trust by making the payment surface look and feel like the merchant relationship, but branding must not hide the payment state machine. The page can be polished; the backend still owns amount, status, expiry, notifications, and settlement evidence.
0Base availability is account-gated. Build against capabilities, merchant status, environment mode, and settlement settings instead of assuming that every payment method, asset, network, cadence, or refund path is enabled for every merchant.
0Base product docs and API details
These pages are public product guidance for merchant and platform developers. 0Base endpoint-level API pages are not published for partners yet; use this product documentation to understand the workflow, records, and launch boundaries.
End-to-end picture
This flow is intentionally shown as product infrastructure: Brand settings -> Create checkout -> Render trusted page -> Customer pays -> Backend verifies -> Merchant fulfills. The merchant application can make the customer experience simple, but the backend should keep each step visible enough for retries, support, and finance closeout.
Production contract
| Boundary | What to build | Why it matters |
|---|---|---|
| Brand identity | Logo, merchant name, color treatment, domain expectations, and support contact must match the merchant. | Customers need to know who they are paying. |
| Payment clarity | Amount, currency, crypto currency, network, expiry, and status must remain readable. | Branding cannot obscure money instructions. |
| Trust boundary | Hosted UI may use public/client-safe values only. | Secrets and final state stay server-side. |
| Error states | Expired, failed, and pending states should be branded too. | Recovery feels coherent instead of broken. |
| Auditability | Brand configuration changes should be tracked. | Unexpected presentation changes become support issues. |
Status and state handling
| State | What it means | Developer action |
|---|---|---|
| Configured | Brand settings are saved and reviewed. | Can be used by checkout. |
| Rendered | Page displays the approved merchant identity. | Customer sees consistent trust signals. |
| Payment pending | Page shows honest pending state. | No false success. |
| Terminal | Page shows success, failure, or expiry. | Backend remains source of fulfillment truth. |
Status handling should be strict even when the customer UI is friendly. Store raw 0Base statuses, map them to customer-safe labels at the edge, and keep the merchant order state separate from the payment object state. That separation lets you change customer copy without corrupting reconciliation.
Example implementation record
This is an application-side record shape for branded payment pages. Keep exact request and response fields aligned with your enabled account contract when 0Base API access is released for your partner account; the point of this record is to keep product, support, and finance joined in your system.
{
"merchant_id": "mrc_2048",
"brand_profile_id": "brand_001",
"checkout_id": "chk_live_123",
"display_name": "Merchant Ltd",
"support_email": "payments@example.com",
"status_label": "Payment pending",
"backend_status": "processing"
}Operational scenario
A customer should not feel dropped into an unrelated crypto tool at the moment of payment. Branded pages let the merchant preserve trust while 0Base handles the object lifecycle behind the page.
In practice, production 0Base integrations make the happy path fast while keeping exceptions predictable: retries return the same object, delayed notifications can be repaired, expired sessions do not become mystery payments, and finance exports can be traced back to the original merchant order.
Before and after
| Before 0Base | With 0Base |
|---|---|
| Generic wallet instructions reduced trust. | The page carries merchant identity and payment clarity. |
| Brand copy promised instant completion. | Brand copy maps to real backend states. |
| Support contacts were missing from payment failures. | Failure pages include merchant-approved support routes. |
| A visual update changed payment wording. | Brand settings and checkout copy are reviewed together. |
Evidence to keep
| Evidence | What to store |
|---|---|
| Brand profile | Display name, logo reference, color tokens, support contact, allowed domains. |
| Checkout snapshot | Rendered amount, currency, crypto currency, network, expiry. |
| Copy review | Pending, success, failed, expired, and support wording. |
| Change history | Who changed brand settings and when. |
| Incident packet | Checkout id, page version, screenshot reference, current raw status. |
This evidence is what makes the integration supportable at institutional scale. A developer should not need private operational knowledge to answer basic questions such as what the customer saw, which object owns the state, which event announced the change, and which ledger or report row closed the money movement.
Failure modes and recovery
| Failure mode | Recovery |
|---|---|
| Logo or name mismatch | Disable checkout exposure until brand settings are corrected. |
| Customer reports phishing concern | Provide checkout id and merchant support proof path. |
| Text wraps or hides amount | Fix layout before launch and verify mobile states. |
| Failure page has no recovery | Add retry/support path tied to the original order id. |
Recovery should be idempotent and explainable. When the system is uncertain, preserve the current raw status, read the latest object state, attach a support reference, and avoid changing fulfillment or finance state until a trusted terminal condition is present.
API adjacency
| API area | Use it for |
|---|---|
POST /checkouts | Create branded checkout flow. |
GET /capabilities/payment_methods | Render only available methods. |
POST /checkouts/{id}/expire | Recover stale branded checkout sessions. |
GET /webhooks/deliveries | Trace state reflected on page. |
For endpoint-level implementation, use the API reference as the source of truth for fields, enums, authentication, idempotency behavior, pagination, and response examples.
Why this matters for merchants and customers
Branding matters at the moment of payment because customers need confidence that they are paying the right merchant. Strong branding paired with backend status discipline reduces abandonment and payment disputes.
At scale, the value of 0Base is not only that a payment can be created. The value is that the payment can be explained later: what the customer saw, which account capabilities allowed it, which backend state changed, which notification delivered it, and which ledger or report row closed it.
Worked API path
The example below shows the implementation shape for this page. Use merchant-specific capabilities, account settings, and API responses in production; the ids and values here are illustrative.
curl -X POST https://base-api-sandbox.0bit.app/v1/checkouts \
-H "Authorization: Bearer $OBIT_SECRET_KEY" \
-H "Content-Type: application/json" \
-H "Idempotency-Key: ord_100045:base:v1" \
-d '
{
"amount": "129.00",
"currency": "EUR",
"cryptoCurrency": "USDT",
"clientReference": "ord_100045"
}'Example response shape:
{
"checkout_id": "chk_test_123",
"status": "open",
"amount": "129.00",
"currency": "EUR",
"crypto_currency": "USDT",
"payment_intent_id": "pi_test_456",
"checkout_url": "https://checkout.0bit.app/c/chk_test_123",
"expires_at": "2026-06-28T21:00:00Z"
}Implementation checkpoints:
- Store your merchant reference before calling 0Base.
- Attach the returned object id to the same business record.
- Record the request id, idempotency key, raw status, and environment.
- Use webhook and report reads to repair delayed or missed state changes.
Data join map
This join map is the reason 0Base is infrastructure rather than a payment button. A merchant can change checkout UX, support tooling, or finance exports without losing the chain from customer action to backend state and settlement evidence.
Operator runbook
| Signal | Check first | Action |
|---|---|---|
| Customer reports payment not updating | Look up merchant order id, 0Base object id, raw status, and latest webhook delivery. | Read current object state before changing fulfillment. |
| Webhook delivery failed | Check delivery id, event id, attempts, last error, and handler logs. | Fix the handler, replay once, and dedupe by event id. |
| Finance cannot match a row | Compare client reference, intent id, settlement id, report period, and export row. | Move the item to reconciliation queue instead of closing by amount/date. |
| Customer paid but order is still pending | Check raw intent status, deposit-address status, confirmations, and latest report row. | Keep fulfillment pending until terminal success or documented manual review. |
The runbook should be available to support and finance teams before launch. A developer integration is not complete if only engineering can explain the state of a customer payment.
Developer checklist
- Review branding in sandbox and production domains.
- Keep payment instructions more prominent than decoration.
- Do not put secret or raw provider details in page code.
- Test all terminal and pending page states.
- Keep a change log for brand settings.
- Make support contact visible in failure recovery.