FiaXY Bazik Backend
Secure payment processing backend for FiaXY card services
System Status
Checking...
API Endpoints
Available backend routes
POST/api/create-payment
Creates a MonCash payment via Bazik API and returns the redirect URL
POST/api/webhook/bazik
Receives and verifies Bazik webhook notifications for payment confirmations
GET/api/health
Health check endpoint to verify backend configuration
Security Features
- HMAC-SHA256 webhook signature verification with timing-safe comparison
- Zod schema validation on all incoming requests
- In-memory rate limiting (10 requests/minute per IP)
- CORS restricted to allowed origin only
- Secrets never exposed to client, masked in logs
- Secure token caching with expiry margin