Register Application
Learn how to register an application to obtain client_id and client_secret from SePay.
How to Register an Application
Before starting the OAuth2 integration, you need to register your application on SePay to obtain the client_id and client_secret. These credentials are required to perform OAuth2 authentication.
NoteCurrently, you cannot create an application by yourself.
You must contact SePay for approval and to have the application created under your account.Steps to register an application:
- Step 1: Log in to your SePay account.
- Step 2: Navigate to Account → OAuth Applications.
OAuth2 SePay - Step 3: Click the Create New Application button.
OAuth2 SePay 
OAuth2 SePay
Application Information
- When creating a new application, you must fill in the following information:
| Field | Description |
|---|---|
| Application Name | The display name of your application. Users will see this name when asked to grant access. |
| Requested Scopes | The permissions your application is requesting. Select only the scopes necessary for your app. |
| Redirect URL | The URL to which SePay will redirect the user after they approve or deny access. |
Scopes
- When registering an application, you need to select the scopes your app requires.
- The scopes include:
| Scope | Description | Permission |
|---|---|---|
bank-account:read | Access bank account information | View account list, balances, and account details |
transaction:read | Access transaction information | View transaction history, transaction details, and counts |
webhook:read | Access webhook information | View webhook list and individual webhook details |
webhook:write | Manage webhooks | Create or update webhooks |
webhook:delete | Delete webhooks | — |
profile | Access user information | View user personal profile |
company | Access company information | View detailed company information |
Request only the scopes that are truly necessary for your application.
Requesting excessive permissions may reduce the likelihood of users granting access.
Client ID and Client Secret
- After successful registration, the system will issue:
- Client ID: The public identifier of your application
- Client Secret: The secret key used to authenticate your application
The Client Secret is sensitive information and must be kept secure.
Do not share or expose the Client Secret in public source code or client-side applications.
- The Client ID and Client Secret will appear as shown below:
OAuth2 SePay
Managing Applications
After creating an application, you can manage registered ones from
Account → OAuth Applications, where you can:- Edit application information: update name and redirect URL
- Update scopes: modify the requested permissions
- Delete application: permanently remove the app and revoke all issued tokens
Next Steps
- After successfully registering your application and obtaining your Client ID and Client Secret, you are ready to implement the OAuth2 authentication flow.
Proceed to the Authentication Flow page to learn the next steps.