Softpay requires full end-to-end SSL encryption and being able to reach select domains.
General information
To use Softpay app the device is required to have an active and stable internet connection.
Connectivity test
On device a quick test would be to use e.g. https://packetstats.com/ while walking around with the device to ensure that there is continuous network coverage. Do note that this only provides a basic light-weight test for network coverage at that particular moment in time, but it is still better than nothing.
Radio based networking such as Cellular and WiFi
Firewall rules
As a minimum Softpay app must be able to contact the following domains outgoing on port 443:
- Sandbox:
api.sandbox.softpay.io
- Production:
api.softpayapp.io
- Sandbox & Production:
googleapis.com
Further we recommend opening port 443 for outgoing to:
- Sandbox & Production:
crashlytics.com
IP based rules?
Softpay does not offer IP-based rules for firewall allow-listing / white-listing. Please use domain-based rules.
Testing
Use curl with the verbose flag set to call the domains listed.
Example using api.softpayapp.io
:
curl -v https://api.softpayapp.io
Failure is defined by: "Failed to connect"
Success is defined by: "Connected to..."
Proxy
Softpay currently has limited proxy support and cannot be expected to work.
The proxy must support SSL pinning and will not work without.
By late 2025 Softpay is expected to feature full support for network interface defined proxy settings.
Testing
Use curl with verbose flag and proxy settings to get api.softpayapp.io
and look for the certificate details to verify that the Softpay certificate makes it all the way.
curl -v --proxy "http://proxy_server:proxy_port" https://api.softpayapp.io/
Replace proxy_server:proxy_port
with your proxy server IP and port.
Response should look like the following (at time of writing) and can be verified by visiting softpayapp.io in your browser and comparing the information.
* Server certificate:
* subject: C=DK; L=K�benhavn; O=Softpay ApS; CN=api.softpayapp.io
* start date: Jul 29 00:00:00 2025 GMT
* expire date: Aug 29 23:59:59 2026 GMT
* subjectAltName: host "api.softpayapp.io" matched cert's "api.softpayapp.io"
* issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
* SSL certificate verify ok.