The Management API is the administrative interface to the Orenda platform — customer management, manual operations, oversight, and configuration. It’s a separate surface from the customer-facing API, with its own audience and its own documentation (this site).
Not for frontend applications. The Management API is for backend administrative systems only — never call it from customer-facing apps, mobile apps, or any client-side code. For those, see the customer API docs.

Two ways to call it

The Management API supports two use cases, and most endpoints work with either:
  • System-to-system — a back-end integration authenticates with credentials and calls the API with no human in the loop (for example, provisioning identities or bulk operations).
  • Operator sign-in — a person signs in (with 2FA) and acts through an admin tool; the operator role and permission claims on their token authorise each call (details).
A small number of sensitive endpoints are only supported with an operator sign-in — each such endpoint says so on its page.

What you can do

Provision an identity

Create an identity and its application for your program with POST /identity.

Issuing cards for your users

End-to-end: create a user, onboard them, issue and fund a card.

Operator authentication

Sign in, roles, and permission claims.

Search

Find applications, accounts, transactions, cards, payments, charges — with CSV export.

Reports

Async report generation: transactions, customers, fees, MT940, and more.

Payment approvals

Review held payments and approve or reject them in bulk.

Acting on a customer

Accounts, payments, beneficiaries, and batches on a customer’s behalf (PCI / Compliance-approved workflows only).

Card operations

Issue, block/unblock, and limits.

Fees

Read the fee catalog and generate fee documents.

Access management

Operators, software users, customer invites, and access grants.

Webhooks

Events Orenda pushes to you, and signature verification.

Conventions

  • Base URL: https://api.next.orenda.finance — the same gateway as the customer API; what makes a call administrative is the operator role and permission claims on the token.
  • Send Authorization: Bearer <access_token> and x-program-id on every call (x-sandbox: true for the test environment).
  • Endpoint authorisation is claim-based (e.g. transactions.view, payments.create, reports.view) — each page notes what’s required.