Laravel SDK
Official Laravel SDK for OxaPay — accept crypto payments, exchanges, and payouts.
Frameworks: Laravel 8–12 PHP: 8.0+ (Laravel 8–9) / 8.1+ (Laravel 10) / 8.2+ (Laravel 11–12)
Installation
composer require oxapay/oxapay-laravelPublish config/oxapay.php
config/oxapay.phpphp artisan oxapay:installYou can use
--forceflag to overwrite config from package
Service provider and facade are auto-discovered.
Add your keys to .env or update oxapay config:
.env or update oxapay config:OXAPAY_MERCHANT_KEY=your_merchant_api_key
OXAPAY_PAYOUT_KEY=your_payout_api_key
OXAPAY_GENERAL_KEY=your_general_api_keyYou can define multiple slots.
Quick start
use OxaPay\Laravel\Support\Facades\OxaPay;
// via facade
$res = OxaPay::payment()->generateInvoice([
'amount' => 10.5,
'currency' => 'USDT'
]);
// via helper
$res = oxapay()->payment()->generateInvoice([
'amount' => 10.5,
'currency' => 'USDT'
]);
// key is optional and use default key from config if no passed
$res = OxaPay::payment('key_2')->generateInvoice([
'amount' => 10.5,
'currency' => 'USDT'
]);
// or use raw key
$res = OxaPay::payment("XXXXXX-XXXXXX-XXXXXX-XXXXXX")->generateInvoice([
'amount' => 10.5,
'currency' => 'USDT'
]);Handling Webhooks (Payments & Payouts)
use OxaPay\Laravel\Support\Facades\OxaPay;
try{
$res = OxaPay::webhook()->getData();
// ...
}catch (WebhookSignatureException $e) {
// ...
}
// or you can get data without verify HMAC
$res = OxaPay::webhook()->getData(false);Available methods
🔹payment
generateInvoice– Create invoice & get payment URL. More detailsgenerateWhiteLabel– White-label payment. More detailsgenerateStaticAddress– Create static deposit address. More detailsrevokeStaticAddress– Revoke static address. More detailsstaticAddressList– List static addresses. More detailsinformation– Single payment information. More detailshistory– Payment history list. More detailsacceptedCurrencies– Accepted currencies. More details
🔹account
balance– Account balance. More details
🔹payout
generate– Request payout. More detailsinformation– Single payout information. More detailshistory– Payout history list. More details
🔹exchange
swapRequest– Swap request. More detailsswapHistory– Swap history. More detailsswapPairs– Swap pairs. More detailsswapCalculate– Swap pre-calc. More detailsswapRate– Swap Quote rate. More details
🔹common
prices– Market prices. More detailscurrencies– Supported crypto. More detailsfiats– Supported fiats. More detailsnetworks– Supported networks. More detailsmonitor– System status. More details
🔹webhook
verify– ValidatesHMACheader (sha512 of raw body).getData– ValidatesHMACheader and return webhook data. More details
Exceptions
All SDK exceptions extend OxaPay\Laravel\Exceptions\OxaPayException:
ValidationRequestException(HTTP 400)InvalidApiKeyException(HTTP 401)NotFoundException(HTTP 404)RateLimitException(HTTP 429)ServerErrorException(HTTP 500)ServiceUnavailableException(HTTP 503)HttpException(network/unknown)MissingApiKeyException(missing api key)MissingTrackIdException(missing track id)MissingAddressException(missing address)WebhookSignatureException(bad/missing HMAC)WebhookNotReceivedException(webhook request was not received)
Security Notes
Verify webhook HMAC before use input data.
Whitelist OxaPay IPs on your firewall (ask support).
Use HTTPS everywhere.
Store keys in
.env, not code.Rotate keys regularly.
Testing (safe & offline)
This package uses Pest, PHPUnit, and Orchestra Testbench for testing.
Dependencies are already listed under require-dev in composer.json.
Run tests with composer:
composer testRun tests with pest:
vendor/bin/pestCompatibility
Laravel 8–9 → PHP 8.0+
Laravel 10 → PHP 8.1+
Laravel 11–12 → PHP 8.2+
Security
If you discover a security vulnerability, please email [email protected]. Do not disclose publicly until it has been fixed.
Contributing
Pull requests are welcome. For major changes, open an issue first. Run coding standards & static analysis before PR:
composer cs-fix
composer phpstan
composer testLicense
Apache-2.0 — see LICENSE.
Changelog
See CHANGELOG.md for version history.
To view the OxaPay package on Packagist:
Last updated