eNor Dev Console

BCR FLAGS transfer365 … · lbtr … ·

Retail accounts from account-service. Use Use on a row to set session context for wallet and dev flows, or create a new account.

Account type

Customer

Status

Country

Operational

Loading accounts…

Get / Create Deposit Address `POST /api/wallet/deposits/address`

Account ID

Token

Chain

List Deposit Addresses `GET /api/wallet/deposits/addresses`

Account ID

Token Filter

Fill in account ID and click Load

List Deposits `GET /api/wallet/deposits`

Account ID

Status Filter

Page Size

Get Deposit by ID `GET /api/wallet/deposits/{id}`

Deposit ID

Fill in account ID and click Load

List Withdrawals `GET /api/wallet/withdrawals`

Account ID

Status Filter

Page Size

Get Withdrawal by ID `GET /api/wallet/withdrawals/{id}`

Withdrawal ID

Fill in account ID and click Load

Withdrawal trace across services/databases

End-to-end evidence for one withdrawal: wallet record, Fireblocks history, transaction-service records, ledger entries, ledger balances, and account balances.

Withdrawal ID

Choose a withdrawal and load full trace.

Rolling 24 hours, same as ensure_withdrawal_limit in wallet-service: statuses pending_approval → completed count toward the cap (failed / cancelled / rejected do not). Spent is the sum of usdt_cost (Binance USDT-equivalent notional — same numeric scale as a USD daily cap for stable pricing; not a different “currency” from USD). The daily cap is read from WITHDRAWAL_DAILY_LIMIT_USDT or WITHDRAWAL_DAILY_LIMIT_USD (must match wallet-service; if unset, 1000 — same as lib-limits).

Withdrawal limit usage `GET /api/withdrawal-limit-usage`

Account ID (exact)

Search in UUID

Sort

Min spent (USDT)

Max remaining (USDT)

Click Load to aggregate from the wallet DB

List Swaps `GET /api/wallet/swaps`

Account ID

Status Filter

Page Size

Fill in account ID and click Load

Create Swap `POST /api/wallet/swaps`

Account ID

From Token

From Chain

Amount (from)

To Token

To Chain

Min To Amount (optional)

Get Swap Quote `GET /api/wallet/swaps/quote`

Account ID

From Token

From Chain

To Token

To Chain

Amount

Binance Orders `GET /api/swap/orders`

Swap ID (optional — leave blank to load all)

Limit

Click Load to fetch Binance orders (optionally filter by Swap ID)

Ledger Entries `GET /api/ledger`

Account ID (optional)

Transaction ID (optional)

Page Size

Click Load to list ledger entries

Live Balances

Shows one row per (account, coin, reserve) that has ledger entries. Leave filter empty to include every account (e.g. operational 00000000…).

Balance filter — account (optional)

Max rows

Click "Load all balances" (or set an account filter)

Transaction service — `transactions` table

Direct read from the transaction-service Postgres database (same rows the service persists). Use TRANSACTION_DATABASE_URL if your DB name differs from transaction_service.

Account ID

Status

Type

Page size

Open this tab to load rows from transactions.

Project databases — tables and columns

Full schema read from configured backoffice DB connections. Column names are shown exactly as they exist in Postgres (no display formatting).

Filter (database/schema/table/column)

Open this tab to load full DB catalog.

Table data preview for testing

Load sample rows from any table using its real identifier names. This helps verify migrations and data shape quickly during manual testing.

Database

Schema

Table

Rows

Choose database/schema/table and click Load preview.

List Coins `GET /api/coin/list`

Type (optional)

Service (optional)

Country (optional)

Get Coin `GET /api/coin/get`

From list (after Load coins)

Coin ID (UUID)

Resolve Coin ID `GET /api/coin/resolve`

Code

Type

Network (optional for FIAT)

Resolve by Slug `GET /api/coin/resolve-by-slug`

Slug

Admin: Save Coin (Create or Update) `POST /api/coin/admin/update`

Name

Network (required)

Uses name + network as key: updates existing coin when found, creates a new one when not found.

Matched Coin ID (auto)

Optional fields (expand)

Code (optional)

Symbol (optional)

Decimals (optional)

Slug (optional)

Create Withdrawal `POST /api/wallet/withdrawals`

Account ID

Treasury vault (withdrawals)

Fireblocks vault withdrawals are sourced from this vault. Ledger ffffffff…ffff is the treasury ledger mirror.

Fireblocks vault ID —

Treasury deposit address —

On-chain address optional: set BACKOFFICE_TREASURY_DEPOSIT_ADDRESS in backoffice env (same process as FIREBLOCKS_TREASURY_VAULT_ID).

Treasury ledger account ID

Ledger balances (treasury)

Loading…

Operational account (ledger custody)

Company aggregate custody (debit-normal). Withdrawal balance checks use this ledger account.

Operational ledger account ID

Ledger balances (operational)

Loading…

Token

Chain

Amount

Destination Address

Get Withdrawal Quote `GET /api/wallet/withdrawals/quote`

Token

Chain

Amount

Fireblocks webhook log

Rows come from webhook_events in the wallet-service database — every payload received on POST /webhooks/fireblocks is stored for audit and replay (see wallet-service persist_webhook_event).

Event type contains

Page size

Open this tab to load saved webhooks.

User Management

Create passwordless users, list existing users, and manage MFA via user-service (port 50058). Dev creation uses the OTP bypass token.

Create Passwordless User

Create account

User Actions

User ID

Phone MFA (personal contact):

Register Phone on User (SMS notifications)

Sets phone_number on user-service (not account-service). Auto-verifies OTP in dev mode.

Phone (E.164)

User List (from DB)

Filter by email

Click Load to fetch users from user_service DB.

Account Management (Admin)

BackofficeAccountService (account-service :50052) — list, inspect, lock/suspend/reset PIN on accounts.

List Accounts

Status filter

Account Actions

Account ID

New Status

Reason

Reset PIN

Phone Number (E.164)

Reason

Special Accounts

Click "Load Operational & Treasury" above

Click Load Accounts above.

All Transactions (Backoffice)

BackofficeTransactionService — list, review, approve, cancel transactions. Review/Approve/Cancel require OTP (use "000000" in dev).

Dev account (DB)

User ID

Transaction ID

Limit

Click Load.

Account Transactions

Account ID

Enter account ID and click Load.

Review Transaction

Transaction ID

OTP (dev: 000000)

Approve Transaction

Transaction ID

OTP (dev: 000000)

Cancel Transaction

Transaction ID

OTP (dev: 000000)

Treasury & Operational

Treasury Transactions

Requires dev operator permissions. If you get "permission denied", go to and click "Grant All Permissions to Dev Operator".

Click Load.

Operational Transactions

Click Load.

BCR Institutions (config-service)

BCR participant banks for LBTR. config-service port 50060.

Click List to load institutions.

Create Institution

Name

Commercial Name

BIC (optional)

Prefix IBAN (4 digits)

Get / Update Institution

Institution ID (numeric)

Services Health

Live TCP + DB pool check for gRPC services. Ledger is a Kafka worker (process + migration + Kafka + ledger-db). Auto-refreshes every 15 s.

gRPC Services

Loading…

Databases

Loading…

Infrastructure

Loading…

Dev Operator Permissions

Grant all backoffice permissions to the dev operator (00000000-0000-0000-0000-000000000001). Required to access Treasury, Operational, and other permission-gated endpoints. Safe to run multiple times — auth-service is idempotent on grants.

Operational Flags

Kill switches for BCR payment rails. Changes are persisted to the user_service DB (global_feature_flags table) and published to Kafka topic operational.flags with key global.
Auto-refreshes every 5 seconds.

transfer365_enabled —

Enables inbound/outbound Transfer365 (BCR) payments.

lbtr_enabled —

Enables LBTR settlement rail (BCR Real-Time Gross Settlement).

Current state (from DB)

loading…

LBTR / BCR Mock Producer

Injects messages into Kafka to simulate the BCR network. transaction-service consumes lbtr.transfer.received and creates transactions.
Kafka broker: localhost:9093 · BCR REST mock: http://127.0.0.1:8088/api/bcr

① Inject Incoming Transfer (BCR → us)

Publishes to lbtr.transfer.received. transaction-service creates a new transaction and credits the account.

Transaction ID (blank = auto UUID)

Amount (cents — 10000 = $100.00)

Operation Type (tipo_operacion)

Payment Type Code (codigoTipoPago)

Debit Account (sender 6-digit BCR account)

Credit Account (our 6-digit BCR account)

Description / Concept (concepto, max 300)

Sender First Name

Sender Last Name

Receiver First Name

Receiver Last Name

Payment Detail (detallePago — optional, e.g. /REC/SALARY)

Traceable Reference (25 chars — blank = BCR-format auto YYYYMMDD089…)

② Inject Status Update (BCR → us)

Publishes to lbtr.status.incoming. Simulates BCR confirming or returning a transaction.

Transaction ID

New Status

Reason (optional)

Quick Scenarios

③ Track Resulting Transaction & All State Changes

Auto-watch (5s)

After injecting a transfer, see the created transaction, its status progression, ledger entries (debit/credit), and account balance changes. Auto-refreshes on status inject.

Inject a transfer above — the result will appear here automatically.

④ BCR Gateway — Outgoing Instructions Received

When lbtr-service processes an outgoing payment (e.g. a LBTR transfer our users send), it calls the BCR Java gateway at POST /api/lbtr/instrucciones. In dev, the backoffice mocks that gateway — all instructions land here.

Click Refresh to load.

Transfer365 Lab

Stepper · saldos origem/destino · Externo↔eNor

De (origem) · disponível

—

Selecione a origem

→

Para (destino) · disponível

—

Selecione o destino

1 · Origem 2 · Valor 3 · Destino

Origem — banco externo (simulado)

Quem envia o pacs.008 para a eNor (lado BCR).

BIC remetente

Conta débito (IBAN)

Nome

Sobrenome

File gateway Completar BCR (lab) Manter input/ Live refresh

output —

→

processed —

error —

📤 input/ — · archive —

📱 Transfer365 Mobile Registration

No account selected — pick one from the top bar or stepper.

Phone number E.164 format, e.g. +50372145000

▾ Aguardando confirmação na rede (mock)

Tesouraria (backoffice) e envios da carteira: aprovados com saldo em reserva e pacs.008 em input/, sem resposta BCR final. Confirmar na rede arquiva o pacs.008; depois aplique a resposta no stepper (aba Avançado ou Respostas BCR).

Só tesouraria

Carregando…

Pipeline

Run receive or send — steps appear here

▸ Scenarios (one-click flows)

INCOMING

OUTGOING

IDENTITY

▸ PACS message tester

Account

Amount ¢

Dry run — valida XSD (mesma regra do transfer365-service); nada é gravado em output/

▸ Advanced tools

Transfer365 Mock Producer

Injects messages into Kafka to simulate the Transfer365 network. transaction-service consumes transfer365.received and creates transactions.
Kafka broker: localhost:9093

Inject Received Transfer (transfer365.received)

Simulates Transfer365 sending an incoming payment. transaction-service will process and credit the account.

Transaction ID (blank = auto UUID)

Amount USD (cents, e.g. 10000 = $100.00)

Payment Type (ISO 20022 purpose code)

Debtor First Name (Nm)

Debtor Last Name (Ln)

Debtor 2º Nome (NmTw)

Debtor 2º Sobrenome (LnTw)

Creditor First Name (Nm)

Creditor Last Name (Ln)

Creditor 2º Nome (NmTw)

Creditor 2º Sobrenome (LnTw)

Creditor Doc Type

Creditor Document

Debtor Account (IBAN SV format)

Debtor Document (DUI / passport)

Creditor Account (IBAN SV format)

Creditor BIC

End-to-End ID (EndToEndId — blank = auto)

Description

Inject Status Update (transfer365.received.status)

Updates the transaction status in transaction-service via Kafka.

⚠ Expected behaviour: transfer365-service will log an error for mock-injected transactions because they bypass its internal file engine (redb has no record). This is harmless — transaction-service correctly processes the status update.

Transaction ID

New Status

Reason (optional)

Quick Scenarios

③ Track Resulting Transaction & All State Changes

Auto-watch (5s)

After injecting a transfer above, see the transaction created, its current status, ledger entries, and account balance. Auto-refreshes when you inject a status update.

Inject a transfer above — the result will appear here automatically.

Simulador de transferências

Ferramenta de testes (não é o sistema real do cliente). Serve para simular pagamentos que chegam do banco ou que a eNor envia, e ver se tudo foi processado certo.

Atualizar sozinha a cada segundo

Caminho recomendado: aba Simulador (batch BCR) · testes manuais em Fazer um teste · checklist em Relatórios de teste.

Resumo: quantos pagamentos estão em cada etapa. Número grande = quantidade de arquivos. Use Atualizar no topo.

Aguardando processar

—

Acabaram de chegar

Já processados

—

Tudo certo

Com erro

—

Não deu para processar

Saída para o banco

Quando a eNor envia ao banco

—

Últimos arquivos:

Simulador BCR unificado — cria transações reais (depósito + reserva + operacional), aplica respostas BCR (pacs.002 / pacs.004) e gera relatório pass/fail para todos os cenários da matriz. Pré-requisitos: stack local (transfer365-service, Kafka, transaction/ledger-service), seed dev, T365_APP_DIR igual no console e no serviço.

—Depósito disponível

—Depósito reservado

—Depósito total

—Atualizado

Ledger global (diagnóstico avançado)

—Pool em circulação

—Reserva espelho (global)

—Saldo bruto ledger

Não é saldo da conta. Conta operacional global (00000000-…) é débito-normal: saldo bruto negativo = fundos já implantados nas contas (esperado após top-ups e liquidações). Reserva espelho acompanha o depósito reservado da conta origem.

Depósito = account_balances (igual ao header/Lab). Disponível + reservado = total.

Configuração

Conta origem (outbound)

Valor por TX (centavos USD)

Destino externo (conta + banco)

Conta credora (inbound)

Modo processamento

Auto top-up se saldo insuficiente

Top-up (centavos)

Progresso

Pronto

Executar caso a caso Um caso de cada vez — valida configuração antes de correr

A carregar matriz…

Relatório

Execute a matriz para ver resultados.

Plano de cobertura Transfer365 — lista todos os cenários que devem ser executados para validar o simulador (inbound, outbound, BCR, fila pendente, regressões). Marque o status de cada execução e exporte o checklist (JSON, CSV, Markdown ou PDF). O Transfer365 Lab continua a gravar a sessão com XML; use a aba Simulador para batch automático ou marque manualmente aqui.

Clique « Atualizar matriz » para carregar o plano de testes.

Como usar: receber (esquerda) ou enviar (direita) — pills 1 · 2 · 3, como no Transfer365 Lab.

Receber (banco → eNor)

Crédito inbound (pacs.008 simulado).

1 · Conta 2 · Valor

Conta que recebe

Conta eNor que será creditada.

Nº conta (10 dígitos)

Enviar (eNor → destino)

Obrigatório: dry run lib-transfer-validate antes do envio real.

1 · Origem 2 · Destino 3 · Valor

Origem

Conta eNor que envia (reserva saldo).

ID conta

O que aconteceu no teste:

Ainda não há mensagens. Rode um dos testes acima.

Pedido e resposta

Situação: aguardando teste

1. Chegou aqui

—

→

2. Resposta

—

XML manual na aba .

Mensagens XML: mesmo fluxo em pills que Fazer um teste — inbound grava em output/ (XSD); outbound simula resposta do banco (pacs.002/004). Envio eNor (initiate/confirm) só na aba Fazer um teste com lib-transfer-validate.

Inbound — banco → eNor

Passos 1→2→3 · validação XSD (não é lib-transfer-validate).

1 · Modelo 2 · XML 3 · Enviar

1 · Modelo

Escolha o tipo e preencha os campos; depois gere o XML.

Tipo de mensagem

Outbound — resposta do banco

Passos 1→2→3 · após envio eNor na aba Fazer um teste.

Envio eNor: use — dry run lib-transfer-validate + initiate/confirm. Esta aba só simula a resposta do banco (pacs.002/004).

1 · Atalho 2 · Modelo 3 · XML

1 · Atalho

Resposta do banco sem colar XML (cenário + MsgId).

Cenário

MsgId original

Pedido e resposta

Situação: aguardando

1. Chegou

—

→

2. Resposta

—

Configure o que o BCR devolve ao eNor: pacs.002 (grupo ou liquidação), pacs.004 (devolução) ou atalho Kafka. Os XML gerados vão para output/. No fluxo tesouraria/carteira pendente, use Avançado (confirmar na rede → stepper abaixo da fila).

1 · Tipo 2 · Parâmetros 3 · Aplicar

Tipo de resposta

Escolha o formato ISO ou um preset nomeado.

Formato

Parâmetros

GrpSts

OrgnlMsgId (pacs.008 em input/)

OrgnlEndToEndId (sem hífens)

Valor (centavos USD)

Extensão arquivo

Aplicar resposta

Pré-visualize o XSD ou grave em output/.

Usar esta configuração como padrão no passo « Resposta BCR » do teste de envio (E2E)

Nenhuma pré-visualização ainda.

Nenhuma aplicação ainda.

Para backend / API externa: o simulador T365 no console expõe os mesmos fluxos via HTTP. Em produção a sua API chama transaction-service (gRPC) com sessão real; em dev use estas rotas do console (cargo run -p console → localhost:8088).

Base URL do console

1 · Catálogo de bancos (bank_code)

O bank_code no validate/initiate é o id desta lista — não o BIC.

curl -sS "$BASE/api/institutions" | jq .

2 · Dry run — lib-transfer-validate (obrigatório antes do envio)

Equivalente ao botão « Validar transferência » / Passo 1 do E2E. Substitua ACCOUNT_UUID, conta destino e bank_code.

curl -sS -X POST "$BASE/api/discovery/transfer/validate" \
  -H "Content-Type: application/json" \
  -d '{
  "account_id": "ACCOUNT_UUID",
  "coin_id": "00000000-0000-0000-0000-000000000000",
  "amount": 10000,
  "counterpart_type": "external",
  "name": "Beneficiary Test",
  "customer_type": 1,
  "account_type": 2,
  "account_number": "1010000007",
  "bank_code": 6,
  "document": "041234567"
}' | jq .

3 · Initiate + confirm (envio real no ledger)

Mesmo body do validate + description e channel. Guarde transaction_id da resposta do initiate.

curl -sS -X POST "$BASE/api/discovery/transfer/initiate" \
  -H "Content-Type: application/json" \
  -d '{
  "account_id": "ACCOUNT_UUID",
  "coin_id": "00000000-0000-0000-0000-000000000000",
  "amount": 10000,
  "counterpart_type": "external",
  "name": "Beneficiary Test",
  "customer_type": 1,
  "account_type": 2,
  "account_number": "1010000007",
  "bank_code": 6,
  "document": "041234567",
  "description": "curl test outbound",
  "channel": 1
}' | jq .

curl -sS -X POST "$BASE/api/discovery/transfer/confirm" \
  -H "Content-Type: application/json" \
  -d '{
  "account_id": "ACCOUNT_UUID",
  "transaction_id": "TX_UUID_FROM_INITIATE"
}' | jq .

4 · File gateway — injetar XML (BCR → eNor)

Validação XSD: /api/simulator/t365/validate. Envio: /api/simulator/t365/submit (grava em output/).

curl -sS -X POST "$BASE/api/simulator/t365/validate" \
  -H "Content-Type: application/json" \
  -d '{"xml":"<Document xmlns=\"urn:iso:std:iso:20022:tech:xsd:pacs.008.001.07\">...</Document>"}' | jq .

curl -sS -X POST "$BASE/api/simulator/t365/submit" \
  -H "Content-Type: application/json" \
  -d '{"xml":"...","processing_mode":"ift","dry_run":false}' | jq .

5 · Resposta do banco (pacs.002) após outbound T365

curl -sS -X POST "$BASE/api/simulator/t365/respond" \
  -H "Content-Type: application/json" \
  -d '{"scenario":"liquidate","original_msg_id":"MSGID_FROM_INPUT","amount":10000}' | jq .

Variável BASE (copiar/colar no terminal)

export BASE="http://localhost:8088"

Erro « Invalid bank code »? O bank_code não existe no catálogo ou config-service está parado. Confira com o passo 1. Conta origem: UUID em GET /api/accounts (aba Accounts) — o console cria sessão dev automaticamente para discovery.

Só para técnicos: formulários detalhados para criar cada tipo de mensagem bancária. Se não tiver certeza, use a aba Fazer um teste.

Aguardando confirmação na rede (mock)

Transferências outgoing aprovadas com saldo em reserva e pacs.008 em input/, mas ainda sem resposta BCR final. Passo 1: Confirmar na rede (arquiva o pacs.008). Passo 2: escolha a resposta no stepper abaixo (liquidação, RJCT, ACCP, etc.) e Aplicar resposta.

Carregando…

Tipo de mensagem:

💸

pacs.008 — FIToFI Credit Transfer

BCR sends us an incoming payment. T365 validates, emits transfer365.received Kafka event → transaction-service credits the account → sends pacs.002 ack to input/.

🏦 Debtor (sender — BCR side)

Sender BIC

Debtor Account

First Name (Nm)

Last Name (Ln)

2º Nome (NmTw)

2º Sobrenome (LnTw)

Document (DUI)

🏛 Creditor (us — eNor side)

Our BIC (creditor agent)

Creditor Account 10-digit internal number

First Name (Nm)

Last Name (Ln)

2º Nome (NmTw)

2º Sobrenome (LnTw)

Amount (cents USD — 10000 = $100.00)

Description

End-to-End ID (blank = auto)

Mode

🤖 Fallback BCR settlement pacs.002 — only fires if tx is still NOT liquidated after 15s (won't race with ledger path)

Why a fallback? Normally tx-service calls the ledger and gets Liquidated within ~1s. If the ledger times out (5s in tx-service) and we fired the auto-settle too early, the auto-settle would race: consume_transfer365 would try to update a DB row that doesn't exist yet → no-op → tx stuck at processed when the ledger eventually responds late and the response gets silently dropped (pending_results already cleared on timeout).
So this only injects after 15s of waiting, and only if the tx is not already liquidated.

↩️

pacs.004 — Payment Return

BCR returns a previously-sent payment. T365 calls handle_incoming_return and publishes a Kafka status update.

Original MsgId (outbound pacs.008)

Original EndToEndId

Return Reason (ReturnReason from lib-bcr)

Amount (cents USD)

Mode

📋

pacs.002 — Payment Status Report

BCR sends a status update for an outgoing pacs.008 we previously sent. Two formats: Group Status (ACCP/RJCT/PNDG → OrgnlGrpInfAndSts) or Settlement (→ TxInfAndSts → Liquidated).

📋 BCR Response Scenario

✅ Settlement format: writes TxInfAndSts with StsId and OrgnlTxId = original MsgId.
T365 engine calls fetch_uuid_from_file(MsgId) → received_transaction_finalized → sets status to Liquidated via Kafka.
Note: balance credit only happens if ledger-service is running (goes through the normal ReceivedTransfer path).

Original MsgId (our outbound pacs.008)

Transaction Status

Reason Code (RJCT only)

Mode

Lista de arquivos que o sistema guardou durante os testes. Pode clicar para ver o conteúdo ou apagar pastas antigas.

Lista de arquivos

Clique em « Atualizar tela » no topo para carregar a lista.

📋

Registo do sistema (técnicos)

Últimas linhas do diário interno — útil se algo falhou e a equipa técnica pedir detalhe.

                Aperte « Carregar registo » para ver.
              

📡

Passos do pagamento

Mostra, passo a passo, se o dinheiro foi creditado e confirmado. Atualiza sozinha após um teste.

— —

Faça um teste na aba « Fazer um teste » — os passos aparecem aqui automaticamente.

Detalhe da conta e do saldo

Depois de simular um pagamento recebido, informe o número da conta (ou deixe preencher sozinho) e aperte « Ver detalhes » para ver transação e saldo.

Atualizar a cada 5 segundos

Simule um pagamento recebido — a conta credora preenche-se e o rasto aparece aqui.

BCR Gateway Mock

This backoffice replaces the external Java lbtr-gateway app. lbtr-service calls POST /api/bcr/lbtr/instrucciones here when processing outgoing payments. Click ↓ JSON on any row to download the exact payload sent to the gateway.

Loading…

BCR Test Environment Reference (from docs/BCR_CONTEXT.md — for lbtr-gateway Java app, not this mock)

SOAP Endpoints (test)

Instrucciones	lbtrdes.bcr.gob.sv/lbtr-ws/InstruccionServiceSoapHttpPort
Lote	lbtrdes.bcr.gob.sv/lbtr-ws/LoteServiceSoapHttpPort
SPM (T365)	lbtrdes.bcr.gob.sv/lbtr-ws/ServicioPagoServiceSoapHttpPort
Server IP	192.168.11.56
Notif server	notificacioneslbtrdes.bcr.gob.sv (192.168.11.69)

⚠ BCR internal network only — VPN / dedicated line required

WS-Security & Certificates

Protocol	SOAP/WSDL Document/Wrapped
Security	OASIS WS-Security V1.2 · X.509
Policy	Wssp1.2-2007-Wss1.1-X509-Basic256Sha256
Keystore	lbtrcliente.jks (pw: lbtrcliente)
Truststore	lbtrcliente_truststore.jks
Key alias	lbtrcliente

TraceableReference format (25 chars)

YYYYMMDD{entity:03}{correlative:05}{internal_ref:09}

Entity 089 = our participant. Date must match today — BCR rejects mismatches.
Auto-generated in LBTR mock above. Implemented in lib-bcr::lbtr::types::TraceableReference.

Full specs → docs/BCR_CONTEXT.md in repo · Also see dev/console/TEAM_REVIEW_BACKLOG.md §8

Create Internal Transfer

Transfer between two eNor accounts via transaction-service gRPC — InitiateTransfer → ConfirmTransfer. The recipient is resolved by transfer key (phone, email, or account UUID) via the identity/keys service.

💳 Sender

Account ID

🎯 Recipient

Transfer Key (phone / email / account UUID)

💰 Amount & Coin

Amount (minor units — cents for USD)

Coin

Description

PIN (optional — leave blank in dev)

External Transfer (Outbound)

Send from an eNor account to an external bank via InitiateTransfer → ConfirmTransfer. Confirm triggers ledger debit → outbox → Transfer365/LBTR routing.

① Sender — eNor Account

Account ID

② Recipient — External Bank

First Name (Nm) *

Last Name (Ln) *

2º Nome (NmTw)

2º Sobrenome (LnTw)

Institution (bank_code)

Account Number

Customer Type

Account Type

Document Type

Document Number

③ Amount & Coin

Amount (minor units)

Coin

Description

PIN (leave blank in dev)

Quick Setup — Transfer365 ready

Creates a passwordless user, verifies email, opens a CHECKING account (SV) — and optionally a SAVINGS account to test multiple account_type values. Funds USD (00000000-0000-0000-0000-000000000000), runs KYC, and pre-fills Transfer365 / External Transfer fields. Leave email blank to auto-generate a unique address.

Setup Parameters

Name

Document

Country

USD amount (minor units, 100000 = $1,000.00)

Also create a SAVINGS account (test multiple account_type) Also create USDT deposit address (optional) Run KYC (recommended)

Amount (minor units)

Create deposit address Add balance Run KYC

Run the setup to see results.

WhatsApp / BCR onboarding (E2E)

Stepped wizard aligned with bcr-bot onboarding: KYC → Accept contract → Create PIN. Step 4 uses AcceptContract (creates the bank account). Uses whatsapp-service gRPC via console JWT. See docs/adr/ADR-0349.md.

Loading config…

Phone (E.164, e.g. +5511964214227)

Email (must match Enor user for OTP / PIN flows)

Open compliance / KYC URLs in a new tab (e.g. verify-dev, Sumsub). Off by default — local dev usually uses console actions only; turn on for real browser flows.

Step 1: Session pending

Issue API token and read has_session, has_auth, kyc_done, account_exists, has_pin.

Step 2: Login OTP pending

Same as bot Path A/B: CreateVerification(otp) with context_id = login:{phone}. Dev: complete with code 000000 when user-service is dev.

Poll token (auto-filled after Send OTP)

Step 3: KYC (Sumsub) pending

Runs when has_auth && !kyc_done. Bot calls StartKYC then polls CheckKycStatus.

Step 4: Contract signing pending

Accept (ADR-0096): CreateVerification(contract_sign) → compliance web → user signs → account created. No separate “Accept contract” button (legacy removed). Refuse below skips the web page (dev shortcut).

Step 5: Create PIN pending

Bot uses CreateVerification(pin_creation) with pin_creation:onboarding:{phone}, then compliance / VerifyDevice.

PIN (4–6 digits)

Advanced: raw verification

verification_type

context_id

Test hygiene (RUN_MODE=dev on whatsapp-service)

{}

Signup Web

Join eNor Securities in a few simple steps.

Carregando…

Step 1 of 3

Create account

Enter your email to receive a verification code.

Choose a password

Create a strong password for your account.

Password

Confirm password

Almost there

Enter your name and accept the terms to finish.

Full name

I accept the Terms and Conditions Download PDF

✓

Account created!

Complete onboarding below (KYC + PIN), same as the web dashboard.

Ferramentas de desenvolvedor

Crédito de saldo (dev): informe account_id ou telefone.

Account ID (opcional)

Telefone (sem +)

Valor (minor units)

Swap / Transfer365 via customer-web (/api/web/*) — requer sessão ativa acima.

Swap

Account number

From currency

From network

To currency

To network

From amount

Min to amount (optional)

Pending ID

Transfer365

Account number

Amount (minor units)

Description

Counterpart (external bank recipient)

Name

Doc Type

Document

Account number

Bank code

Customer type

Account type

Transaction ID

{}

Fund Treasury Deposit Account

Credits the backoffice deposit-account ledger mirror (ffffffff-ffff-ffff-ffff-ffffffffffff) via Kafka ledger.transactions. Same balance shown at ops-web /admin/banking/deposit-account. Dev-only; requires ledger-service and account-service running.

Account ID

Coin (USD FIAT)

Amount (minor units — 100000 = $1,000.00)

Description (optional)

Current balance

Open this view to load…

Add Balance (AccountTestService)

Directly credit an account without going through the full transfer flow. Dev-only service, not available in production.

Account ID

Coin ID (UUID)

Amount (in coin's minor units — e.g. 10000 = $100.00 for USD with 2 decimals, 100000 = 0.1 ETH with 6 decimals)

Description (optional)

After adding balance

Verify the balance was credited in the account service DB:

QR Code Testing (QrCodeService on transaction-service)

Generate QR

User ID

Transfer Key (phone/email/document)

Description

Coin ID (optional)

Amount (optional, minor units)

Expiry (minutes, blank=permanent)

Get QR Details

QR Code ID

User ID

Scan / Initiate Payment

QR Content (from generate)

Account ID (payer)

Outbox Health

Shows pending entries in each service's outbox table — a non-zero count means Kafka is behind or blocked.

Loading…

Scheduled Payments (TransactionService)

Account ID

Enter an account ID and click Load.

KYC Management (UserService)

Get and set KYC levels for users. Requires a valid user session (user_id + auth-service running).

Get KYC Level

User ID

Finish KYC (Complete onboarding)

User ID

Full Name

Document Number

Customer Type

Permission Profiles (BackofficePermissionService on auth-service)

Click Reload.

Create Profile

Name

Description

Assign / Remove Profile from User

Profile ID

User ID

Contract Management (BackofficeComplianceService on compliance-service)

Click List Contracts.

Upload Contract PDF

Select a PDF file — it will be base64 encoded and uploaded.

Version string

Notes (optional)

PDF File

Activate Contract Version

Sets this contract as the current active version users must accept.

Contract ID

🔗 Fireblocks Webhook Simulator

Sends a properly HMAC-signed Fireblocks webhook to wallet-service. Set FIREBLOCKS_WEBHOOK_SECRET env var in both services to match.

Event Type

Status

Sub-Status

Fireblocks TX ID (leave blank to auto-generate)

Asset ID

Amount

TX Hash (optional)

Num Confirmations

Destination Vault ID (for deposits)

Source Vault ID (for withdrawals)

Webhook URL

🔍 Global UUID Search

Searches every key table across wallet, transaction, account, ledger, and swap DBs simultaneously.

🕵️ Multi-Service Tracer

One UUID — full picture across transactions, ledger, deposits, withdrawals, accounts, and swaps.

🔐 Session Manager

🛡 Permission Debugger

Check if a user is authorized for a specific permission.

User ID

Domain

Action

Resource ID (optional)

⚖️ Balance Reconciliation

Compares account-service reported balances vs. sum of ledger entries for an account.

📦 Migration Status

Shows applied migrations per service DB.

💸 Internal Transfer Flow

Preview → Initiate → Confirm a transfer on behalf of any account. Server mints a dev session automatically.

Account ID

Coin ID

Amount (minor units)

Counterpart Type

Customer Type

Description

First Name (Nm) *

Last Name (Ln) *

2º Nome (NmTw)

2º Sobrenome (LnTw)

Account Type

Account Number

Bank Code

Document

📡 Kafka Activity Monitor

Shows the 10 most recently updated rows in each service's core tables — a proxy for live Kafka activity.

📜 Service Log Viewer

Tails the last N lines from /tmp/<service>.log

Sign in to continue

Accounts

Get / Create Deposit Address POST /api/wallet/deposits/address

List Deposit Addresses GET /api/wallet/deposits/addresses

List Deposits GET /api/wallet/deposits

Get Deposit by ID GET /api/wallet/deposits/{id}

List Withdrawals GET /api/wallet/withdrawals

Get Withdrawal by ID GET /api/wallet/withdrawals/{id}

Withdrawal trace across services/databases

Withdrawal limit usage GET /api/withdrawal-limit-usage

List Swaps GET /api/wallet/swaps

Create Swap POST /api/wallet/swaps

Get Swap Quote GET /api/wallet/swaps/quote

Binance Orders GET /api/swap/orders

Ledger Entries GET /api/ledger

Transaction service — transactions table

Project databases — tables and columns

Table data preview for testing

List Coins GET /api/coin/list

Get Coin GET /api/coin/get

Resolve Coin ID GET /api/coin/resolve

Resolve by Slug GET /api/coin/resolve-by-slug

Admin: Save Coin (Create or Update) POST /api/coin/admin/update

Create Withdrawal POST /api/wallet/withdrawals

Get Withdrawal Quote GET /api/wallet/withdrawals/quote

Fireblocks webhook log

User Management

Create Passwordless User

User Actions

Register Phone on User (SMS notifications)

User List (from DB)

Account Management (Admin)

List Accounts

Account Actions

Reset PIN

Special Accounts

All Transactions (Backoffice)

Account Transactions

Review Transaction

Approve Transaction

Cancel Transaction

Treasury & Operational

Treasury Transactions

Operational Transactions

BCR Institutions (config-service)

Create Institution

Get / Update Institution

Services Health

gRPC Services

Databases

Infrastructure

Dev Operator Permissions

Operational Flags

LBTR / BCR Mock Producer

① Inject Incoming Transfer (BCR → us)

② Inject Status Update (BCR → us)

Quick Scenarios

③ Track Resulting Transaction & All State Changes

④ BCR Gateway — Outgoing Instructions Received

Transfer365 Lab

Transfer365 Mock Producer

Inject Received Transfer (transfer365.received)

Inject Status Update (transfer365.received.status)

Quick Scenarios

③ Track Resulting Transaction & All State Changes

Simulador de transferências

1 · Catálogo de bancos (bank_code)

2 · Dry run — lib-transfer-validate (obrigatório antes do envio)

3 · Initiate + confirm (envio real no ledger)

4 · File gateway — injetar XML (BCR → eNor)

5 · Resposta do banco (pacs.002) após outbound T365

Variável BASE (copiar/colar no terminal)

Aguardando confirmação na rede (mock)

Lista de arquivos

Registo do sistema (técnicos)

Passos do pagamento

Detalhe da conta e do saldo

BCR Gateway Mock

SOAP Endpoints (test)

WS-Security & Certificates

Get / Create Deposit Address `POST /api/wallet/deposits/address`

List Deposit Addresses `GET /api/wallet/deposits/addresses`

List Deposits `GET /api/wallet/deposits`

Get Deposit by ID `GET /api/wallet/deposits/{id}`

List Withdrawals `GET /api/wallet/withdrawals`

Get Withdrawal by ID `GET /api/wallet/withdrawals/{id}`

Withdrawal limit usage `GET /api/withdrawal-limit-usage`

List Swaps `GET /api/wallet/swaps`

Create Swap `POST /api/wallet/swaps`

Get Swap Quote `GET /api/wallet/swaps/quote`

Binance Orders `GET /api/swap/orders`

Ledger Entries `GET /api/ledger`

Transaction service — `transactions` table

List Coins `GET /api/coin/list`

Get Coin `GET /api/coin/get`

Resolve Coin ID `GET /api/coin/resolve`

Resolve by Slug `GET /api/coin/resolve-by-slug`

Admin: Save Coin (Create or Update) `POST /api/coin/admin/update`

Create Withdrawal `POST /api/wallet/withdrawals`

Get Withdrawal Quote `GET /api/wallet/withdrawals/quote`