This is a diagnostic tool for testing anchor integrations. Use during development and troubleshooting.
curl -X POST https://api.payonproof.com/api/anchors/diagnostics \
-H "Content-Type: application/json" \
-d '{
"action": "sep1_discover",
"domain": "stellar.moneygram.com"
}'
POST /api/anchors/diagnostics
Diagnostic endpoint for testing anchor capabilities and SEP protocol implementations.
Request body
Diagnostic action: sep1_discover, sep24_info, sep6_info, sep10_token, or capabilities_resolve
Action: sep1_discover
Discover anchor endpoints from stellar.toml (SEP-1).
Request parameters
Anchor domain (e.g., “stellar.moneygram.com”)
Response
{
"status": "ok",
"action": "sep1_discover",
"discovered": {
"domain": "stellar.moneygram.com",
"stellarTomlUrl": "https://stellar.moneygram.com/.well-known/stellar.toml",
"webAuthEndpoint": "https://stellar.moneygram.com/auth",
"transferServerSep24": "https://stellar.moneygram.com/sep24",
"transferServerSep6": null,
"directPaymentServer": null,
"kycServer": null
}
}
Action: sep24_info
Fetch SEP-24 /info endpoint (deposit/withdraw asset support).
Request parameters
Anchor domain (used for SEP-1 discovery if transferServerSep24 not provided)
Direct SEP-24 transfer server URL (alternative to domain)
Response
{
"status": "ok",
"action": "sep24_info",
"mode": "sep24",
"info": {
"deposit": {
"USDC:GA5ZSEJYB37JRC5AVCIA5MOP4RHTM335X2KGX3IHOJAPP5RE34K4KZVN": {
"enabled": true,
"fee_fixed": 0,
"fee_percent": 0,
"min_amount": 1,
"max_amount": 10000
}
},
"withdraw": {
"USDC:GA5ZSEJYB37JRC5AVCIA5MOP4RHTM335X2KGX3IHOJAPP5RE34K4KZVN": {
"enabled": true,
"fee_fixed": 0,
"fee_percent": 0
}
}
},
"capabilities": {
"sep24": true,
"sep6": false,
"sep31": false,
"sep10": true
}
}
Fallback response (SEP-24 not available)
If SEP-24 is not available, falls back to SEP-1 discovery:
{
"status": "degraded",
"action": "sep24_info",
"mode": "fallback-sep1",
"message": "Anchor does not expose SEP-24. Returning SEP-1 capabilities as fallback.",
"capabilities": {
"sep24": false,
"sep6": true,
"sep31": false,
"sep10": true
},
"discovered": {
"domain": "anchor.example.com",
"webAuthEndpoint": "https://anchor.example.com/auth",
"transferServerSep6": "https://anchor.example.com/sep6"
}
}
Action: sep6_info
Fetch SEP-6 /info endpoint (programmatic deposits/withdrawals).
Request parameters
Anchor domain (used for SEP-1 discovery if transferServerSep6 not provided)
Direct SEP-6 transfer server URL
Response
{
"status": "ok",
"action": "sep6_info",
"mode": "sep6",
"info": {
"deposit": {
"USD": {
"enabled": true,
"fields": {
"email_address": { "description": "Email address", "optional": false },
"amount": { "description": "Amount to deposit", "optional": false }
}
}
},
"withdraw": {
"USD": {
"enabled": true,
"fields": {
"dest": { "description": "Bank account number", "optional": false }
}
}
}
}
}
Action: sep10_token
Request SEP-10 authentication token (requires signing with escrow secret).
Requires STELLAR_ESCROW_SECRET environment variable. This action signs challenges server-side.
Request parameters
Anchor domain (for SEP-1 discovery)
Direct SEP-10 web auth endpoint
Anchor’s signing public key (optional, from stellar.toml)
Account to authenticate (defaults to escrow account)
Home domain to include in challenge request
Client domain for SEP-10 authentication
Response
{
"status": "ok",
"action": "sep10_token",
"token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."
}
Action: capabilities_resolve
Resolve complete anchor capabilities (SEP-1, SEP-10, SEP-24, fees, endpoints).
Request parameters
Asset code to check capabilities for
Response
{
"status": "ok",
"action": "capabilities_resolve",
"capabilities": {
"sep": {
"sep10": true,
"sep24": true,
"sep6": false,
"sep31": false
},
"endpoints": {
"webAuthEndpoint": "https://stellar.moneygram.com/auth",
"transferServerSep24": "https://stellar.moneygram.com/sep24",
"transferServerSep6": null,
"directPaymentServer": null,
"kycServer": null
},
"fees": {
"fixed": 0,
"percent": 0,
"source": "sep24_info"
},
"diagnostics": [],
"raw": {
"sep24Info": { ... },
"stellarToml": { ... }
}
}
}
Error responses
400 Bad Request - Invalid action
{
"error": "Invalid action. Use: sep1_discover | sep24_info | sep6_info | sep10_token | capabilities_resolve"
}
{
"error": "Missing field: domain"
}
{
"error": "Missing STELLAR_ESCROW_SECRET in backend env. Required for SEP-10 signing."
}
{
"status": "error",
"action": "sep1_discover",
"error": "stellar.toml not found at https://anchor.example.com/.well-known/stellar.toml (404)"
}
Use cases
Test anchor before adding to catalog
# 1. Check SEP-1 discovery
curl -X POST /api/anchors/diagnostics \
-d '{"action": "sep1_discover", "domain": "new-anchor.com"}'
# 2. Verify SEP-24 support
curl -X POST /api/anchors/diagnostics \
-d '{"action": "sep24_info", "domain": "new-anchor.com"}'
# 3. Test authentication
curl -X POST /api/anchors/diagnostics \
-d '{"action": "sep10_token", "domain": "new-anchor.com"}'
# 4. Get full capabilities
curl -X POST /api/anchors/diagnostics \
-d '{"action": "capabilities_resolve", "domain": "new-anchor.com", "assetCode": "USD"}'
Debug integration issues
async function debugAnchor(domain) {
const actions = ['sep1_discover', 'sep24_info', 'capabilities_resolve'];
for (const action of actions) {
const response = await fetch('/api/anchors/diagnostics', {
method: 'POST',
body: JSON.stringify({ action, domain })
});
const result = await response.json();
console.log(`${action}:`, result.status);
if (result.status === 'error') {
console.error('Error:', result.error);
}
}
}
debugAnchor('stellar.moneygram.com');
Implementation notes
- SEP-10 token generation uses
STELLAR_ESCROW_SECRET for signing
- Diagnostics bypass caching to ensure fresh results
- Fallback logic tries SEP-1 discovery if SEP-24 info fails
- All actions return detailed error messages for troubleshooting
- Does not modify database (read-only diagnostic operations)