Cobru
PaymentsPayoutsPlatformChangelog
Platform

Testing

Sandbox usage, webhook testing, and production-readiness checks for Cobru integrations.

Start here

  1. Refresh an access token in sandbox.
  2. Create a real payment from your backend.
  3. Open the hosted payment URL built from the returned url slug.
  4. Confirm redirect handling and callback handling in your own system.
  5. Record enough evidence to debug the run later.

Sandbox environment

PropertyValue
Base URLhttps://dev.cobru.co
Purposedevelopment, QA, integration debugging
Credentialsseparate from production
Feesnot representative of production economics
Recommended useauth validation, payment creation, hosted checkout, webhook handling, QR/BRE-B flow testing

Treat sandbox as a behavior-validation environment, not as a source of truth for production economics, settlement timing, or support procedures.

  1. Refresh an access token.
  2. Create a payment in sandbox.
  3. Build the hosted payment URL from the returned url slug.
  4. Complete the flow manually through Cobru's page.
  5. Confirm your webhook receives the expected state update.

Minimum integration test matrix

ScenarioWhat to verify
Token refreshPOST /token/refresh/ works with your credential storage and cache strategy
Payment creationyour backend sends payment_method_enabled as a JSON string and gets 201
Hosted payment URLyour app uses response.url, not response.pk, to build the checkout URL
Redirect handlingpayer_redirect_url resolves correctly after payment completion
Callback handlingyour webhook endpoint persists, deduplicates, and acknowledges callbacks fast
Payment lookupyour system can reconcile the payment after a callback or manual support action
  • one low-value order for smoke tests
  • one order with BRE-B enabled
  • one order with multiple payment methods enabled
  • one invalid payload fixture to confirm error normalization
  • one webhook replay fixture for idempotency checks

Local webhook testing

ngrok http 3000

Use the generated HTTPS URL as your callback field in the payment creation request.

What to record during every test run

  • request body sent to Cobru
  • raw Cobru response body
  • generated payment URL
  • every webhook payload
  • your own reconciliation result
  • the internal order ID or payment reference you mapped to Cobru

Common sandbox pitfalls

Exit criteria before production

  • you can create and complete a payment end to end from your app
  • you can persist and deduplicate callbacks
  • you can manually reconcile a payment from Cobru data plus your own order state
  • your logs include enough information to debug a failed payment without guessing
  • your credentials are not hardcoded anywhere outside secure environment storage
  • /docs/production-readiness
  • /docs/webhooks
  • /docs/troubleshooting
  • /docs/errors

Error Reference

Previous Page

Production Readiness

Next Page

On this page

Start hereSandbox environmentRecommended test flowMinimum integration test matrixRecommended test accounts and fixturesLocal webhook testingWhat to record during every test runCommon sandbox pitfallsExit criteria before productionRead next