Documentation

What is Malipo?

Malipo is a payment infrastructure designed for developers and businesses that want to monetize content or services using M-Pesa. It provides a unified API for initiating STK Pushes, handling callbacks, and managing subscription paywalls.

Setup Guide

1. Sign up and create your organization on the Malipo dashboard
2. Obtain your Consumer Key and Consumer Secret
3. Register your Callback URL
4. Use your credentials to initiate a payment request
5. Monitor transaction status via webhooks or dashboard

Key Parameters

• •PhoneNumber – The customer’s M-Pesa number (format: 2547XXXXXXXX)
• •Amount – The amount to be charged in KES
• •AccountReference – A short label for your transaction (e.g. "Monthly Plan")
• •CallbackURL – Endpoint to receive M-Pesa transaction result

Response Structure

• •ResponseCode – 0 means success (request accepted for processing)
• •MerchantRequestID and CheckoutRequestID – Track your transaction
• •CustomerMessage – User-facing message shown on phone (e.g. "Enter your M-Pesa PIN")

Callback Payload

• •ResultCode – 0 (success), any other value means failure
• •MpesaReceiptNumber – The unique transaction ID (e.g. QER5N7R4KL)
• •TransactionDate – Timestamp of successful payment
• •Amount and PhoneNumber – Confirm payment details

Verification Tips

• •Always validate ResultCode before crediting accounts
• •Use MpesaReceiptNumber to prevent duplicate processing

Access Tokens

All API requests are authenticated using OAuth 2.0. Use your Consumer Key and Consumer Secret to generate a Bearer Token from the M-Pesa Daraja API. The token expires after one hour.

Certificate Encryption

Malipo automatically encrypts your payloads using the official M-Pesa public certificate. Always ensure you are using the correct ProductionCertificate.cer or Sandbox certificate for your environment.