Skip to main content

Platform

Platform APIs are exposed as a transparent passthrough to the MX Platform APIs v20250224 and MX Platform APIs v20111101 via the Candescent APIs Gateway. After OAuth V2 token validation and routing, the gateway forwards request headers, paths, query parameters, and payloads to MX and returns responses unchanged.

The MX Platform APIs are MX’s core REST interface for aggregating and enhancing financial data across institutions. It covers users, members, institutions, accounts, transactions, statements, and related resources as documented by MX.

For complete schemas and the full set of supported operations, see the MX Platform APIs v20250224 and MX Platform APIs v20111101 documentations.

End-user benefits

  • Unified access to balances, transactions, and account context aggregated from external financial institutions.
  • End-to-end MX user lifecycle support, including connect, aggregation, and personalized financial experiences.
  • Data enhancement, including cleansing, categorization, and insights, provided through MX Platform pipeline.

Integration capabilities

  • Transparent passthrough ensures that Platform headers, paths, query parameters, and payloads are forwarded to MX, and that HTTP status codes and responses are returned unchanged.
  • Gateway controls are applied by Candescent, including OAuth V2 Bearer token validation, spike arrest, and quota enforcement, before requests are forwarded to MX.
  • MX routing is configured by setting ext_host to the MX Platform host, such as api.mx.com (production) or int-api.mx.com (sandbox).
  • Content negotiation is supported through MX vendor-specific Accept headers, such as application/vnd.mx.api.v1+json for user list operations. Include Accept-Version header when MX documents version negotiation for an endpoint.

Required headers

HeaderDescription
AuthorizationBearer {token} (OAuth V2)
correlationIdUUID used to trace and correlate requests across services for debugging and logging.
ext_hostMX Platform upstream host (for example, api.mx.com (production) or int-api.mx.com (sandbox)). Required for gateway routing; stripped before forwarding to MX.
AcceptMX vendor media type (for example, application/vnd.mx.api.v1+json). Required by MX; forwarded unchanged.
Content-Typeapplication/json. Required by MX for POST and PUT requests; forwarded unchanged.
Accept-VersionMX API version (for example, v20250224). Required by MX for version negotiation; forwarded unchanged.

Error codes

Candescent API Gateway

CodeMessageHTTP Status Code
CMN_90000Internal server error500
CMN_90001Client not authorized to access this resource401
CMN_90001Quota limit violation500
CMN_90002Spike limit violation500
CMN_90008Header correlationId is invalid400
CMN_90010Header correlationId is required400
CMN_90010Header ext_host is required400
CMN_90011Invalid or unsupported ext_host400
CMN_90018Invalid token400

MX Platform APIs

For detailed descriptions and error semantics, refer to the MX documentations:

Endpoints