bakong-khqr

Bakong KHQR and Open API payment integration across backend and web/mobile clients. Use when implementing or debugging KHQR generation, KHQR verification/parsing, deeplink generation, token lifecycle (request/verify/renew), transaction status polling by md5/hash, or Bakong account checks.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "bakong-khqr" with this command: npx skills add lowintechie/skills/lowintechie-skills-bakong-khqr

Bakong

Implement and troubleshoot Bakong KHQR payment flows from QR generation through payment-status reconciliation.

Quick Workflow

  1. Confirm integration mode: static KHQR, dynamic KHQR, or deeplink.
  2. Choose where QR is generated: merchant backend (recommended) or client SDK.
  3. Generate KHQR and capture md5/hash metadata for status checks.
  4. Display QR with clear expiration and enforce timeout handling.
  5. Obtain and maintain Open API token (request_token -> verify -> renew_token).
  6. Poll transaction status until success, fail, or QR timeout.
  7. Reconcile order state and notify the client UI.

Integration Rules

  1. Keep unique transaction IDs for each generated dynamic QR.
  2. Set QR expiration at or below 10 minutes for dynamic payment UX and polling control.
  3. Use MD5 status checks only for dynamic KHQR.
  4. Treat not found as retriable only while QR is still valid.
  5. Stop polling when status is final (success or failed) or when QR expires.
  6. Store enough metadata to retry checks (md5, full hash, short hash, merchant/order IDs, expiry time).

Open API Flow

  1. Register integration via POST /v1/request_token.
  2. Verify code via POST /v1/verify and store issued token securely.
  3. Renew token via POST /v1/renew_token before expiry.
  4. Check payment state using one of:
    • POST /v1/check_transaction_by_md5
    • POST /v1/check_transaction_by_hash
    • POST /v1/check_transaction_by_short_hash
  5. Optionally use:
    • POST /v1/generate_deeplink_by_qr
    • POST /v1/check_bakong_account

Implementation Notes

  1. Generate and sign business-critical fields server-side where possible.
  2. Return only safe fields to clients (QR string/image, expiry, channel label, transaction reference).
  3. Add idempotency around order finalization to handle repeated status callbacks/polls.
  4. Log API request IDs, response code, and error code to simplify reconciliation.
  5. Keep environment-specific base URLs and tokens in secrets, never in client bundles.

Debugging Checklist

  1. Validate KHQR string format before showing it to users.
  2. Confirm token is active and not expired when calling status APIs.
  3. Verify md5/hash was captured from the exact QR payload used by payer.
  4. Confirm polling stops at expiry and marks timeout cleanly.
  5. Compare results across MD5 and full-hash endpoints when diagnosis is unclear.

References

  • Open API endpoints and request/response examples: references/open-api.md
  • KHQR SDK features and cross-platform usage notes: references/khqr-sdk.md
  • End-to-end QR payment integration flow and operational notices: references/qr-payment-integration.md
  • JavaScript ts-khqr quick usage examples: references/ts-khqr-examples.md

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

General

aba-payway

No summary provided by upstream source.

Repository SourceNeeds Review
10-lowintechie
Coding

frontend-design

Create distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, artifacts, posters, or applications (examples include websites, landing pages, dashboards, React components, HTML/CSS layouts, or when styling/beautifying any web UI). Generates creative, polished code and UI design that avoids generic AI aesthetics.

Repository SourceNeeds Review
164K95.1Kanthropics
Coding

remotion-best-practices

Use this skills whenever you are dealing with Remotion code to obtain the domain-specific knowledge.

Repository SourceNeeds Review
150K2.2Kremotion-dev
Coding

azure-deploy

AUTHORITATIVE GUIDANCE — MANDATORY COMPLIANCE

Repository SourceNeeds Review
137.1K156microsoft