NAV Navbar


Welcome to the QFPay Online Checkout documentation. This manual introduces QFPay's hosted checkout page, through which developers can add a variety of payment methods to their online store. There are language bindings available in HTML. You can view code examples in the dark area to the right.

Checkout Page Design


The checkout page is fully responsive and automatically adjust to all screen sizes. The UI currently supports English as well as simplified and traditional Chinese languages. Available eWallets as well as the design and descriptions can be configured based on merchant demand. If you have explicit requirements please send an email to for assistance.

API Environment

The table below depicts base URLs for each region.

Environment Name URL
Hong Kong

Process Flow


Customers browse the client's website and proceed to make payment. Once they click the pay button they will be forwarded to the QFPay hosted checkout page. Here consumers can find a variety of payment methods available for checkout and complete payment on desktop or mobile devices. Once payment has been conducted successfully the user is redirected back to the merchant website for a "payment successful notification" and to continue to browse the shop.

API Request Parameters


The following body parameters are necessary to create a new checkout request;

Parameter Type Mandatory Description Example
appcode String(64) Yes API credentials assigned by QFPay A6A49A******************5032
sign_type String(256) Yes SHA256 or MD5, SHA256 is recommended sha256
sign String(128) Yes Request signature for authentication 3b020a6349646684ebeeb0ec2cd3d1fb
paysource String(12) Yes Must end in _checkout remotepay_checkout
txamt Int(11) Yes Payment amount in unit cents 1099
txcurrcd String(3) Yes Currency code HKD
out_trade_no String(128) Yes Unique external transaction number 202005270001
txdtm String(32) Yes Order time 2020-06-24 20:04:37, Format: YYYY-MM-DD hh:mm:ss
return_url String(256) Yes Redirect URL after payment has been successful
failed_url String(256) Yes Redirect URL after payment has failed
notify_url String(256) Yes Asynchronous notification URL
mchntid String(16) No QFPay Merchant Identifier for Agents PAKjVHJmQe
goods_name String(64) No No special characters, no more than 20 letters or Chinese characters (app payment parameters must be passed). If you want to display the merchant name on the clearing file, this parameter must be empty.
txzone String(5) No Timezone This field is used to record the local order time, the default is Beijing time +0800.
udid String(40 No Unique device ID 0001
expired_time String(3) No QRC exipration time Unit in minutes, minimum 5 minutes, maximum 120 minutes, only WeChat Pay, Alipay and Alipay_hk support this parameter
limit_pay String(3) No Prohibit credit card use The parameter value is specified as no_credit, which prohibits the use of credit card payments, only WeChat Pay supports this feature.

Create a New Checkout Order

<!DOCTYPE html>
<html lang="en">
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">

  font-size: 20px;
 <a id="standard">QFPay Online Checkout</a>

<script src=""></script>
<script src=""></script>

window.onload = function(){
  let standard = document.getElementById('standard')

  let origin = ''
   let obj = {
    appcode: "CC6FB660837E49F7A675D2**********",
    goods_name: "remotfpay_checkout_names",
    out_trade_no: "13322916216626239614",
    paysource: "remotepay_checkout",
    return_url: "",
    failed_url: "",
    notify_url: "",
    sign_type: "sha256",
    txamt: "1",
    txcurrcd: "HKD",
    txdtm: "2020-06-28 18:33:20"

   let api_key = "B3D4CCFD4AB049DCA82C25**********";
   let params = paramStringify(obj) 
   let sign = sha256(`${params}${api_key}`)
    standard.setAttribute('href', `${origin}${paramStringify(obj,true)}&sign=${sign}`)


function paramStringify(json,flag) {
      let str = "";
      let keysArr = Object.keys(json);
      keysArr.sort().forEach(val => {
        if (!json[val]) return;
        str += `${val}=${flag ? encodeURIComponent(json[val]) : json[val]}&`;
      return str.slice(0, -1);


In order to create a new checkout order, a GET request with authentication signature must be send. For this signature the above parameters have to be concatenated and then hashed with the app_key which is provided by QFPay. For API credentials or technical support please contact

The example to the right illustrates the signature generation algorithm. You can also download the QFPay Online Checkout Boilerplate and open the HTML in your default browser.