# Get linked account details ## OpenAPI Specification ```yaml openapi: 3.0.1 info: title: '' description: '' version: 1.0.0 paths: /api/aof/pushback-status: post: summary: Get linked account details deprecated: false description: > If you encounter issues with the pushback notification and do not receive the details, you can manually retrieve the linked account information. :::highlight orange 💡 This API only works for retrieving account tokens. It is not applicable for card tokens. ::: tags: - Credentials on File parameters: - name: Content-Type in: header description: '' required: false example: application/json schema: type: string requestBody: content: application/json: schema: type: object properties: req_time: type: string description: Request date and time in UTC format as YYYYMMDDHHmmss. merchant_id: type: string description: A unique merchant key which provided by ABA Bank. maxLength: 20 return_param: type: string maxLength: 255 description: This value represents the unique request of a transaction. hash: type: string description: >- Base64 encode of hash hmac sha512 encryption of concatenates values `merchant_id`, ` req_time` and `return_param` with `public_key`. **PHP Sample Code** ```php // public key provided by ABA Bank $api_key = "API KEY PROVIDED BY ABA BANK"; // Prepare the data to be hashed $b4hash = $merchant_id . $req_time . $return_param; // Generate the HMAC hash using SHA-512 and encode it in Base64 $hash = base64_encode(hash_hmac('sha512', $b4hash, $api_key, true)); ``` x-apidog-orders: - req_time - merchant_id - return_param - hash required: - req_time - merchant_id - return_param - hash example: req_time: '20230816044238' merchant_id: ec000002 return_param: '43242423443' hash: 0aolk6L/lO5RzW...g9thfavA54Q== responses: '200': description: '' content: application/json: schema: type: object properties: data: type: object properties: ctid: type: string description: >- Your customer token. Each customer must have a unique `ctid`. pwt: type: string description: Token generated by the payment gateway. mask_account: type: string description: >- Masked linked account. Only the last 4 digits of the account are displayed. expired_in: type: number description: Expiration timestamp of the token. x-apidog-orders: - ctid - pwt - mask_account - expired_in required: - ctid - pwt - mask_account - expired_in 01JM9VXJ15S9X29WDF82RB9B7E: type: string status: type: object properties: code: type: string description: |- Possible response code. - `403` : Not Found - `PW59` : Invalid Merchant Profile - `04` : Parameter Validation Required message: type: string description: >- Please see the property reponse `code` for the details. tran_id: type: string description: '' x-apidog-orders: - code - message - tran_id required: - code - message - tran_id x-apidog-orders: - data - status - 01JM9VXJ15S9X29WDF82RB9B7E required: - data - 01JM9VXJ15S9X29WDF82RB9B7E - status headers: {} x-apidog-name: Success security: [] x-apidog-folder: Credentials on File x-apidog-status: released x-run-in-apidog: https://app.apidog.com/web/project/831852/apis/api-14530834-run components: schemas: {} securitySchemes: {} servers: - url: https://checkout-sandbox.payway.com.kh/ description: StillZeroBug security: [] ```