Receive an Inbound Payment to a Wallet

An inbound payment is a Tesser Payment resource with direction = "inbound". It represents funds sent on-chain from an external wallet to one of your managed accounts at Tesser. This guide covers the wallet-recipient flow: inbound payments credited to a managed wallet at Tesser. Before reading further, review the Funds Movement Lifecycle and Data Model for the shared data shape, lifecycle phases, and status taxonomy that apply to inbound payments along with Tesser's other funds-movement resources.

What's Different About Inbound Payments

Inbound payments share the Payment resource shape with outbound payments but diverge in several lifecycle and data-model ways. Note these before you begin your integration:

• No customer-side planning. The desired overlay does not populate. estimated populates when Tesser records the inbound on-chain transaction (at payment.created); actual populates only when the block finalizes (at step.completed / payment.updated). There is no quote, no payment.quote_created webhook, and no PATCH step.
• No balance check. balance_status is set to unreserved when the payment record is created and never updates. The funds have already arrived on-chain, so there is nothing to reserve.
• No signing. Your integration never calls a sign endpoint for an inbound payment. The on-chain transaction was signed by the external sender, not by you.
• One step. The payment contains exactly one step, of type transfer, born in confirmed state when the payment record is created. The step transitions to completed when the block finalizes.
• Placeholder counterparty for senders. Each sending account maps to the same, single placeholder counterparty record. (If your integration uses tenants, there will be a placeholder counterparty per tenant). Tesser cannot identify who owns the sending wallet, so all senders of inbound payments share the same placeholder counterparty.
• Risk screening targets the sender. Because the recipient is your managed wallet, Tesser screens the external sending wallet against your organization's risk policy and notifies you of the outcome via payment.risk_updated. Screening runs in parallel with on-chain finalization and does not gate the credit — the receiving wallet's available balance updates when the block finalizes, regardless of the risk outcome.

Prerequisites

Before your integration can receive inbound payments:

• At least one managed wallet at Tesser. Inbound payments are credited to a managed wallet that Tesser monitors on-chain. Provision via Create an Account.
• A placeholder counterparty. Your workspace is provisioned with a placeholder counterparty (per tenant, if applicable) the first time you receive an inbound payment. No customer action is required — Tesser sets this up for you.
• Webhooks for inbound-payment events. Ensure you're listening to payment.created, payment.risk_updated, step.completed, and payment.updated. See Webhook Authentication for setup.

Continuous Monitoring for Inbound Payments

You do not need to pre-register inbound payments in order to receive funds on-chain. Tesser monitors wallets for on-chain activity and when an inbound transaction is detected, will create a payment record and account (if needed) and notify your integration via webhooks. Tesser will first become aware of an on-chain transaction when that transaction is confirmed in a block.

Sending Wallet Account Handling

When Tesser records an inbound payment from a wallet address it has not seen before, it automatically creates an unmanaged wallet account (is_managed: false) for the sending wallet and assigns it to the placeholder counterparty (scoped to the receiving managed wallet's tenant, if applicable).

If Tesser recognizes the wallet address (either because the sender is a repeat sender, or because an outbound payment previously sent funds to this wallet address), then Tesser will identify the account identifier by looking up the wallet address.

The auto-created account follows this shape:

Code
 
{
  "id": "2c7a9e1f-3b8d-4625-a0f4-6d1e5c9b2a8f",
  "workspace_id": "b53f6690-3242-4942-9907-885779632832",
  "tenant_id": null,
  "counterparty_id": "00000000-0000-0000-0000-8b4f2e1c9a3d",
  "type": "stablecoin_ethereum",
  "name": "External Wallet 0x742d35Cc6634...95f8fE0B",
  "crypto_wallet_address": "0x742d35Cc6634C0532925a3b844Bc9e7595f8fE0B",
  "is_managed": false,
  "assets": [
    {
      "currency": "USDC",
      "network": "ETHEREUM",
      "available_balance": "0"
    }
  ],
  "created_at": "2024-03-01T10:02:00.000Z",
  "updated_at": "2024-03-01T10:02:00.000Z"
}

The counterparty_id points to the placeholder counterparty for this sender, which has a recognizable 00000000- prefixed UUID. To determine which tenant the sender belongs to (for tenanted integrations), look up the counterparty by its counterparty_id — the counterparty record returns the tenant_id. The counterparty name for customers without tenants will be Inbound Payments Counterparty. For customers using tenants in their integrations, the counterparty name will take the form Inbound Payments Counterparty - {Tenant Name}. Subsequent inbound payments from the same wallet address reuse this account.

Inbound Payment Creation (payment.created)

When Tesser becomes aware of an on-chain transaction from a sending wallet, Tesser creates an inbound payment to record that transaction and fires payment.created. The payload contains the full payment resource with the estimated overlay populated at both the top level and the step level. The actual overlay is present but its sub-fields are still null.

The estimated.from.account_id references the unmanaged wallet account for the sender. The account is retrievable via GET /v1/accounts after payment.created arrives.

Code
 
{
  "id": "e1b2c3d4-5e6f-4a7b-8c9d-0e1f2a3b4c5d",
  "type": "payment.created",
  "created_at": "2024-03-01T10:02:00.500Z",
  "data": {
    "object": {
      "id": "9f3b7e1c-4a2d-4f69-b5a8-0c6e2d9f1a3b",
      "workspace_id": "b53f6690-3242-4942-9907-885779632832",
      "organization_reference_id": null,
      "direction": "inbound",
      "funding_account_id": null,
      "desired": {
        "from": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        },
        "to": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        }
      },
      "estimated": {
        "from": {
          "account_id": "2c7a9e1f-3b8d-4625-a0f4-6d1e5c9b2a8f",
          "amount": "1000.00",
          "currency": "USDC",
          "network": "ETHEREUM"
        },
        "to": {
          "account_id": "7a3d8f2e-6b4c-4a91-b8e5-2f9c1d7e3a0b",
          "amount": "1000.00",
          "currency": "USDC",
          "network": "ETHEREUM"
        }
      },
      "actual": {
        "from": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        },
        "to": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        }
      },
      "risk_status": "unchecked",
      "risk_status_reasons": [],
      "risk_reviewed_by": null,
      "risk_reviewed_at": null,
      "balance_status": "unreserved",
      "balance_reserved_at": null,
      "expires_at": null,
      "steps": [
        {
          "id": "4f7c1a9e-2b3d-4e85-b0a6-8d5c2e1f3b9a",
          "payment_id": "9f3b7e1c-4a2d-4f69-b5a8-0c6e2d9f1a3b",
          "step_sequence": 1,
          "step_type": "transfer",
          "estimated": {
            "from": {
              "account_id": "2c7a9e1f-3b8d-4625-a0f4-6d1e5c9b2a8f",
              "amount": "1000.00",
              "currency": "USDC",
              "network": "ETHEREUM"
            },
            "to": {
              "account_id": "7a3d8f2e-6b4c-4a91-b8e5-2f9c1d7e3a0b",
              "amount": "1000.00",
              "currency": "USDC",
              "network": "ETHEREUM"
            }
          },
          "actual": {
            "from": {
              "account_id": null,
              "amount": null,
              "currency": null,
              "network": null
            },
            "to": {
              "account_id": null,
              "amount": null,
              "currency": null,
              "network": null
            }
          },
          "fees": [],
          "status": "confirmed",
          "status_reasons": [],
          "transaction_hash": "0xabcdef0123",
          "provider_key": null,
          "provider_data": null,
          "created_at": "2024-03-01T10:02:00.000Z",
          "updated_at": "2024-03-01T10:02:00.000Z",
          "submitted_at": null,
          "confirmed_at": "2024-03-01T10:02:00.000Z",
          "completed_at": null,
          "failed_at": null
        }
      ],
      "created_at": "2024-03-01T10:02:00.000Z",
      "updated_at": "2024-03-01T10:02:00.000Z"
    }
  }
}

Inbound Payment Risk Review (payment.risk_updated)

After payment.created, Tesser screens the sending wallet (represented by estimated.from.account_id) against your organization's risk policy. The outcome is reported on the payment as risk_status via a payment.risk_updated webhook. See Risk Statuses on the lifecycle overview for the full taxonomy.

Risk screening runs in parallel with on-chain finalization, so payment.risk_updated and step.completed can fire in either order. Screening does not gate the balance credit — the receiving wallet's available balance updates when the block finalizes (step.completed), regardless of the risk outcome. The screening result notifies you so you can act on it under your own compliance policy.

If your policy requires manual review, an initial payment.risk_updated fires with risk_status: "awaiting_decision". Submit a decision via the risk review decision API or in the Tesser dashboard. After a decision is recorded, risk_reviewed_by and risk_reviewed_at are populated and a second payment.risk_updated fires with risk_status transitioned to manually_approved or manually_rejected.

Code
 
{
  "id": "f2c3d4e5-6f7a-4b8c-9d0e-1f2a3b4c5d6e",
  "type": "payment.risk_updated",
  "created_at": "2024-03-01T10:02:15.500Z",
  "data": {
    "object": {
      "id": "9f3b7e1c-4a2d-4f69-b5a8-0c6e2d9f1a3b",
      "workspace_id": "b53f6690-3242-4942-9907-885779632832",
      "organization_reference_id": null,
      "direction": "inbound",
      "funding_account_id": null,
      "desired": {
        "from": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        },
        "to": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        }
      },
      "estimated": {
        "from": {
          "account_id": "2c7a9e1f-3b8d-4625-a0f4-6d1e5c9b2a8f",
          "amount": "1000.00",
          "currency": "USDC",
          "network": "ETHEREUM"
        },
        "to": {
          "account_id": "7a3d8f2e-6b4c-4a91-b8e5-2f9c1d7e3a0b",
          "amount": "1000.00",
          "currency": "USDC",
          "network": "ETHEREUM"
        }
      },
      "actual": {
        "from": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        },
        "to": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        }
      },
      "risk_status": "auto_approved",
      "risk_status_reasons": [],
      "risk_reviewed_by": null,
      "risk_reviewed_at": null,
      "balance_status": "unreserved",
      "balance_reserved_at": null,
      "expires_at": null,
      "steps": [
        {
          "id": "4f7c1a9e-2b3d-4e85-b0a6-8d5c2e1f3b9a",
          "payment_id": "9f3b7e1c-4a2d-4f69-b5a8-0c6e2d9f1a3b",
          "step_sequence": 1,
          "step_type": "transfer",
          "estimated": {
            "from": {
              "account_id": "2c7a9e1f-3b8d-4625-a0f4-6d1e5c9b2a8f",
              "amount": "1000.00",
              "currency": "USDC",
              "network": "ETHEREUM"
            },
            "to": {
              "account_id": "7a3d8f2e-6b4c-4a91-b8e5-2f9c1d7e3a0b",
              "amount": "1000.00",
              "currency": "USDC",
              "network": "ETHEREUM"
            }
          },
          "actual": {
            "from": {
              "account_id": null,
              "amount": null,
              "currency": null,
              "network": null
            },
            "to": {
              "account_id": null,
              "amount": null,
              "currency": null,
              "network": null
            }
          },
          "fees": [],
          "status": "confirmed",
          "status_reasons": [],
          "transaction_hash": "0xabcdef0123",
          "provider_key": null,
          "provider_data": null,
          "created_at": "2024-03-01T10:02:00.000Z",
          "updated_at": "2024-03-01T10:02:00.000Z",
          "submitted_at": null,
          "confirmed_at": "2024-03-01T10:02:00.000Z",
          "completed_at": null,
          "failed_at": null
        }
      ],
      "created_at": "2024-03-01T10:02:00.000Z",
      "updated_at": "2024-03-01T10:02:15.000Z"
    }
  }
}

Inbound Payment Completion (step.completed and payment.updated)

When the block finalizes, several things occur:

• The step status transitions from confirmed to completed.
• The step-level and top-level actual overlays populate.
• Tesser fires step.completed followed by payment.updated webhooks.
• Tesser updates the receiving wallet's available balance. The credit happens at finalization regardless of the risk outcome — risk screening does not gate it.

The payment.updated payload below shows a terminal state in which risk was manually approved before the block finalized. Because screening and finalization are independent, step.completed can fire first — in that case this payload's risk_status will still be "unchecked" or "awaiting_decision" instead.

Code
 
{
  "id": "e3d4e5f6-7a8b-4c9d-0e1f-2a3b4c5d6e7f",
  "type": "payment.updated",
  "created_at": "2024-03-01T10:14:00.500Z",
  "data": {
    "object": {
      "id": "9f3b7e1c-4a2d-4f69-b5a8-0c6e2d9f1a3b",
      "workspace_id": "b53f6690-3242-4942-9907-885779632832",
      "organization_reference_id": null,
      "direction": "inbound",
      "funding_account_id": null,
      "desired": {
        "from": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        },
        "to": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        }
      },
      "estimated": {
        "from": {
          "account_id": "2c7a9e1f-3b8d-4625-a0f4-6d1e5c9b2a8f",
          "amount": "1000.00",
          "currency": "USDC",
          "network": "ETHEREUM"
        },
        "to": {
          "account_id": "7a3d8f2e-6b4c-4a91-b8e5-2f9c1d7e3a0b",
          "amount": "1000.00",
          "currency": "USDC",
          "network": "ETHEREUM"
        }
      },
      "actual": {
        "from": {
          "account_id": "2c7a9e1f-3b8d-4625-a0f4-6d1e5c9b2a8f",
          "amount": "1000.00",
          "currency": "USDC",
          "network": "ETHEREUM"
        },
        "to": {
          "account_id": "7a3d8f2e-6b4c-4a91-b8e5-2f9c1d7e3a0b",
          "amount": "1000.00",
          "currency": "USDC",
          "network": "ETHEREUM"
        }
      },
      "risk_status": "manually_approved",
      "risk_status_reasons": [
        {
          "risk_status_reason_type": "counterparty",
          "risk_status_reason_category": "mixer",
          "risk_status_reason_severity": "high"
        }
      ],
      "risk_reviewed_by": "8e1f5a3b-2c4d-4e6f-9a8b-7d3c5e9f1a2b",
      "risk_reviewed_at": "2024-03-01T10:05:30.000Z",
      "balance_status": "unreserved",
      "balance_reserved_at": null,
      "expires_at": null,
      "steps": [
        {
          "id": "4f7c1a9e-2b3d-4e85-b0a6-8d5c2e1f3b9a",
          "payment_id": "9f3b7e1c-4a2d-4f69-b5a8-0c6e2d9f1a3b",
          "step_sequence": 1,
          "step_type": "transfer",
          "estimated": {
            "from": {
              "account_id": "2c7a9e1f-3b8d-4625-a0f4-6d1e5c9b2a8f",
              "amount": "1000.00",
              "currency": "USDC",
              "network": "ETHEREUM"
            },
            "to": {
              "account_id": "7a3d8f2e-6b4c-4a91-b8e5-2f9c1d7e3a0b",
              "amount": "1000.00",
              "currency": "USDC",
              "network": "ETHEREUM"
            }
          },
          "actual": {
            "from": {
              "account_id": "2c7a9e1f-3b8d-4625-a0f4-6d1e5c9b2a8f",
              "amount": "1000.00",
              "currency": "USDC",
              "network": "ETHEREUM"
            },
            "to": {
              "account_id": "7a3d8f2e-6b4c-4a91-b8e5-2f9c1d7e3a0b",
              "amount": "1000.00",
              "currency": "USDC",
              "network": "ETHEREUM"
            }
          },
          "fees": [],
          "status": "completed",
          "status_reasons": [],
          "transaction_hash": "0xabcdef0123",
          "provider_key": null,
          "provider_data": null,
          "created_at": "2024-03-01T10:02:00.000Z",
          "updated_at": "2024-03-01T10:14:00.000Z",
          "submitted_at": null,
          "confirmed_at": "2024-03-01T10:02:00.000Z",
          "completed_at": "2024-03-01T10:14:00.000Z",
          "failed_at": null
        }
      ],
      "created_at": "2024-03-01T10:02:00.000Z",
      "updated_at": "2024-03-01T10:14:00.000Z"
    }
  }
}

Spending the Inbound Funds

Inbound funds become spendable once the step reaches completed. The receiving wallet's available balance does not update until then, and you should not attempt on-chain transfers, rebalances, payouts, or off-ramps to fiat before the step completes. Until the step reaches completed, the on-chain transaction is in a block but the block has not yet finalized, so the transaction can still be reorganized away.

Available balance is credited at finalization regardless of the risk outcome — risk screening does not hold the funds. We recommend, however, that you wait for an approving risk_status (auto_approved or manually_approved) before spending inbound funds, and reconcile any auto_rejected or manually_rejected outcome against your own compliance policy before putting the funds to use.

Failure Modes for Inbound Payments

If the block containing the on-chain transaction does not finalize — most commonly because a chain reorganization removes the transaction from the canonical chain — the inbound payment terminates without crediting funds.

What you will observe:

• step.failed fires. The step transitions from confirmed to failed, failed_at populates, and step-level status_reasons carries the failure detail.
• payment.updated fires alongside, carrying the full updated payment with the failed step.
• Top-level actual.* stays all-null because nothing settled. estimated.* remains populated from payment.created, preserving the original observation; desired.* is all-null as always for inbound.
• Risk check process will terminate. If the risk check had not commenced, that process will not begin (risk_status remains unchecked). If the risk check had completed, but the webhook (payment.risk_updated) had not already fired by the time the reorg is detected, it will not fire. The outcome of the risk check will remain available via API.
• The receiving wallet's available balance is not updated — no funds were credited.

Example payment.updated webhook payload at the terminal failed state (risk had not yet completed when the reorg was detected):

Code
 
{
  "id": "f5d6e7a8-9b0c-4d1e-2f3a-4b5c6d7e8f90",
  "type": "payment.updated",
  "created_at": "2024-03-01T10:14:00.500Z",
  "data": {
    "object": {
      "id": "9f3b7e1c-4a2d-4f69-b5a8-0c6e2d9f1a3b",
      "workspace_id": "b53f6690-3242-4942-9907-885779632832",
      "organization_reference_id": null,
      "direction": "inbound",
      "funding_account_id": null,
      "desired": {
        "from": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        },
        "to": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        }
      },
      "estimated": {
        "from": {
          "account_id": "2c7a9e1f-3b8d-4625-a0f4-6d1e5c9b2a8f",
          "amount": "1000.00",
          "currency": "USDC",
          "network": "ETHEREUM"
        },
        "to": {
          "account_id": "7a3d8f2e-6b4c-4a91-b8e5-2f9c1d7e3a0b",
          "amount": "1000.00",
          "currency": "USDC",
          "network": "ETHEREUM"
        }
      },
      "actual": {
        "from": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        },
        "to": {
          "account_id": null,
          "amount": null,
          "currency": null,
          "network": null
        }
      },
      "risk_status": "unchecked",
      "risk_status_reasons": [],
      "risk_reviewed_by": null,
      "risk_reviewed_at": null,
      "balance_status": "unreserved",
      "balance_reserved_at": null,
      "expires_at": null,
      "steps": [
        {
          "id": "4f7c1a9e-2b3d-4e85-b0a6-8d5c2e1f3b9a",
          "payment_id": "9f3b7e1c-4a2d-4f69-b5a8-0c6e2d9f1a3b",
          "step_sequence": 1,
          "step_type": "transfer",
          "estimated": {
            "from": {
              "account_id": "2c7a9e1f-3b8d-4625-a0f4-6d1e5c9b2a8f",
              "amount": "1000.00",
              "currency": "USDC",
              "network": "ETHEREUM"
            },
            "to": {
              "account_id": "7a3d8f2e-6b4c-4a91-b8e5-2f9c1d7e3a0b",
              "amount": "1000.00",
              "currency": "USDC",
              "network": "ETHEREUM"
            }
          },
          "actual": {
            "from": {
              "account_id": null,
              "amount": null,
              "currency": null,
              "network": null
            },
            "to": {
              "account_id": null,
              "amount": null,
              "currency": null,
              "network": null
            }
          },
          "fees": [],
          "status": "failed",
          "status_reasons": [
            {
              "error_code": "payments-XXXX",
              "error_message": "placeholder error message"
            }
          ],
          "transaction_hash": "0xabcdef0123",
          "provider_key": null,
          "provider_data": null,
          "created_at": "2024-03-01T10:02:00.000Z",
          "updated_at": "2024-03-01T10:14:00.000Z",
          "submitted_at": null,
          "confirmed_at": "2024-03-01T10:02:00.000Z",
          "completed_at": null,
          "failed_at": "2024-03-01T10:14:00.000Z"
        }
      ],
      "created_at": "2024-03-01T10:02:00.000Z",
      "updated_at": "2024-03-01T10:14:00.000Z"
    }
  }
}

Inbound Payment Event Sequence

The happy path for an inbound payment fires the following webhook events. payment.risk_updated and step.completed run on independent clocks and can fire in either order; the receiving wallet's available balance updates when step.completed fires, regardless of the risk outcome.

If the on-chain transaction does not finalize (chain reorganization), the happy path is replaced by step.failed followed by payment.updated and the inbound payment terminates without crediting funds. See Failure Modes for Inbound Payments for details.

Reconciliation via the API

If your integration misses a webhook or needs to reconcile state on a schedule, fetch inbound payments via the Payments API:

Code
 
GET /v1/payments?direction=inbound

Auto-created unmanaged wallet accounts are also retrievable via GET /v1/accounts with the is_managed=false filter. See the Payments API reference and Accounts API reference for the full set of query parameters.