contdt.com

API Documentation

Integrate BIC validation into your applications

Endpoints

Signed-in browser session

https://contdt.com/api/validate

Direct API integration

https://api.contdt.com/v2/validate

Current Session Tier

Signed-in users see the effective limit that applies to their current platform tier. Anonymous visitors still get browser-only validation through the main site.

Free

Public browser validation is available, but owner lookup still requires authentication.

100 req/day + 3,000 req/month

POST /v2/validate

Validate one or more BIC codes with configurable options. Owner lookup requires either a signed-in browser session on the main site or an authenticated direct API call.

Owner lookup example

Use the BFF endpoint when the user is already signed in on the public service surface.

POST /api/validate
Content-Type: application/json

{
  "bic_codes": "BDCU1111113\nMSCU1234566",
  "options": {
    "check_digit": true,
    "check_owner": true,
    "check_format": false
  }
}

Formatting example

Browser and signed-in operators can trigger formatting through the main-site BFF without exposing gateway credentials.

curl -X POST https://contdt.com/api/validate \
  -H "Content-Type: application/json" \
  -d '{
    "bic_codes": "BDCU-111111-3\nMSCU1234566",
    "options": {
      "check_digit": true,
      "check_owner": false,
      "check_format": true,
      "format_mask": "AAAU NNNNNN-C"
    }
  }'

Authenticated API request

Call the external API directly with a subscribed application credential when you need owner data outside the web session.

curl -X POST https://api.contdt.com/v2/validate \
  -H "X-Gravitee-Api-Key: $BIC_PLATFORM_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "bic_codes": "BDCU1111113\nMSCU1234566",
    "options": {
      "check_digit": true,
      "check_owner": true,
      "check_format": false
    }
  }'

Owner Response Example

{
  "status": "ok",
  "data": [
    {
      "input": "BDCU1111113",
      "output": "BDCU 111111 3",
      "status": "ok",
      "owner": {
        "found": true,
        "suspended": false,
        "data_tier": "full",
        "info": {
          "company": "BD CONTAINERS BV",
          "country": "Netherlands",
          "city": "AMSTERDAM",
          "street": "RUIJGOORDWEG 100",
          "website": "https://www.bdcontainers.com",
          "status": "active",
          "created": "2020-01-15",
          "cancelled": null,
          "last_updated": "2025-12-13T19:58:40Z"
        }
      }
    }
  ],
  "errors": null
}

Authentication

Browser users can call `POST /api/validate` after signing in on the main site. Direct API integrations should use a credential attached to an active Gravitee subscription. Active gateway policy: Free tier 100 req/day + 3,000 req/month. Pro tier 1,000 req/hour. Enterprise tier No rate limit.

X-Gravitee-Api-Key: $BIC_PLATFORM_API_KEY

Rate Limits

Anonymous browser session
Owner lookup is unavailable until authentication.
100 req/day + 3,000 req/month
Free
100 req/day + 3,000 req/month
Pro
1,000 req/hour
Enterprise
No rate limit