Rakesh Vaddadi
Co-founder & CEO · Beacon.li
OneFinOps centralized our accounting, GST and approvals into one workflow. We now process vendor invoices 2.4x faster.
GST E-Invoice API
Authorised GSP under the hood. OAuth per GSTIN, idempotency keys and webhooks on every state change. SDKs in Node, Python, PHP, Java, Go and .NET.
Trusted by product teams
REST API
Versioned endpoints for IRN generation, e-way bill issuance, cancellation, amendment via credit and debit notes (CDNR), and reconciliation reads. JSON in, JSON out. The schema mirrors the GSTN spec, so the documentation you read on the IRP applies one-to-one in your code.
Authorised GSP routing
OneFinOps connects through authorised GSPs in the GSTN partner programme. Your traffic goes from your service to OneFinOps to the GSP layer to the NIC IRP. Multi-GSP routing for redundancy when an IRP region is degraded.
SDKs
Idiomatic clients for the six runtimes Indian engineering teams ship in. Typed responses, async-first interfaces, automatic retries with exponential backoff and request signing baked in. Open-source on GitHub. Semantic versioning, changelog per release.
Node.js
Python
PHP
Java
Go
.NET
Webhooks
Subscribe to IRN success, IRN failure, IRN cancellation, e-way bill issuance, EWB validity update and CDNR events. Signed payloads with HMAC. At-least-once delivery with retry-and-replay. Dead-letter queue inspectable from the dashboard.
Sandbox & Production
Dedicated sandbox environment with the full schema and the GSTN's test PAN/GSTIN seed data. Cut over to production with a credential swap, no code change. Rate limits and latency profiles in sandbox match production within tolerance.
Idempotency
Send any IRN, EWB or CDNR request with an Idempotency-Key header. The same key returns the same response within the 24-hour replay window. Safe retries on network failure without the duplicate-IRN risk that the GSTN penalises.
Bulk Endpoints
Submit up to 5,000 invoices in a single bulk call. Each record validated locally, then relayed via the authorised GSP. Per-record success or failure returned synchronously, with the full IRN payload on success and the GSTN error code on failure. Webhooks fire as records complete.
Multi-GSTIN OAuth
Each GSTIN gets its own OAuth client credentials. Rotate keys without service interruption via dual-key support. Scope the credentials to specific endpoints (read-only, IRN-only, full). Audit log of every credential issue, rotation and revoke.
Observability
Request log per call with the GSTN payload, the response, the latency breakdown and the retry chain. Filter by IRN, GSTIN, endpoint, status code or date. Export to your SIEM. The same data feeds the failure-resolution playbook in the dashboard.
Schema Versioning
When the GSTN updates the e-invoice schema (new field, deprecated field, validation change), the API layer absorbs it. Your existing requests continue to work. Breaking schema changes (rare) get a 90-day deprecation window with a clear migration path.
At scale
IRN latency p50, end to end
API uptime, with auto-retry on transient GSTN outages
Node, Python, PHP, Java, Go, .NET
from sandbox key to first production IRN
Customer stories
Clean REST, sandbox to production parity, and a per-request audit log billing teams can settle invoices against.
Rakesh Vaddadi
Co-founder & CEO · Beacon.li
OneFinOps centralized our accounting, GST and approvals into one workflow. We now process vendor invoices 2.4x faster.
Kshitiz Sachan
Founder · Tribe
We finally have one source of truth across AR, AP and compliance. The real-time visibility lets our team operate with confidence.
Sashi Pagadala
CEO · Praval
Coordinating finance and procurement used to eat hours every day. OneFinOps now saves our team nearly 18 hours a week.
Buyer FAQ
GST E-Invoicing Software is a full UI for finance teams: dashboards, queues, GSTR-1 drafts, multi-GSTIN management. The E-Invoice API is the same underlying authorised-GSP integration, exposed as a REST API for engineering teams that want to embed IRN, EWB and CDNR generation directly into their own product, ERP or invoicing service. Same authorised-GSP path, no UI.
Yes. OneFinOps connects to the NIC IRP via authorised GSPs in the GSTN partner programme. Your traffic goes from your service to OneFinOps to the GSP layer to the NIC IRP. Multi-GSP routing kicks in when an IRP region is degraded, so your integration sees fewer downstream failures than a single-GSP setup.
The API queues the request locally and retries with exponential backoff against the failover GSP. Your client sees a single response (the eventual success or a clear failure with a GSTN error code). Webhook fires when the IRN finally lands. We publish IRP status on a public status page; the SDKs read from it to back off intelligently.
Sandbox uses GSTN-provided test PAN and GSTIN seed data. The schema, the validation rules and the response shape are identical to production. Rate limits and latency profiles are tuned to match production within tolerance, so you do not get a surprise on the day you cut over. To switch to production, you swap credentials, no code change required.
Default rate limits scale with plan: 10 requests per second on the developer plan, 100 on the standard plan, custom on the enterprise plan. Bulk endpoints accept up to 5,000 records per call. The X-RateLimit-* headers ship on every response so you can throttle from the client side.
Dual-key support is built in. Provision a new client credential, switch your traffic over, then revoke the old one. The audit log captures every issue, rotation and revoke event. Credentials never appear in webhook payloads or request logs; we redact them at the edge.
Each GSTIN gets its own OAuth client credentials. The auth scope is per-GSTIN, so a credential for GSTIN A cannot generate IRN against GSTIN B. SaaS platforms invoicing on behalf of their tenants can issue per-tenant credentials and let each tenant manage their own GSTN registration without exposing other tenants.
Sandbox access is free for development, with the first 100 IRNs per month included. Production pricing is scoped to your IRN volume and the APIs you use, with volume tiers on enterprise plans. Talk to sales for a quote.
Send the Idempotency-Key header on any state-changing request (IRN, EWB, cancel, CDNR). The same key returns the same response within a 24-hour window. After 24 hours, the key is released. The replay window matches the GSTN's own duplicate-detection window, so you cannot accidentally generate two IRNs for the same invoice.
Yes. We share SOC 2 Type II report (gated NDA), the architecture diagram, the data-flow diagram and the GSP partnership documentation. Indian customer data is hosted in India. The API is exposed only over TLS 1.3, with HSTS, certificate pinning support in the SDKs, and request signing on every call.
Sign up free. The sandbox is GSTN-spec-equivalent. Generate your first IRN before lunch, swap to production credentials when your team is ready.
Comparing alternatives?