Creating a card

How to create a customer card and an associated card account.


After you create a customer resource and once they've passed KYC verification, you can create a card which simultaneously also creates an associated card account.

▶ Run in Postman

A card and its card account are closely coupled but logically distinct, the difference is what is being managed. The card resource contains information about the actual physical or virtual card, while the card account resource stores broader account information, such as what bank accounts are connected to the card. For card type details, see Card types.

The card configuration is determined by the program_id which is provided by Bond based on your requirements. There are three card configurations:

  • Virtual
  • Physical
  • Dual

For details, see Card program ID.

Upon creation, a virtual card is usable immediately but a physical card is issued as inactive and must be activated before it can be used.

Creating a card and card account

Use the POST /cards operation and provide the parameters as shown in the following table.




required for a customer card


The unique ID used to reference a customer resource, for example 931e2341-c3eb-4681-97d4-f6e09d90da14.

required for a business card


The unique ID used to reference a business resource, for example ee1ce096-3c5f-411a-a789-3c5635acbae4.



Program ID that represents the card program offered to customers by your brand in partnership with a bank. For example, 2742ff6a-7455-4066-8b45-ae12d3acca34.



Credit limit to be enforced for the card in decimal format with two decimal places, for example 1200.00.

required for a supplementary card


Card ID of the parent card, for example ee1ce096-3c5f-411a-a789-3c5635acbae4.



The visual design of the card. Contact Bond support regarding creating card designs.

An example of a request to create a card is shown below.

curl --request POST \
     --url \
     --header 'Accept: application/json' \
     --header 'Authorization: YOUR_AUTHORIZATION' \
     --header 'Content-Type: application/json' \
     --header 'Identity: YOUR-IDENTITY' \
     --data '
     "program_id": "2742ff6a-7455-4066-8b45-ae12d3acca34",
     "business_id": "31c6c172-319f-4619-ab85-78e8e9edc088",
     "credit_limit": "1200.00",
     "parent_card_id": "6f0e7dcb-6073-42df-bf02-ce71bd5fac3b",
     "card_design_id": "5"
require 'uri'
require 'net/http'
require 'openssl'

url = URI("")

http =, url.port)
http.use_ssl = true

request =
request["Accept"] = 'application/json'
request["Content-Type"] = 'application/json'
request["Identity"] = 'YOUR-IDENTITY'
request["Authorization"] = 'YOUR_AUTHORIZATION'
request.body = "{\"program_id\":\"2742ff6a-7455-4066-8b45-ae12d3acca34\",\"business_id\":\"31c6c172-319f-4619-ab85-78e8e9edc088\",\"credit_limit\":\"1200.00\",\"parent_card_id\":\"6f0e7dcb-6073-42df-bf02-ce71bd5fac3b\",\"card_design_id\":\"5\"}"

response = http.request(request)
puts response.read_body
const options = {
  method: 'POST',
  headers: {
    Accept: 'application/json',
    'Content-Type': 'application/json',
    Identity: 'YOUR-IDENTITY',
    Authorization: 'YOUR_AUTHORIZATION'
  body: JSON.stringify({
    program_id: '2742ff6a-7455-4066-8b45-ae12d3acca34',
    business_id: '31c6c172-319f-4619-ab85-78e8e9edc088',
    credit_limit: '1200.00',
    parent_card_id: '6f0e7dcb-6073-42df-bf02-ce71bd5fac3b',
    card_design_id: '5'

fetch('', options)
  .then(response => response.json())
  .then(response => console.log(response))
  .catch(err => console.error(err));
import requests

url = ""

payload = {
    "program_id": "2742ff6a-7455-4066-8b45-ae12d3acca34",
    "business_id": "31c6c172-319f-4619-ab85-78e8e9edc088",
    "credit_limit": "1200.00",
    "parent_card_id": "6f0e7dcb-6073-42df-bf02-ce71bd5fac3b",
    "card_design_id": "5"
headers = {
    "Accept": "application/json",
    "Content-Type": "application/json",
    "Identity": "YOUR-IDENTITY",
    "Authorization": "YOUR_AUTHORIZATION"

response = requests.request("POST", url, json=payload, headers=headers)

var client = new RestClient("");
var request = new RestRequest(Method.POST);
request.AddHeader("Accept", "application/json");
request.AddHeader("Content-Type", "application/json");
request.AddHeader("Identity", "YOUR-IDENTITY");
request.AddHeader("Authorization", "YOUR_AUTHORIZATION");
request.AddParameter("application/json", "{\"program_id\":\"2742ff6a-7455-4066-8b45-ae12d3acca34\",\"business_id\":\"31c6c172-319f-4619-ab85-78e8e9edc088\",\"credit_limit\":\"1200.00\",\"parent_card_id\":\"6f0e7dcb-6073-42df-bf02-ce71bd5fac3b\",\"card_design_id\":\"5\"}", ParameterType.RequestBody);
IRestResponse response = client.Execute(request);
OkHttpClient client = new OkHttpClient();

MediaType mediaType = MediaType.parse("application/json");
RequestBody body = RequestBody.create(mediaType, "{\"program_id\":\"2742ff6a-7455-4066-8b45-ae12d3acca34\",\"business_id\":\"31c6c172-319f-4619-ab85-78e8e9edc088\",\"credit_limit\":\"1200.00\",\"parent_card_id\":\"6f0e7dcb-6073-42df-bf02-ce71bd5fac3b\",\"card_design_id\":\"5\"}");
Request request = new Request.Builder()
  .addHeader("Accept", "application/json")
  .addHeader("Content-Type", "application/json")
  .addHeader("Identity", "YOUR-IDENTITY")
  .addHeader("Authorization", "YOUR_AUTHORIZATION")

Response response = client.newCall(request).execute();

An example of a response to a successful request to create a card is shown below.


To change the limit on a card, see Changing the limit on a card.

For a complete specification and interactive examples, see Creating a card and card account in the Bond API Reference.

Did this page help you?