We have updated the webhooks events catalog to include the autopay.failed event. You can now set up subscriptions to receive notifications for the new event.

See Vendor auto-pay notification payloads for more information.

You can now create multiple vendors with a single POST /v3/vendors/bulk API call. You can create up to 20 vendors with one POST /v3/vendors/bulk request.

See POST /v3/vendors/bulk in the API reference for more information.

We have introduced a new MFA step-up for API session (POST /v3/mfa/step-up) endpoint.

Ideally, when you sign in with POST /v3/login, set rememberMeId and device in your request to generate an MFA-trusted API session.

In case you sign in without rememberMeId and device in your request, you can use this POST /v3/mfa/step-up endpoint to mark the current API session as MFA trusted.

📘

NOTE

In addition, we have added a new field in the API login endpoint response. You now see a trusted field in the response. This field is set as true if the current API session is MFA-trusted.

See POST /v3/mfa/step-up in the API reference for more information.

When you create a vendor with vendor bank account information, BILL has restrictions for updating this bank account information. To stay consistent with this BILL policy, we have removed the ability to update vendor bank account information with the Update a vendor (PATCH /v3/vendors/{vendorId}) endpoint.

At the same time, we have introduced a set of endpoints for vendor bank account operations. You can now add and manage vendor bank account information with a dedicated set of endpoints.

📘

NOTE

To update vendor bank account information, you must first delete the existing vendor bank account (with DELETE /v3/vendors/{vendorId}/bank-account), and then create a new vendor bank account (with POST /v3/vendors/{vendorId}/bank-account) with the updated information.

We have introduced a new Get funding account permissions (GET /v3/funding-accounts/permissions) endpoint. You can now get the funding account permissions available for the current organization and current organization user.

See GET /v3/funding-accounts/permissions in the API reference for more information.

We have introduced a new Get list of MFA phone numbers (GET /v3/mfa/phones) endpoint. You can now get a list of phone numbers that have been added for setting up MFA in the current organization.

See GET /v3/mfa/phones in the API reference for more information.

We have introduced a new Get list of organizations (GET /v3/partner/organizations) endpoint. As a BILL partner, you can get a list of organizations that you have created and manage.

See GET /v3/partners/organizations in the API reference for more information.

You can get details about your current API session with GET /v3/login/session. In the response, we have introduced PHONE_VERIFICATION as a new value for the mfaStatus field.

Your organization mfaStatus is set as PHONE_VERIFICATION when the organization does not use MFA. See GET /v3/login/session in the API reference for more information.

We have added a new recipe for showcasing the MFA sign in workflow with the v3 API. See MFA sign in the Recipes section for more information.

We have updated the webhooks events catalog to include the card-account.created event. You can now set up subscriptions to receive notifications for the new event.

See Card account notification payloads for more information.