Refund a payment
Authorization: requires payments:write API-key scope AND the per-user payments.refund_void permission (SoD parity sweep 2026-05-16; AICPA SoD 4-role split). Initiator (creator) cannot refund their own payment (separate SoD invariant enforced via assertPaymentSoD).
Issue a refund against a specific payment. amount in cents (Stripe-parity). Refund-cap enforced: amount <= payment.amount - payment.refund_amount (Rule 23 SSOT). Returns 202 if the Stripe refund is asynchronously pending (bank ACH, etc.). Idempotent via Idempotency-Key header.
Authorizations
API key issued per entity via Settings > Developers > API Keys.
Each key carries scopes (e.g. orders:read, products:write).
Bearer token format: Authorization: Bearer ark_live_ent_Test keys use ark_test_ent_. Both are issued per entity
via Settings > Developers > API Keys.
Headers
Client-generated unique key for idempotent POST/PATCH/DELETE operations. Alias for the Idempotency parameter. Max 255 chars. On retry with the same key, the original response is returned without re-executing the operation. Keys expire after 24 hours.
255Body
Response
Refund created
The response is of type object.

