Supergood | AtoB API

Programmatically access AtoB fleet payment data, card controls, fraud protections, and driver payouts with a stable REST API. Supergood builds and operates production-grade, unofficial AtoB integrations so your team can automate fuel spend, control policies, and payroll without heavy custom engineering.

Plain English: AtoB is a fleet payments platform that issues fuel and spend cards, enforces granular controls (fuel-only, MCC/category restrictions, per-transaction and daily limits), prevents fraud using telematics-aware rules, and streamlines driver payouts—all with reporting that helps fleets manage operating costs and compliance (e.g., IFTA fuel tax). An unofficial API lets you programmatically pull cards, drivers, vehicles, and fuel transactions; retrieve station and merchant details; and push updates to card controls, assignments, and driver payouts.

For a tech company integrating with AtoB, this means you can ingest real-time transactions to power cost dashboards, tie fueling to telematics for geofenced approvals, sync statements to accounting, automate instant driver payouts from your TMS, and keep spend policies in lockstep with your own workflows. You can also push limit changes based on job, route, or driver status; assign cards to vehicles; attach odometer and route data for IFTA; and deliver receipts and documents to downstream systems.

What is AtoB?

AtoB (https://www.atob.com/) is a cloud fintech platform for transportation and logistics fleets that centralizes payments, fuel spend, and driver financial workflows. Teams use AtoB to issue fuel cards (Visa acceptance), configure card controls and fraud prevention, locate discounted stations, pay drivers, and report on transactions for accounting and compliance.

Core product areas include:

• Fleet Payments & Fuel Cards (acceptance network, discounts, statements)
• Spend Controls (fuel-only, MCC restrictions, per-transaction/daily limits, time windows)
• Fraud Prevention & Telematics (geofenced approvals, odometer capture, location checks)
• Driver App & Payouts (earnings, instant pay, card disbursements)
• Reporting & Compliance (IFTA fuel tax data, merchant/category analytics)

Common data entities:

• Companies, Users, Roles/Permissions
• Drivers and Vehicles (assignments, identifiers)
• Cards (status, controls, PAN tokens, PIN configuration)
• Transactions (authorizations, settlements, gallons, product type, merchant, MCC)
• Merchants/Stations (location, brand, discounts)
• Payouts and Earnings (amounts, methods, status)
• Statements and Reports (periods, totals, jurisdictions)

The AtoB Integration Challenge

Fleets rely on AtoB daily, but turning portal-based workflows into API-driven automation can be tricky:

• Real-time controls: Card control updates and authorization outcomes depend on multiple rules (MCC, time-of-day, geofence, odometer), which must be applied consistently and quickly.
• Enterprise security: Admin access typically uses MFA, and card/account data is sensitive; integrations must avoid handling raw PANs and adhere to PCI-safe patterns.
• Portal-first features: Many capabilities (policy updates, driver assignments, payouts) are optimized for the web app and mobile flows; structured exports can be limited.
• Settlement vs. authorization: Transaction lifecycles include pre-auth, completion, and settlement timing—developers need normalized states to avoid double counting.
• Operational realities: Fleets report pain points like inconsistent merchant naming, delayed statement availability, or card declines due to overly strict controls; integrations should add observability and guardrails.

How Supergood Creates AtoB APIs

Supergood reverse-engineers authenticated browser flows and network interactions to deliver a resilient API endpoint layer for your AtoB tenant.

• Handles username/password, SSO/OAuth, and MFA (SMS, email, TOTP) securely
• Maintains session continuity with automated refresh and change detection
• Normalizes responses (cards, drivers, transactions, payouts) into consistent resource schemas
• Aligns with customer entitlements and role-based permissions to ensure compliant access
• Redacts sensitive payment data and uses tokenized identifiers to remain PCI-safe

Use Cases

Card Control Automation

• Enforce fuel-only rules, MCC whitelists, and time windows programmatically
• Adjust per-transaction and daily limits by route, job, or driver status
• Assign cards to vehicles and drivers with required odometer capture

Transaction Sync & Analytics

• Mirror authorized and settled transactions into your data warehouse
• Build dashboards for gallons, product mix (diesel/gas/DEF), price-per-gallon, taxes
• Flag anomalies (off-route fueling, excessive unit price) and trigger workflows

Driver Payroll and Disbursements

• Automate instant payouts tied to completed loads or time sheets
• Reconcile disbursements against earnings and advances in your TMS/payroll system
• Provide payout status updates back to driver and ops portals

Telematics-Aware Fraud Prevention

• Integrate with location data to drive geofenced approvals
• Log odometer and GPS at time of fueling for audits and IFTA support
• Alert when transactions occur outside approved windows or areas

IFTA & Compliance

• Produce jurisdictional summaries of gallons and spend
• Attach route and odometer to transactions for audit completeness
• Export statements and reports to accounting/ERP

Available Endpoints

Authentication

POST /sessions: Establish a session using credentials. Supergood manages MFA (SMS, email, TOTP) and SSO/OAuth when enabled. Returns a short-lived auth token maintained by the platform.

curl --request POST \
  --url https://api.supergood.ai/integrations/<integration_id>/sessions \
  --header 'Authorization: Basic <Base64 encoded token>' \
  --header 'Content-Type: application/json' \
  --data '{
    "username": "[email protected]",
    "password": "<password>",
    "mfa": { "type": "totp", "code": "123456" }
  }'

Example response

{
  "authToken": "eyJhbGciOi...",
  "expiresIn": 3600,
  "user": {
    "id": "u_8a2f10",
    "name": "Fleet Admin",
    "entitlements": ["cards", "transactions", "drivers", "payouts"]
  }
}

POST /sessions/refresh: Refresh an existing token to keep sessions uninterrupted.

Cards & Controls

PATCH /cards/{cardId}/controls: Update card controls and assignments (fuel-only rules, MCC whitelist, spend limits, geofence, odometer requirements).

curl --request PATCH \
  --url https://api.supergood.ai/integrations/<integration_id>/cards/card_72c91d/controls \
  --header 'Authorization: Bearer <authToken>' \
  --header 'Content-Type: application/json' \
  --data '{
    "status": "active",
    "fuelOnly": true,
    "allowedMccs": ["5541", "5542"],
    "dailySpendLimit": 500.00,
    "perTransactionLimit": 200.00,
    "timeWindows": [
      {"start": "05:00", "end": "21:00", "timezone": "America/Chicago"}
    ],
    "zipWhitelist": ["77017", "77019"],
    "geofence": {"lat": 29.76328, "lon": -95.36327, "radiusMeters": 2500},
    "odometerRequired": true,
    "pinEnabled": true,
    "driverId": "drv_45b110",
    "vehicleId": "veh_90de31"
  }'

Example response

{
  "cardId": "card_72c91d",
  "last4": "9921",
  "status": "active",
  "controls": {
    "fuelOnly": true,
    "allowedMccs": ["5541", "5542"],
    "dailySpendLimit": 500.0,
    "perTransactionLimit": 200.0,
    "timeWindows": [{"start": "05:00", "end": "21:00", "timezone": "America/Chicago"}],
    "zipWhitelist": ["77017", "77019"],
    "geofence": {"lat": 29.76328, "lon": -95.36327, "radiusMeters": 2500},
    "odometerRequired": true,
    "pinEnabled": true
  },
  "assignment": {
    "driverId": "drv_45b110",
    "vehicleId": "veh_90de31"
  },
  "updatedAt": "2026-01-21T14:05:22Z"
}

Transactions

GET /transactions: List transactions (authorizations and settlements) with rich filters and line details.

Query parameters

• cardId: string
• driverId: string
• vehicleId: string
• status: authorized | settled | declined
• productType: diesel | gas | def | maintenance
• mcc: string
• merchantId: string
• from, to: ISO 8601 timestamps
• minAmount, maxAmount: numbers
• page, pageSize: integers for pagination

Example response

{
  "items": [
    {
      "transactionId": "txn_5fb3d2",
      "status": "settled",
      "cardId": "card_72c91d",
      "last4": "9921",
      "driverId": "drv_45b110",
      "vehicleId": "veh_90de31",
      "merchant": {
        "merchantId": "m_11221",
        "name": "FuelStop #218",
        "mcc": "5541",
        "location": {"lat": 29.768, "lon": -95.361, "address": "123 Main St, Houston, TX"}
      },
      "productType": "diesel",
      "gallons": 73.21,
      "unitPrice": 3.89,
      "amount": 284.79,
      "currency": "USD",
      "tax": 18.55,
      "odometer": 235118,
      "authorizationId": "auth_9da810",
      "authorizedAt": "2026-01-18T11:42:07Z",
      "settledAt": "2026-01-19T02:14:55Z"
    }
  ],
  "page": 1,
  "pageSize": 50,
  "total": 1
}

Driver Payouts

POST /drivers/{driverId}/payouts: Create a payout to a driver (instant or scheduled) with memo and external references.

curl --request POST \
  --url https://api.supergood.ai/integrations/<integration_id>/drivers/drv_45b110/payouts \
  --header 'Authorization: Bearer <authToken>' \
  --header 'Content-Type: application/json' \
  --data '{
    "amount": 250.00,
    "currency": "USD",
    "method": "card_disbursement",
    "memo": "Load #A9842 completion bonus",
    "externalReference": "load_A9842",
    "scheduleAt": null,
    "fundingSource": "operating_account"
  }'

Example response

{
  "payoutId": "pay_7b920a",
  "driverId": "drv_45b110",
  "status": "queued",
  "amount": 250.00,
  "currency": "USD",
  "createdAt": "2026-01-21T15:02:11Z",
  "estimatedArrival": "2026-01-21T15:07:11Z"
}

Get full API Specs →

Technical Specifications

• Authentication: Username/password with MFA (SMS, email, TOTP) and SSO/OAuth where enabled; supports service accounts or customer-managed credentials
• Response format: JSON with consistent resource schemas and pagination across modules
• Rate limits: Tuned for enterprise throughput while honoring customer entitlements and usage controls
• Session management: Automatic reauth and cookie/session rotation with health checks
• Data freshness: Near real-time retrieval of cards, transactions (auth and settlement), and payout statuses
• Security: Encrypted transport, scoped tokens, and audit logging; redaction of PANs and tokenized financial identifiers; respects AtoB role-based permissions
• Webhooks: Optional asynchronous delivery for transaction settlements, card control changes, and payout lifecycle events

Performance Characteristics

• Latency: Sub-second responses for list/detail queries under normal load
• Throughput: Designed for high-volume transaction sync and control updates across large fleets
• Reliability: Retry logic, backoff, and idempotency keys minimize duplicate actions
• Adaptation: Continuous monitoring for UI/API changes with rapid adapter updates

Getting Started

1. Schedule Integration Assessment

Book a 30-minute session to confirm your modules, licensing, and authentication model.

2. Supergood Builds and Validates Your API

We deliver a hardened AtoB adapter tailored to your workflows and entitlements.

3. Deploy with Monitoring

Go live with continuous monitoring and automatic adjustments as AtoB evolves.

Schedule Integration Call →

Frequently Asked Questions

Q: Which AtoB modules can this integration cover?

Supergood supports commonly used areas such as Cards & Controls, Transactions (authorizations and settlements), Driver/Vehicle assignments, Payouts/Disbursements, and Reporting/Statements, subject to your licensing and entitlements. We scope coverage during integration assessment.

Q: How are MFA and SSO handled for automation?

We support username/password + MFA (SMS, email, TOTP) and can operate behind SSO/OAuth when enabled. Sessions are refreshed automatically with secure challenge handling.

Q: Can you sync transactions and statements to our ERP?

Yes. We normalize transactions and statements to match your ERP or accounting schema (e.g., NetSuite, QuickBooks) and deliver updates via webhooks or polling while complying with rate and permission constraints.

Q: Do you support telematics-aware geofencing and odometer capture?

Yes. We can ingest telematics/location signals and attach them to authorizations. Control updates can include geofences and odometer requirements for fraud prevention and IFTA support.

Q: What integration issues do fleets commonly face with AtoB?

Portal-first workflows, limited public APIs, strict card controls causing unexpected declines, and settlement timing differences are typical pain points. Supergood adds observability (events, status mapping), safe retries, and consistent schemas to reduce operational friction.

Related Integrations

Intralinks API - Programmatically access the Intralinks VDR with Supergood

Ready to automate your AtoB workflows?

Supergood can have your AtoB integration live in days with no ongoing engineering maintenance.

Get Started →