> ## Documentation Index
> Fetch the complete documentation index at: https://docs.marzipan.co/llms.txt
> Use this file to discover all available pages before exploring further.

# List payment methods

> Retrieve the saved (non-wallet) payment methods for the authenticated customer.



## OpenAPI

````yaml /api-reference/openapi.json get /account/payments/methods
openapi: 3.0.0
info:
  title: Marzipan API
  version: 1.0.0
servers:
  - url: https://api.marzipan.co/v1
security:
  - tenantAuth: []
tags:
  - name: Account
    description: >-
      Account management endpoints including registration, login, and user
      details
  - name: Carts
    description: Shopping cart management endpoints
  - name: Products
    description: Product catalog and search endpoints
  - name: Subscriptions
    description: Subscription management and renewal endpoints
  - name: CMS
    description: Content management system endpoints
  - name: Messaging
    description: Message and communication endpoints
  - name: Search
    description: Search functionality endpoints
  - name: Settings
    description: >-
      Storefront settings and market detection used to configure the web
      components and checkout.
  - name: Analytics
    description: Storefront visit and attribution tracking.
  - name: Rewards
    description: >-
      Loyalty and rewards programme endpoints for the authenticated customer,
      covering points balance, tier status, perks, exclusive products and
      transaction history.
  - name: Forms
    description: Render and submit dynamic storefront forms defined in the CMS.
  - name: Events
    description: >-
      Check event availability, browse occurrences and recurring dates, generate
      ticket QR codes, and manage event waitlists (join, leave, check status,
      and claim promoted spots).
paths:
  /account/payments/methods:
    parameters: []
    get:
      tags:
        - Account
      summary: List payment methods
      description: >-
        Retrieve the saved (non-wallet) payment methods for the authenticated
        customer.
      responses:
        '200':
          description: Success
          content:
            application/json:
              schema:
                type: array
                items:
                  $ref: '#/components/schemas/PaymentMethod'
              example:
                - id: a1b2c3d4-e5f6-7890-a1b2-c3d4e5f60718
                  provider: stripe
                  paymentMethod: card
                  providerId: pm_1QabcDEF1234567890
                  cardType: visa
                  cardLast4: '4242'
                  cardExpMonth: 12
                  cardExpYear: 2028
                  default: true
        '401':
          description: Unauthenticated
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/Error'
              example:
                message: Unauthenticated.
      security:
        - accountAuth: []
components:
  schemas:
    PaymentMethod:
      type: object
      properties:
        id:
          type: string
          format: uuid
        provider:
          type: string
        paymentMethod:
          type: string
          description: e.g. card
        providerId:
          type: string
          description: Provider token/reference
        cardType:
          type: string
          nullable: true
        cardLast4:
          type: string
          nullable: true
        cardExpMonth:
          type: integer
          nullable: true
        cardExpYear:
          type: integer
          nullable: true
        default:
          type: boolean
    Error:
      type: object
      properties:
        message:
          type: string
          description: Error message
      required:
        - message
  securitySchemes:
    tenantAuth:
      type: http
      scheme: bearer
      description: >-
        Bearer authentication header of the form `Bearer <token>`, where
        `<token>` is your API token.
      bearerFormat: JWT
    accountAuth:
      type: http
      scheme: bearer
      description: >-
        Bearer authentication header of the form `Bearer <token>`, where
        `<token>` is the account token returned from the `Login` endpoint.

````