Docs Home
Dev Essentials
PaymentsCommerceCustomersStaffMerchants
Publish
Release notes

Docs

Docs Home
Dev Essentials
Payments
Commerce
Customers
Staff
Merchants
Publish
Release notes
Create an Account and App
Make your First API Call
View the API Logs
Verify the Payment
What's Next
Overview
Versioning
Access Tokens
Frontend and Backend Development
TLS and HTTPS
Using the REST API
Handling Errors
Collecting Information
Language Preferences
Working with Dates
Working with Monetary Amounts
Working with Addresses
Custom Attributes
Idempotency
Pagination
Optimistic Concurrency
Clear Object Fields
Square eCommerce APIs
Square API Lifecycle
Developer Tools
Developer Console
Square Dashboard
Sandbox
Test in Sandbox
Sandbox Payments
Sandbox Seeding Data
API Explorer
API Logs
Webhook Event Logs
Create a Notification URL
Subscribe to Event Notifications
Verify and Validate an Event Notification
Manage Operations
Move Event Notifications to Production
Webhook Events Reference
Troubleshooting
Build a Developer Team
Authentication
Postman
Quickstart
Project Setup
Using the SDK
Common API Patterns
Quickstart
Project Setup
Using the SDK
Common API Patterns
Quickstart
Common API Patterns
Migration Guide
Quickstart
Project Setup
Using the SDK
Common API Patterns
Quickstart
Project Setup
Using the SDK
Common API Patterns
Quickstart
Project Setup
Using the SDK
Common API Patterns
Quickstart
Sample Applications
GraphQL Basics
Build your First Query
GraphQL Explorer
Query Examples
Create Redirect URL and Authorization Page URL
Receive Authorization and Manage OAuth Tokens
Refresh and Revoke OAuth Tokens
Token Introspection
OAuth Best Practices
OAuth Walkthrough
Migrate to the Square API OAuth Flow
Move OAuth to Production
Permissions Reference
Webhook Subscriptions
Events
Deprecated Items
v1 Payments API
v1 Refunds API
Square Transactions API
Migrate Employees to Team Members
Migrate from CreateCheckout to CreatePaymentLink
OAuth and Testing
International Payments
Regional Differences for International Development
Compliance with Japan's Tax Invoice System

/

Dev Essentials

/

Developer Tools

Square Sandbox

Use the Sandbox test environment to simulate transactions and experiment with Square APIs while building an application.

Overview
Requirements and limitations
Sandbox cost
Sandbox test accounts
Open the Sandbox Square Dashboard
Create a Sandbox test account
Link to section

Overview

The Square Sandbox is a free, isolated server environment that allows developers to safely test Square APIs without affecting real data. It lets you simulate payment processing and other business activities using test seller accounts and test payment methods. Square provisions a Sandbox environment for each application you register in the Developer Console and a Sandbox Square Dashboard for each test account.

Important

Don't keep any PII (personal identifiable information) in a Sandbox environment, such as names, email addresses, phone numbers, or birthdays. Personal data in a Sandbox doesn't comply with GDPR. For more information, see Square GDPR FAQs. If you need to add personal data for any reason (such as migration testing), make sure to promptly delete it after completing your task.

The Sandbox base URL is https://connect.squareupsandbox.com. The base URL is used for Square API calls in the Sandbox, for example:

  • CreatePayment - https://connect.squareupsandbox.com/v2/payments
  • ObtainToken - https://connect.squareupsandbox.com/oauth2/token

To make Square GraphQL queries in the Sandbox, use:

  • https://connect.squareupsandbox.com/public/graphql

Note

The production base URL is https://connect.squareup.com. Account credentials and resources from one environment cannot be used with or accessed from the other.

You can choose the Sandbox environment when using Square developer tools:

  • In the Developer Console, when you open an application, choose Sandbox in the toggle at the top of the page.

    A screenshot showing the Sandbox/Production environment toggle for an application in the Developer Console.

  • In API Explorer, choose Sandbox in the toggle in the Access token box.

  • In GraphQL Explorer, choose Sandbox in the toggle at the top of the page.

  • With Square SDKs, configure the Sandbox environment when the Square client is initialized.

Use the Sandbox to:

  • Test different payment scenarios using Sandbox credit card numbers, payment tokens, and other test values. These Sandbox payment values are never charged.
  • Test end-to-end flows using API Explorer or your own code. For example, you can create an inventory and subscriptions, create orders, and take payments using Sandbox payment values. You can also subscribe for Sandbox webhook notifications.
  • Test new versions of Square APIs before using them in production. You can specify the Square-Version in your API requests or change the default Sandbox API version for your application on the Credentials page in the Developer Console.
  • Generate OAuth access tokens for Sandbox test accounts to test permission scopes without implementing an OAuth flow.
  • Make sure you gracefully handle API calls in unsupported regions.
Link to section

Requirements and limitations

  • You need a Square account and an application. Some developer tools require that you sign in to access features.

  • The access token in your Square API requests and Square GraphQL queries must be valid for the Sandbox environment. This can be your personal Sandbox access token or a Sandbox OAuth access token. If you're signed in to API Explorer, the access tokens associated with your account are available in the Access token dropdown.

    When switching to production, make sure to use an access token that's valid for the production environment. Otherwise, you receive an UNAUTHORIZED error for Square API calls or "Failed to fetch" for GraphQL queries.

  • You must use Sandbox test values to make payments in the Sandbox. The Sandbox doesn't accept real credit cards or payment methods. Sandbox test values cannot be used in production.

  • Not all Square products and features support testing in the Sandbox.

    The following are some example limitations:

    • Square hardware, such as a POS terminal, cannot be used in the Sandbox. Testing the Terminal API in the Sandbox is supported, but testing on the device itself isn't.
    • Square products and applications, including Square for Restaurants, Square Point of Sale, and Square Invoices, aren't supported.
    • The Point of Sale API, Snippets API, Sites API, and Reader SDK aren't supported.
    • Settlements data isn't available.
    • Customer settings aren't supported.
    • Gift cards generated with the Gift Cards API cannot be used with Virtual Terminal in the Sandbox Square Dashboard. In addition, physical gift cards cannot be created or managed.

  • The Sandbox Square Dashboard used with Sandbox test accounts also has limitations.

    The following are some example limitations:

    • Receipts aren't generated.
    • Refunds can be viewed but not issued.
    • Viewing or editing subscriptions isn't supported.
    • Sending emails isn't supported.
    • Viewing the booking URL isn't supported.
    • The Banking tab isn't supported. As a result, Balance and application fee reporting are also not supported.
Link to section

Sandbox cost

Use of the Sandbox environment is free of charge. You can make an unlimited number of free Sandbox API calls. There are no payment processing fees for Sandbox payments because cards aren't actually charged and payments are never actually processed by a live bank.

In the production environment, some API calls require that your application user has a subscription to the related Square software-as-a-service. All production payment processing through Square APIs have a processing fee. For more information, see Payments Pricing with Square APIs and SDKs.

Link to section

Sandbox test accounts

When you sign up for a Square developer account, Square creates the default test account, which grants unrestricted access to all of your applications. Each time an application is registered in the Developer Console, Square generates an access token for this account that can be used to authorize any Square API request in the Sandbox. This access token is the same value as the application's Sandbox Access token on the Credentials page.

You can create additional Sandbox test accounts to simulate sellers operating in supported countries and to test with specific permission scopes.

Each Sandbox test account has access to a Sandbox Square Dashboard that lets you see the results of your API calls from the seller's perspective.

A diagram that shows Sandbox test account relationships.

Note that the Sandbox Square Dashboard doesn't support all Square Dashboard features that are available to sellers.

Link to section

Open the Sandbox Square Dashboard

  1. Sign in to the Developer Console.
  2. In the left pane, choose Sandbox test accounts, and then choose Square Dashboard next to the account name.

Open the Developer Console and verify a transaction in the Square Dashboard.

Link to section

Create a Sandbox test account

You can create up to 10 Sandbox test accounts in addition to the default test account in the Developer Console. A test account simulates a Square seller account.

  1. Sign in to the Developer Console.

  2. In the left pane, choose Sandbox test accounts, and then choose New sandbox test account.

    A screenshot of the Sandbox test accounts page in the Developer Console.

  3. Enter the account name and choose the country of operation.

    You can create the test account in any country where Square processes payments. Simulated payments follow the banking rules of the account's country. For example, a Sandbox account for France processes payments according to French regulations.

  4. To generate access tokens that grant all available permissions for all your applications, select the Automatically create authorizations for all my current apps checkbox.

  5. Choose Create.

Link to section

Authorize a Sandbox test account

For each test account that you create, you can generate an OAuth access token that grants a specific set of permissions for each of your applications. This feature lets you quickly test with a permission scope without implementing an OAuth flow.

  1. Sign in to the Developer Console and open the application that you want to test with.

  2. At the top of the page, choose Sandbox in the environment toggle.

  3. In the left pane, choose OAuth. The Test account authorizations section displays test accounts that currently have access tokens.

    1. Choose the account name from the table. This opens the Authorization details modal where you can view the current tokens and permissions, renew the access token with the existing permissions, or revoke the access token.
    2. To change the permission scope, choose Revoke token, and then choose Revoke.
    3. Choose Authorize test account.
    4. From the Test account dropdown, choose the account name.
    5. Select the permissions you want to allow.
    6. Choose Save.
    1. Choose Authorize test account.
    2. From the Test account dropdown, choose the account name.
    3. Select the permissions you want to allow.
    4. Choose Save.

To use the access token, provide it as a bearer token in the Authorization header, as shown in the following ListLocations example:

curl https://connect.squareupsandbox.com/v2/locations \
  -H 'Square-Version: 2025-01-23' \
  -H 'Authorization: Bearer {SANDBOX_ACCESS_TOKEN}' \
  -H 'Content-Type: application/json'
On this page
OverviewRequirements and limitationsSandbox costSandbox test accountsOpen the Sandbox Square DashboardCreate a Sandbox test accountAuthorize a Sandbox test account