API Key Usage
All API requests are safeguarded using API keys, which must be included in each request as the x-api-key
header parameter. We provide two types of API keys: public and private. A clear understanding of how to appropriately use these keys is essential for achieving a seamless and secure integration.
Public Key
The public key is intended for front-end usage within your application, interacting either directly with our API or through our SDK. Its primary purpose is to facilitate the creation of payment_method
entities from the front end.
Private Key
In contrast, the private key is intended to be exclusively used from your backend server. It grants access to a broader range of functionalities, including the ability to create payments, fetch transactions, and process refunds. Due to the heightened level of control and access it provides, you should never to expose the private key in client-side code. Keep it securely stored on your server to maintain the integrity and security of your API interactions.