Skip to content

Keys & Access Tokens

Secured access to our API is crucial for maintaining the integrity and security of your payments. We use different authentication methods depending on the API version.

V2 API Keys

For V2 endpoints, we use API keys:

  • Include your API key in the header of your request
  • Header key: token

Example: http GET /api/v2/resource HTTP/1.1 Host: app.secpaid.com token: YOUR_API_KEY_HERE

Obtaining API Credentials

To get started with our API:

  1. Contact our support team at compute@spacepitch.org to request access
  2. For demo purposes, use our development environment and contact us for tokens.

Remember to keep your API credentials secure and never expose them in client-side code.

Best Practices

  1. Store API keys securely, preferably in environment variables
  2. Rotate API keys periodically for enhanced security
  3. Implement proper error handling for authentication failures
  4. Use HTTPS for all API requests to encrypt your credentials in transit
  5. Monitor your API usage to detect any unauthorized access attempts

By following these guidelines, you can ensure secure and efficient use of our API.