API-Keys
Manage your API keys to authenticate requests with MoneyCollect.
Last updated
Manage your API keys to authenticate requests with MoneyCollect.
Last updated
Manage your API keys to authenticate requests with MoneyCollect.
MoneyCollect authenticates your API requests using your account’s API keys. If you don’t include your key when making an API request, or use an incorrect or outdated one, MoneyCollect returns an error.
Every account has separate keys for testing and for running live transactions. All API requests exist in either test or live mode, and objects in one mode (customers, plans, coupons, etc.) can’t manipulate objects in the other.
There are also two types of API keys: public key and private key.
Public keys are meant solely to identify your account with MoneyCollect, they aren’t secret. In other words, you can safely publish them in places like your MoneyCollect.js JavaScript code, or in an Android or iPhone app.
Private key You must keep your private API keys confidential and only store them on your own servers. You must not share your private API key with any third parties. Your account’s private API key can perform any API request to MoneyCollect without restriction. If MoneyCollect believes that your private API key has been compromised, we may cancel and reissue it, potentially resulting in an interruption to your MoneyCollect services. Each account has 4 keys in total: a public and private key pair for test mode and live mode.
Users with Administrator/ Developer permissions can access a MoneyCollect account’s API keys by navigating to the Developers section of the MoneyCollect Dashboard and clicking on API Keys.Your API keys are always available in the Dashboard and you can copy the public API & private API for the next step.
The test and live modes function almost identically, with a few necessary differences:
In test mode, payments are not processed by card networks or payment providers, and only our test payment information can be used.
In test mode, Identity does not perform any verification checks.
You can view test data by toggling the Dashboard’s test mode option.
In certain UI interaction scenarios, you may need to use publickey to call APIs, but access permissions are limited because publickey may be saved on your page.
The following api is open for publickey access:
Get
/services/v1/payment/{}
Post
/services/v1/payment/{}/confirm
Post
/services/v1/payment_methods/create
Post
/services/v1/payment/{}/cancel