curl --request GET \
--header "Authorization: sk_test_9c8d8CeyBTx1VcJzuDgpm4H-bywJCeSx"

Fintoc uses API Keys to authenticate requests. The API Keys used to make requests to the API are called Secret Keys and have a lot of privileges, so make sure to keep them safe! 👮. Don't share your Secret Keys in public places like GitHub repos or code that's running on the client side.

The API expects every request to be authenticated with a Secret Key through the Authorization header:

Authorization: YOUR_SECRET_KEY



Every request to the API needs to be through HTTPS. Requests through plain HTTP will fail. Unauthenticated requests will also fail.