Back to Guides

Table of Contents

API Key Management

API key generation, management and security best practices

What are API Keys?

API keys are secret tokens used for authentication and authorization to identify your application and control access to PaymentGate API. Proper management of API keys is crucial for protecting your payment system security.

⚠️ Important Security Reminders

  • • Never expose secret keys in client-side code
  • • Don't commit API keys to version control systems
  • • Regularly rotate your API keys
  • • Use different keys for different environments

Key Lifecycle

Create

Generate new API key

Configure

Set permissions and restrictions

Rotate

Regularly update keys

Revoke

Deactivate old keys