Authentication reference
Check what you can do with a private key and a public key.
To create types
or customers
resources, all you need is your public key.
But authentication on the server is possible only with a private key.
Depending on the resource and the function to be executed, either the public or private key is used:
create resources: POST update resources: PUT fetch resources: GET delete resources: DELETE
Resource | POST | GET | PUT | DELETE |
---|---|---|---|---|
/payments/authorize | private key | private key | not allowed | not allowed |
/payments/charges | private key | private key | not allowed | not allowed |
/payments/authorize/cancels | private key | private key | not allowed | not allowed |
/payments/charges/cancels | private key | private key | not allowed | not allowed |
/payments/shipments | private key | private key | not allowed | not allowed |
/customers | public key | private key | public key | private key |
/types/card, /types/paypal, /types/sofort, … |
public key | private key | not allowed | not allowed |