Authentication reference

Check what you can do with a private key and a public key.

To create types or customers resources, all you need is your public key.

But authentication on the server is possible only with a private key.

Depending on the resource and the function to be executed, either the public or private key is used:

create resources: POST update resources: PUT fetch resources: GET delete resources: DELETE

Resource POST GET PUT DELETE
/payments/authorize private key private key not allowed not allowed
/payments/charges private key private key not allowed not allowed
/payments/authorize/cancels private key private key not allowed not allowed
/payments/charges/cancels private key private key not allowed not allowed
/payments/shipments private key private key not allowed not allowed
/customers public key private key public key private key
/types/card,
/types/paypal,
/types/sofort,
public key private key not allowed not allowed