Learn how to authenticate with the Notch Pay API
test_
prefix.All transactions made with test API keys don’t affect your live data and are only visible in test mode.Authorization
header:Keep API Keys Private
Whitelist Your IP Addresses
Use Environment Variables
Implement Access Controls
Rotate Keys Regularly
Use Test Keys for Development
Authentication Error Responses
Missing API Key
Authorization
header in your request.Invalid API Key
Missing Grant Key
X-Grant
header without providing it.Invalid Grant Key
X-Grant
header is incorrect.Invalid Sync Account
X-Sync
header doesn’t exist or you don’t have access to it.