Authentication

Overview

Fliz uses API keys to authenticate requests. You can create and manage your API key in the Fliz Integrations Dashboard.

danger

Your API key carries many privileges and should be kept secure at all times. Follow these best practices to protect your API key:

Do not share your secret API keys in publicly accessible areas such as GitHub, client-side code, or any other places where unauthorized individuals may access them.
Store your API key securely in your application's server-side environment variables or secure key management systems.

Making Authenticated Requests

To make an authenticated request to the Fliz API, follow these steps:

Ensure that all API requests are made over HTTPS. Calls made over plain HTTP will fail.
Include your API key in the X-API-Key header of your request.

Here's an example using cURL to make a POST request to our payments route https://api.flizpay.de/transactions:

curl --request POST \
     --url https://api.flizpay.de/transactions \
     --header 'X-API-key: YOUR_API_KEY' \
     --header 'accept: application/json' \
     --header 'content-type: application/json' \
     --data ''

Replace YOUR_API_KEY with your actual API key obtained from the Fliz Integrations Dashboard.

Authentication

Overview​

Making Authenticated Requests​

Overview

Making Authenticated Requests