With Flutterwave, you can authorize your API calls by including your secret key in the
Authorization header of every request you make.
- Secret Keys should be kept confidential and only stored on your own servers. Your account’s secret API key can perform any API request to Flutterwave without restriction.
It is also required that you pass it as a value to the
Authorizationheader in every request you make.
We also have the encryption key that is rarely required but also very important for handling encryption. You can take a look at our API Keys section for more information on our API keys.
Authorization: Bearer FLWSECK_TEST-SANDBOXDEMOKEY-X
All API requests must be made over HTTPS.
Remember also that API requests made without authorization will fail with the status code 401: Unauthorized
Updated over 1 year ago