Authentication
All Koard API requests must be authenticated using an API key passed in the x-koard-apikey header.
curl https://api.koard.com/v1/accounts/YOUR_ACCOUNT_ID \
-H "x-koard-apikey: YOUR_API_KEY" \
-H "Accept: application/json"
Headers
| Header | Required | Value |
|---|---|---|
x-koard-apikey |
Always | Your Koard API key |
Accept |
Always | application/json |
Content-Type |
When sending a body | application/json |
API Keys
API keys are provisioned per account and scoped to that account's permissions. A partner-level key can manage merchants and terminals under it. A merchant-level key is limited to that merchant's operations.
Retrieve or rotate your API key from the Koard MMS under your account settings.
Keep your API key secret. Never expose it in client-side code or public repositories.
