Authenticate API requests
Learn how to authenticate requests to Wunderkind endpoints.
Server-side vs client-side APIs
Server-side APIs | Client-side APIs |
|---|---|
Private key authentication All api.wunderkind.co endpoints use API private keys to authenticate requests. If you do not use an API key for your requests, or if you use a key from the wrong account, your call will return an error. A 400 error indicates an invalid or missing API key. | Public key authentication All api.bounceexchange.com endpoints use a public API key: your numeric website ID, also known as a site ID. We recommend using our Mobile SDKs for interacting with our client-side APIs. |
To manage API keys, you must have an Admin or Manager role on your Wunderkind account.
Private key authentication
Private API keys can be used to read and write data to your Wunderkind account. Wunderkind allows you to generate multiple private keys for your applications.
For your account's security, your private API keys should never be used with Client endpoints, exposed in client-side code, or made accessible from public repositories.
Create a private key
To create a private key:
- Navigate to your account's Settings page in Wunderkind Platform and select API Credentials
- Select Create API key
- Provide a name for your private key
- Click Create. After you have created your private API key, copy it to a secure location
Updated 10 days ago