Authentication

OwlPay Harbor API uses API keys for authentication. All requests must include the API key in the X-API-Key header. No additional credentials or passwords are required.

📘

Contact us

Please contact us to obtain your SANDBOX and PRODUCTION API_KEY.

Email: [email protected]

If a request is made without an API key or with an invalid key, the system will return a 401 - Unauthorized error. Additionally, all API requests must be sent over HTTPS, as HTTP requests will be automatically rejected.

⚠️

Warning! API Key Security and Best Practices

Your API key grants full access to the API, so it should be handled with extreme care. Never expose your API key in public repositories, internal broadcasts, or unprotected code. Avoid hardcoding API keys in your application, and ensure they are securely stored.

Example

curl --location --request POST 'https://harbor-sandbox.owlpay.com/api/v1/customers' \
--header 'Content-Type: application/json' \
--header 'Accept: application/json' \
--header 'X-API-KEY: {{API_KEY}}'