REST Authentication

Bearer token

Include your secret key in every request: 
curl https://api.simiz.io/v1/transactions \
  -H "Authorization: Bearer sk_test_xxxxxxxxxxxx" \
  -H "Content-Type: application/json"

Test vs Live keys

PrefixEnvironment
sk_test_Sandbox (no real money)
sk_live_Production (real payments)

Example: verifying your key

curl https://api.simiz.io/v1/account \
  -H "Authorization: Bearer sk_test_xxxxxxxxxxxx"
Response: 
{
  "id": "acct_xxx",
  "object": "account",
  "name": "My Store",
  "environment": "test",
  "created_at": "2024-01-01T00:00:00Z"
}

Common authentication errors

CodeHTTPDescription
invalid_api_key401The key doesn’t exist or is malformed
expired_api_key401The key has been revoked
insufficient_permissions403The key doesn’t have the required permissions
If you receive a 401 error, verify:
  1. The key starts with sk_test_ or sk_live_
  2. There are no extra spaces or characters
  3. The key hasn’t been regenerated (which revokes the old one)