Authentication

PLATFORM_NAME uses two authentication styles:

Style	Header	Used for
API key	`Authorization: Api-Key …`	Create payment, Get payment by id — server-to-server integrations
Dashboard session	`Authorization: Token …`	Organization & merchant, Payment links — logged-in merchant web app

Payment links cannot be created with an API key; they require a dashboard session (Payment links (dashboard)).

API key

Create and rotate your organization API key in the dashboard: Organization → API & Webhooks.

Send the key in the request header:

Authorization: Api-Key <your_api_key>

or:

Api-Key: <your_api_key>

Dashboard session (Token)

After signing in to the merchant dashboard, the web app stores an access token (e.g. cookie) and sends:

Authorization: Token <access_token>

Use this for organization profile, API key management UI, webhooks, and payment link CRUD. See Organization & merchant.

Scopes

The API key must have the checkout:create scope to call POST /checkout/create/. Default keys created from the dashboard include this scope.

Example (API key)

curl -X POST "https://api.sandbox.nd8.com/api/checkout/create/" \
  -H "Authorization: Api-Key YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "billing_country": "US",
    "billing_postal_code": "10001",
    "billing_first_name": "Jane",
    "billing_last_name": "Doe",
    "billing_email": "jane@example.com",
    "currency": "USD",
    "products": [{"id": "prod_xxx", "quantity": 1}]
  }'

Supported charge currencies are USD and EUR only (Currencies).

API key​

Dashboard session (Token)​

Scopes​

Example (API key)​

API key

Dashboard session (Token)

Scopes

Example (API key)