Overview
API keys are the credentials that allow external software to communicate securely with your ECRYPT account. Any time a third-party application or custom integration needs to send payment requests, retrieve transaction data, or interact with your account programmatically, it authenticates using an API key you generate here. Navigate to Settings → Developer Tools → API/Security Keys to manage your keys.When You Need an API Key
You need an API key whenever you are connecting ECRYPT to another system. Common examples include:- E-commerce platforms such as WooCommerce, Magento, or other shopping cart software that need to process payments through ECRYPT
- Custom-built integrations where your development team is building a direct connection to the ECRYPT API
- Third-party tools that pull transaction or reporting data from your account
Key Types
ECRYPT offers three types of API keys, each with a different level of access:| Key Type | What It Does |
|---|---|
| Public Key | Used on the client side (e.g., in a checkout form or front-end application) to initiate payment requests. Safe to expose in browser-facing code. |
| Private Key | Used on the server side for sensitive operations. Should never be exposed in client-side code or shared publicly. |
| Reporting Key | Provides read-only access to transaction and reporting data. Use this when an integration only needs to pull reports without the ability to process payments. |
Creating a Key
- Navigate to Settings → Developer Tools → API/Security Keys
- Enter a Description to identify what the key is for (e.g., “WooCommerce Production” or “Custom Checkout”)
- Select the Key Type — Private Key, Reporting Key, or Public Key
- Click Generate New Key