In event of leaked API key

3.1 In event of leaked API key

API keys do not expire at the moment.

In the event of a leaked API key:

For test environment, you may revoke the leaked key and create a new key via developer's portal
For live environment, email [email protected] for a new key

The impact of a leaked key is low. The API key only allows someone to redeem vouchers on behalf of the retailers or retrieve historical voucher transactions. No sensitive privileges are allowed such as editing Merchant details (eg. Shop name and Bank account).

PreviousAuthentication NextRedeeming a QR code Voucher

Last updated 8 months ago