1. Home
  2. Documentation
  3. Developer Quick Start

Developer Quick Start

Authentication

To authenticate with the Pokea Pay API, you will need to provide a consumer key and consumer secret, which can be found on the developer page in your Pokea Pay business account. These keys will be used in conjunction with HTTP Basic Authentication to generate a Bearer token.

To generate a Bearer token, you will need to send a POST request to the Pokea Pay OAuth token endpoint, including your consumer key and secret in the Authorization header. The response from this request will include a Bearer token that you can use to make subsequent API requests.

IP Whitelisting

In addition to authentication, Pokea Pay requires clients to provide an IP whitelist for added security. This means that only requests coming from the specified IP addresses will be accepted by the Pokea PayAPI.

To set up an IP whitelist, you can navigate to the developer page in your Pokea Pay business account and select the "Whitelist IPs" button. From here, you can enter the IP addresses that you want to whitelist and save your changes.

API Keys

By default, all requests that are sent to Pokea Pay have to be authenticated using your account's API keys. This key is associated to your Pokea Pay business account.

Once you have logged in to Pokea Pay business account, navigate to the API Keys page under the Developers section by selecting from the left hand navigation and tap on the button "Generate New Keys".

Generate your Bearer token

To generate your Bearer token, you'll need your consumer key, consumer secret and the API Key that you will pass in the Authorization header of your request.


curl --location --request POST 'https://here-prod-api-url.com/auth/web/login' \
--header 'Accept: application/json' \
--header 'Content-Type: application/json' \
--header 'Api-key: XXXXXXXXXXXXXXXXXXXXX' \
--data-raw '{
    "consumer_key": "XXXXXXXXXXXXXXXXXXXXXXXXXX",
    "secret_key": "XXXXXXXXXXXXXXXXXXXX"
}'

Sample Response 


200 OK

{
    "code": 0,
    "success": true,
    "message": "SUCCESS",
    "access_token": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
    "token_type": "bearer",
    "expires_in": XXX
}

V3.0.0