Fikäfi APIs
  1. Fikäfi APIs
Fikäfi APIs
  • Fikäfi APIs
    • Getting Started
    • Authentication
    • API Error Handling
    • APIs / Endpoints
      • Authentication API
        • token API
          POST
      • Payments APIs
        • createPayment API
          POST
        • takePaymentAction API
          POST
        • createOnlinePayment API
          POST
      • Status API
        • getPaymentStatus API
          GET
        • getPayments API
          GET
      • Your Webhooks
        • paymentEvent webhook
          POST
        • paymentDetails Webhook
          POST
    • Tutorials
      • Request Payments
      • Check Status
      • Payment Failures
  1. Fikäfi APIs

Authentication

All Fikäfi APIs require secure access via Bearer Token authentication.

🔑 How It Works#

Every API request must include an Authorization header with a valid Bearer token.

🛠 Obtaining a Token#

Use your Client ID and Secret Key to authenticate and receive a token.
If you don’t have credentials, please contact our integration team.

📥 Token Request – Example#

🔄 Generating Token#

Endpoint: POST /auth/token
Header
Request
{
  "clientId": "your-client-id",
  "secretKey": "your-secret-key"
}
Response
{
  "accessToken": "abcdef1234567890",
  "tokenType": "Bearer",
  "expiresIn": 86400
}

📤 Using the Token#

Include the accessToken in the Authorization header for all API requests:
Authorization: Bearer your_access_token

⚠️ Token Expiry#

Tokens are usually valid for 24 hours (86400 seconds)
Always check the expiresIn value in the response
Refresh the token before expiry to avoid failed requests

🔐 Security Best Practices#

Never expose your Client ID or Secret Key in frontend code
Use HTTPS for all API requests
Store credentials securely and rotate them periodically
You get separate credentials for sandbox and production

🔗 Related Endpoints#

POST /auth/token
Modified at 2025-06-14 14:39:44
Previous
Getting Started
Next
API Error Handling
Built with