Access Token API
The Access Token API exchanges your API keys for a short-lived token that you include in every subsequent request to confirm your identity.
For a merchant, API keys are unique to each sales unit and act as your credentials when authenticating API requests. They are sometimes referred to as merchant keys to distinguish them from other key types.
How do I get started?​
Most users have standard API keys (also called merchant keys). If that's you, select the Merchant keys tab below and follow the guide for your API.
What kind of keys do I have?
If you're not sure which key type you have, use this table:
| Key type | Who uses it |
|---|---|
| Merchant keys | Merchants and smaller partners acting on a merchant's behalf |
| Partner keys | Partners acting on behalf of all their merchants |
| Management keys | Partners with access to the Management API only |
| Accounting keys | Partners with access to the Report API only |
| Merchant-level keys | Donations product users |
- Merchant keys
- Partner keys
- Management keys
- Accounting keys
- Merchant-level keys
Merchant keys always use standard authentication.
Partner keys always use standard authentication.
Management keys always use specialized authentication and give access to one API:
Accounting keys always use specialized authentication and give access to one API:
Merchant-level keys always use specialized authentication.
Each API's quick start guide covers authentication as part of the setup — you don't need to read the rest of this section first. Select your API above and follow the guide.