Authentication

The Jokoor API uses API keys for authentication. You can create and manage your API keys from the dashboard.

API Key Types

Secret Keys (prefixed with sk_):

Full access to all API operations

Keep these secure and never expose them in client-side code

Use for server-side integrations

Publishable Keys (prefixed with pk_):

Limited access for client-side operations

Safe to expose in client-side code

Used for payment initialization from browsers/mobile apps

Test vs Live Mode

API keys are mode-specific:

Test keys (containing _test_): For testing and development

Example: sk_test_abc123...

Works with Pay API in test mode

SMS does NOT support test mode - SMS only works with live keys

Live keys (containing _live_): For production use with real transactions

Example: sk_live_xyz789...

Works with both Pay and SMS APIs

WARNING

Important: SMS API only works with live mode API keys. Test API keys cannot send SMS messages. Ensure you use a live secret key (sk_live_*) for SMS operations.

Authentication Header

Include your API key in requests using the Authorization header:

Authorization: Bearer sk_test_your_api_key_here

SDK Examples:

TypeScript

Python

Authentication

API Key Types#

Test vs Live Mode#

Authentication Header#

API Key Types

Test vs Live Mode

Authentication Header