Revaly uses an API key–based authentication model to securely access all endpoints. Each request to the Revaly API must include your API key in the request header to identify and authorize your account.

Authentication is performed via the Authorization header, using the keyword ApiKey followed by your unique key, as shown below.

Example Request

curl "https://api.revaly.co/transactions” \
-H "Authorization: ApiKey kIqCBL40PaoL2Tg28hUxVgtqKgYDTSLnl5J3iwptJH"

Notes

Use the correct API key for your environment (Sandbox or Live).
Each API key is tied to a specific merchant account and environment.
API keys can be created and managed directly from the Client Portal under Account Settings → Integrations.