Authentication

The Sphere API uses Bearer Authentication and API keys to authenticate your requests.

API Keys

You can view and manage your API Keys in the Sphere Dashboard. Each Sphere application can have up to 10 API keys.

API keys carry unrestricted access to you application and must be kept secret. API keys should be rolled if you suspect that it has been compromised; it is recommended that you roll your API keys once per quarter.

To authenticate your requests, you need to include an access token in the Authorization header of your HTTP request.

All requests require an API key and use of HTTPS. Calls made over plain HTTP will error.

Authorization Header

-H Authorization: Bearer secret_64db7acf5bbb434aa0a04d82e90b4c99

Sample Request

The following is an example curl request to list all customers with an API Key bearer token:

Sample Authenticated Request

curl https://api.spherepay.co/v1/customer \
  -X GET \
  -H "Authorization: Bearer secret_64db7acf5bbb434aa0a04d82e90b4c99"

Was this page helpful?