Authentication
The Sphere API uses Bearer Authentication and API keys to authenticate your requests.
API Keys
You can view and manage your API Keys in the Sphere Dashboard. Each Sphere application can have up to 10 API keys.
API keys carry unrestricted access to you application and must be kept secret. API keys should be rolled if you suspect that it has been compromised; it is recommended that you roll your API keys once per quarter.
To authenticate your requests, you need to include an access token in the Authorization
header of your HTTP request.
All requests require an API key and use of HTTPS. Calls made over plain HTTP will error.
Authorization Header
-H Authorization: Bearer secret_64db7acf5bbb434aa0a04d82e90b4c99
Sample Request
The following is an example curl request to list all customers with an API Key bearer token:
Sample Authenticated Request
curl https://api.spherepay.co/v1/customer \
-X GET \
-H "Authorization: Bearer secret_64db7acf5bbb434aa0a04d82e90b4c99"