API Keys
Generate and regenerate Test and Live API Keys using the Curlec Dashboard.
API key is a combination of the key_id
and key_secret
and is required to make any API request to Curlec. You need to add the API key in your code as part of your integration process.
Watch Out!
Website details are required to generate API keys. If you have added your website details after KYC verification, they have to be verified by our onboarding team. We will verify your website within 3 working days. If you still encounter issues, raise a request with our
.Follow these steps to generate API keys:
- Log in to your with the appropriate credentials.
- Select the mode (Test or Live) for which you want to generate the API key.
- Test Mode: The test mode is a simulation mode that you can use to test your integration flow. Your customers will not be able to make payments in this mode.
- Live Mode: When your integration is complete, switch to live mode and generate live mode API keys. In the integration, replace test mode keys with live mode keys to accept customer payments.
- Navigate to Account & Settings → API Keys (under Website and app settings) → Generate Key to generate key for the selected mode.
The Key Id
and Key Secret
appear on a pop-up page.
Watch Out!
- After generating the keys from the Dashboard, download and save them securely. You can use only one set of API keys. If you do not remember your API Keys, you need to re-generate them from the Dashboard and replace them wherever required.
- API Keys are universal, that is, they are mapped to your Merchant ID and applicable to all websites and apps.
- Do not share your API Key secret with anyone or on any public platforms. This can pose security threats to your Curlec account.
- Once you generate the API Keys, only the Key Id is visible on the Dashboard, not the Key secret, as it can pose security threats to your Curlec account.
Once generated, you will be able to see the Key Id, the date the key was created and the expiry date for the API Key on screen.
You also have the option to regenerate the key if required.
Two-Factor Authentication
To regenerate API keys, you must validate your identity via OTP and send it to your registered mobile number. However, this step is skipped if you already performed OTP validation while logging in to the Dashboard.
If you have not set up two-factor authentication, you will be prompted to verify your mobile number before regenerating keys.
To regenerate API key:
- Log in to the .
- Select the mode from the menu ribbon for which you want to generate the API key.
- Navigate to Account & Settings → API Keys (under Website and app settings) → Generate new key to generate key for the selected mode.
This allows you to deactivate the old key immediately or within 24 hours.
Was this page helpful?