PF

PayFlow Docs

🔐 Security

Authentication

Learn how to securely authenticate with the PayFlow API using API keys.

API Key Authentication
All API requests require your API key in the Authorization header
Authorization: Bearer pk_live_YOUR_API_KEY
Security Best Practices

✅ Do's

  • Store API keys in environment variables
  • Use different keys for test and production
  • Rotate keys regularly

❌ Don'ts

  • Never commit API keys to version control
  • Don't expose keys in client-side code
  • Never log or display API keys