Authentication
All API requests require authentication via the X-SECRET-KEY HTTP header:
The secret key determines the account and environment (live or test).
Finding Your Keys
To find your API Keys, within your Recurrente account, go to:
Settings → API Keys.
- Log in to the Recurrente Dashboard
- Go to Settings → API Keys
- Copy your secret key. It is only shown in full when generated or rotated.
Live vs Test Mode
Your account has two secret keys:
- Test keys — Use these during development. No real money is moved.
- Live keys — Use these in production. Real transactions are processed.
The API endpoint is the same for both modes. The secret key determines which environment you’re operating in.
Example Request
Authentication Error
If your API keys are not being sent or are invalid, you will receive an HTTP 401 Unauthorized response code:

