API keys
Do not store your API keys in publicly accessible places and do not pass them on. Anyone who has access to your API keys can access your accounts via the API and possibly send unauthorized payments!
Here you will find an overview of all API keys for your client. An API key is required to gain access to the konfipay API with a software application, as the API endpoints are not public.
In the overview, you can see at a glance the name of a key, whether it is active, when it was created (column: "Timestamp") and when it was last used for authentication at the API (column: "Last request"). To copy an API key to the clipboard, click on the copy symbol next to the key:
Icon for copying an API key
Add or edit keys
To create a new API key, click in the toolbar on Add at the top left. Assign a name for the key and define the so-called scope by selecting which API endpoints the key may access.
To change the name or scope for an existing key, select the API key in the list and click on Edit.
Deactivate or delete key
If you no longer need an API key and want to ensure that it can no longer be used for access, you can deactivate or delete the key. Deletion is permanent; a deactivated key can be reactivated and used again at a later time.
To delete or deactivate an API key, select the key in the list and click on Delete or Deactivate.
Regenerate key
You can regenerate an existing API key by selecting the key in the list and clicking on Generate new. As a result, the key must be re-entered in all applications that use it, as the old key then loses its validity.
Regenerating an API key is comparable to changing a password - the new password must then be re-entered on all devices.