Security section
API Security & Auth
Learn how scoped API keys, service tokens, idempotency, webhook signatures, audit logs, key rotation, and privileged approvals keep payment, card, custody, and ledger actions controlled.
4 security flows
Scopes protect money movement
Audit explains decisions
Interactive flow lab
Protect every command and event
Switch between scoped access, idempotency, webhook security, and privileged operations.
Endpoint map
Find the security control
Filter API key, token, authorization, idempotency, webhook, audit, approval, and access review endpoints.
Concept notes
The security ideas worth remembering
Questions
Check your understanding
Pick an answer and the page will explain the reasoning.
Reference snapshot