Types of Authentication

The PayNow API can be used both from a store management perspective, as well as a customer's perspective.

In order to support the different types of actors in our system, we have developed the following types of authentication:

API Key

API keys are used to automate the management of a store. Whether it's pulling metrics, editing products, or generating customer tokens, API key are the correct way to modify a store and its entities in a headless manner.

API keys can be created in the API Keys section on the dashboard.

API keys can only be managed by a user.

Customer

Customers are the users of a store. Customer tokens can generated with an API request by a User or API Key. These tokens allow a customer to access the resources of store they belong to, and manage their own customer account.

Customer tokens can be used from anywhere on the internet. Whether it's your own website, your backend server, or from a game plugin, the customer token is the correct way to perform actions on behalf of a customer.

Customer tokens can be created in the customer section on the dashboard. Select a customer and then click "Create token".

Read more about customer tokens

Game Server

Game Servers represent the individual servers that you host. Game Server tokens can be generated with an API request by a User or API Key.

These are more restricted than API Keys because they can only access certain routes responsible for processing commands in-game.

Game Server tokens can be found in the game server section on the dashboard. Select a game server to see the token.

User

Users are human users who are allowed to create and manage stores on the dashboard.