Conduit authenticates your requests using a shared API key and API secret. We will provide these to you over a secure channel. You will then provide these via HTTP headers on each request.

Security

Your API key and API secret provide full access to our APIs. It is your responsibility to ensure that they remain secure and confidential within your organization. They should never be shared over an insecure channel or broadcast within your organization.

If your authentication details have been compromised or need to be refreshed, please reach out to us, and we will revoke and replace your credentials.

Example

curl --request GET \
     --url https://api.conduit.financial/accounts/id \
     --header 'accept: application/json'
     --header 'X-API-Key': <API Key>'
     --header 'X-API-Secret': <API Secret>'