Authentication

The UseePay API uses x-merchant-no, x-api-key and x-app-id in the HTTP request header to authenticate requests. For x-merchant-no, x-api-key and x-app-id parameters, We define them as authentication headers.

Your x-api-key carry many privileges, so be sure to keep them secure! Do not share your secret API keys in publicly accessible areas such as GitHub, client-side code, and so forth.

Use your authentication headers by setting it in the initial configuration of new \UseePay\UseePayClient(). The PHP library will then automatically send this key in each request.

You can also set a per-request key with an option. This is often useful for Connect applications that use multiple API keys during the lifetime of a process. Methods on the returned object reuse the same API key.

All API requests must be made over HTTPS. Calls made over plain HTTP will fail. API requests without authentication will also fail.

Request header	Description
x-merchant-no	Merchant no of useepay,see Introduction>2.Obtain merchant no and app key
x-api-key	Application api key of merchant,see Introduction>2.Obtain merchant no and app key>pkey
x-app-id	Application id of merchant, see Introduction>3.Submit website appId

1. x-merchant-no

MC → Configuration Center → Secret Management → First row data

2. x-api-key

MC → Configuration Center → Secret Management → OpenApi Secret Key → Private Key (UseePay_SK_xxx)

3. x-app-id

MC → Configuration Center → Secret Management → Domain Management, the website domain/App English name added here is the appId.

Note

The appId must be approved by UseePay before you can call the APIs.

1. x-merchant-no#

2. x-api-key#

3. x-app-id#

1. x-merchant-no

2. x-api-key

3. x-app-id