Authentication

API keys, scopes, and security best practices.

All FraudDefense API requests require a Bearer token in the Authorization header.

Authorization: Bearer YOUR_API_KEY
Content-Type: application/json

Key management

Create separate keys for production and sandbox in the dashboard. Rotate keys quarterly and revoke compromised keys immediately.

Scopes

Enterprise plans support read-only, write, and admin scopes per key for least-privilege access.

API reference All guides

More resources