Security & Token
Authentication using an access token is required to interact securely with the Lynx API. This guide provides an overview of generating and using access tokens and best practices for ensuring API security.
Access Token
An access token is a security credential used to authenticate API requests. Each request to the Lynx API must include a valid access token in the Authorization header.
Keep your Tokens Safe
It is important to avoid sharing your secret tokens in public places like Github or Bitbucket since it can allow malicious API calls.
Access tokens can be found through the Nayax Back Office (Nayax Core). Follow these steps to retrieve an access token:
- Log in to Nayax Core using your username and password.
- Navigate to Account Settings by clicking on your username at the top right corner, and selecting the Account Settings option.
- Access the Security and Login Tab.
- Navigate down to the User Tokens section.
- Click the Show Token button next to an existing token to show it, and copy the token for use in API calls.
Using the Token in API Requests
Include the access token in the Authorization header for each API request. Here’s an example curl command:
curl -X GET "https://lynx.nayax.com/operational/api/v1/devices" \
-H "Authorization: Bearer <YOUR_ACCESS_TOKEN>" \
-H "Content-Type: application/json"
- Replace
<YOUR_ACCESS_TOKEN>with your actual token retrieved from Nayax Core.
Updated 7 months ago