Authentication
The Splashify Pro Partner API uses API key authentication. Every request must include your API key in the Authorization header.
Sending Your API Key
Include your API key as a Bearer token:
Authorization: Bearer pk_live_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxExample
curl https://apis.splashifypro.com/api/v1/partner/users \
-H "Authorization: Bearer pk_live_YOUR_API_KEY"API Key Format
API keys follow the format: pk_live_ followed by 32 random characters.
Example: pk_live_a1b2c3d4e5f6g7h8i9j0k1l2m3n4o5p6
Security Best Practices
- Never expose your API key in client-side code, public repositories, or logs
- Store keys securely using environment variables or a secrets manager
- Rotate keys regularly by regenerating from the dashboard
- Use HTTPS — all API requests must be made over TLS
Error Responses
If authentication fails, you’ll receive a 401 response:
{
"error": "Unauthorized",
"message": "Invalid or missing partner authentication"
}Common causes:
- Missing
Authorizationheader - Invalid or expired API key
- Incorrect key format (must start with
pk_live_)