Skip to main content

What is an API key?

To enable secure and authenticated communication between clients and the WaaS 2.0 service, a mechanism based on the API key and API secret is used. This mechanism relies on cryptographic key pairs to verify the identity of the client and the integrity of the requests. The API key is the public key in this cryptographic key pair and serves to identify the client making the request. Each API key is associated with specific permissions and wallet scopes, defining what actions the client with the API key can perform and which wallets they can access. By assigning different permissions and wallet scopes to different keys, you can maintain fine-grained control over API access within your organization. For more details about authentication in WaaS 2.0, refer to Authentication. For more details on how to generate an API key and its corresponding secret using the Ed25519 algorithm, refer to Generate an API key and an API secret.

Why register API keys on Developer?

After generating an API key, you need to register it on Developer. This allows Cobo to authenticate your API requests, and enables you to manage the API key’s permissions, wallet scopes, and associated security settings through Developer. You can register multiple API keys for different environments or usage scenarios. For more details on how to register an API key on Developer, refer to Register an API key.