Manage your API Keys
API key expiration
Each API Key has a validity period of one year from the date of activation. At the end of that validity period, a series of emails is sent to notify the user about the API key lifecycle, along with the reactivation steps, environment (sandbox and production) and region information.
The email notifications are sent every week during the last three months and every day during the last week before the expiration date.
To avoid interruption of the API service, users must create a new API key to replace the one they are using, before the expiration date. Once users have performed these steps, they can delete the API key they were currently using.
To create and delete API keys from Verifone Central, perform the following steps:
Go to Profile > API Keys.
Create a new API Key.
The new API Key will be generated.
Important! A user can create a maximum of 5 API keys.
Updating an expiring API Key in your Integration
Updating your expired API Key is required once a year. You may have received an email from Verifone indicating that the expiry date is approaching.
Updating an expiring API key applies to the following integrations:
Plugins
Any API Integration
Integrations managed by a third party (which, in turn, use the Verifone APIs)
To replace an expiring API key, follow the below steps to delete it and create a new API key. Once you have followed the steps to create and copy an API key, you must replace this with the expiring API key in your integration.
The new API key must also come from the same User who created the last key. If the new key comes from a different user, the UserID also requires replacement, as this is unique to each Verifone Central login.
The API key must be replaced in your API requests.
More specifically, the second portion of your Basic Auth header “user-uuid: api****key” string, before it is encoded to base64.
Follow the Manual Setup page for your plugin, which covers where the API key can be changed.
The API key must be updated according to the instructions provided by the third party. This is typically presented in a settings / configuration menu relating to your setup with Verifone and your other payment settings. Contact your provider for more information.
How to revoke access / delete the API keys
Log in to your Verifone Central account.
Navigate to the user settings in the top-right corner and select the API Keys option from the dropdown menu.
When prompted with the list of valid API keys, select the one for which you want to revoke access by clicking the arrow.
Click on Revoke access to delete the API key.
Last updated
Was this helpful?