Authentication Guide

This guide walks you through the essential steps to make your first successful API call and explains the core authentication and security principles of the Fintegence Partner API.

🔐 Step 1: Onboarding and Credentials

API access follows a structured onboarding flow designed for security and production readiness.

How to get your credentials

The process includes four stages:

Application: Contact our team at support@fintegence.com and request partner onboarding.

Verification: Our team reviews and verifies your onboarding details.

Account Setup: After approval, your Business Account is prepared.

API Integration Access: For B2B integration, you receive:

Staging API Key for development and testing.

Production API Key for live traffic.

Webhook Security Token to verify incoming webhook authenticity.

Need help before contacting support? Check Support Channel.

🚀 Step 2: Make Your First API Call

Start with a simple read-only request to confirm your key works correctly.

All authenticated requests must include the x-api-key header.

Example Request (cURL)

✅ Expected Success Response

{
	"btc": 92619.60,
	"eth": 2188.81,
	"eur": 1,
	"usdc": 0.8523,
	"usdt": 0.8522
}

A successful response confirms your integration is connected and authenticated.

Handling Authentication Errors

If your API key is missing, invalid, or your request comes from an unauthorized IP, the server returns 401 Unauthorized.

Example Request (Invalid Key)

❌ Error Responses

Access Denied. xo1 -> API key was not provided.

Access Denied. xo2 -> API key is invalid.

Access Denied. xo3 -> Request originates from an unauthorized IP (production only).

🛡️ Step 3: Security Best Practices

Production access requires secure integration hygiene.

Store Keys Securely

Treat API keys like passwords. Store them in environment variables or a secrets manager (for example AWS Secrets Manager or HashiCorp Vault). Never hardcode keys in source code.

IP Whitelisting

Production traffic must come from approved static IP addresses. Share server IPs with our team to whitelist them.

Monitor API Activity

Monitor request patterns, errors, and unusual usage to detect abuse early and keep your service stable.

🛠️ Integration Resources

Use these resources to implement authentication correctly and secure request handling end to end.

API References

Full endpoint documentation and request/response contracts.

Webhooks

Event-driven integration setup and signature verification guidance.

Usage Examples

Practical implementation patterns for common partner workflows.

FAQ

Quick answers for typical onboarding and integration issues.

Support Channel

First-line troubleshooting before opening direct support requests.

Direct Support

Escalate technical blockers and production readiness questions.

Next steps

Now that authentication is set up, continue with endpoint integration and webhook handling.

Open API References

For troubleshooting and onboarding guidance, start with Support Channel.
For direct assistance, contact support@fintegence.com.

Authentication

Authentication Guide#

🔐 Step 1: Onboarding and Credentials#

🚀 Step 2: Make Your First API Call#

Handling Authentication Errors#

🛡️ Step 3: Security Best Practices#