Get Your API Keys
Where to Find Your Keys
- Log in to your Inflow Dashboard.
- Go to Settings.
- Find the API Keys section.
You'll see two keys:
| Key | Header | Use |
|---|---|---|
Private Key (inflow_priv_...) | X-Inflow-Api-Key | Server-side API calls |
Public Key (inflow_pub_...) | X-Inflow-Public-Key | Client-side SDK |
When to Use Each Key
Private Key — Server-Side
Use your private key for any API call that creates, modifies, or reads resources:
- Creating payments
- Managing subscriptions
- Setting up webhooks
- Listing transactions
- Issuing refunds
curl https://api.inflowpay.xyz/api/payment \
-H "X-Inflow-Api-Key: inflow_priv_your_key"Public Key — Client-Side
Use your public key only for the Inflow SDK (card payment form):
const provider = new InflowPayProvider({
config: { apiKey: 'inflow_pub_your_key' }
});The public key has limited permissions — it can only interact with the SDK endpoints.
Regenerating Keys
You can regenerate either key at any time from the Settings page:
- Go to Settings > API Keys.
- Click Regenerate next to the key you want to change.
- The old key is immediately invalidated.
- Update your integration with the new key.
Regenerating a key invalidates the previous one instantly. Make sure to update your code before regenerating.
Testing Payments
Inflow does not currently offer a sandbox environment. To test payments during development, please contact [email protected] so the team can enable test mode on your account and assist with your testing flow.
Environment Setup
We recommend using environment variables to store your keys:
# .env file
INFLOW_PRIVATE_KEY=inflow_priv_your_key
INFLOW_PUBLIC_KEY=inflow_pub_your_key// Node.js
const INFLOW_KEY = process.env.INFLOW_PRIVATE_KEY;// React / Next.js (public key only)
const provider = new InflowPayProvider({
config: { apiKey: process.env.NEXT_PUBLIC_INFLOW_PUBLIC_KEY }
});Updated about 20 hours ago