API keys

Your account provides separate keys for testing and for running live transactions. You can use these keys when sending API requests in either test or live mode. Resources in one mode cannot change resources in another mode.

You can apply a different API version to each individual key or update the version on all keys simultaneously in the current mode (test or production).

Digital River authenticates your API requests using your account's API keys. Digital River returns an error if you do not include your key when you send an API request or use an incorrect or outdated key.

Keys and versioning

Use the Update version on all keys button on the Keys and versioning pane to select a version and update all keys to that version. You can select to update all API keys to the latest API version or a previous API version. When you update all keys, the API version column for standard keys and restricted keys displays the version you selected.

Standard keys

Digital River provides each account with four standard keys: a public and confidential (secret) pair for test and live modes. You can use these keys to authenticate Digital River API requests. You cannot create, edit, or delete standard keys, but you can update or rotate them. ‌

The public API keys identify your Digital River account and allow you to create sources. You can use them with Drop-in payments and DigitalRiver.js.

The confidential (secret) API keys allow you to send an API call to Digital River without restriction. Keep these secret keys confidential and only store them on your servers.

Restricted keys

Restrict API keys when limiting an application, batch job, or partner to a specific API version. You can also use it to let your teams choose when to upgrade their API version. You can create, edit, delete, and rotate restricted keys.