Authentication
The Hello Clever API provides seamless payment solutions for your applications, allowing you to create payment links, manage payins and payouts, and handle transactions efficiently. Whether you're integrating to offer one-time payments or recurring services, our API is designed to make it easy and secure for developers to connect with our platform.
Getting Started
To begin using the Hello Clever API, you'll need an app-id and secret-key. These credentials are essential for authenticating your API requests and can be generated from our Merchant Portal.
- Production Portal: https://api-merchant.helloclever.co
- Sandbox Portal: https://api.cleverhub.co
Make sure to use the appropriate credentials depending on whether you're developing and testing in the sandbox or deploying in production.
API Endpoints
Hello Clever provides two sets of API endpoints:
- Production API Endpoint:
https://api-merchant.helloclever.co - Sandbox API Endpoint:
https://api.cleverhub.co
Please use the sandbox endpoint for testing and integration purposes, and switch to the production endpoint when you're ready to go live.
Authentication
To authenticate with the Hello Clever API, include your app-id and secret-key in the request headers for all API calls. These credentials are essential for ensuring secure access to our services. Each request you make to the Hello Clever API must be authenticated to protect both you and your customers.
Authentication Headers
| Header | Description |
|---|---|
app-id | The unique application identifier issued when you register your application. It is used to identify your app to the Hello Clever platform. |
secret-key | The secret key associated with your application. It should be kept private and never exposed in client-side code. It is used to verify the identity of your app and provide secure access to the API. |
Security Considerations
- Keep Your Credentials Secure: Ensure that your
secret-keyis kept confidential. Never expose it in client-side code or any publicly accessible areas. - Rotate Credentials Periodically: We recommend rotating your
secret-keyperiodically to enhance security. - Use HTTPS: Always use HTTPS to ensure encrypted communication between your server and Hello Clever's API.
Special Case: Create Payment Gateway Link
For the /v1/payment_gateways/create_payment endpoint, which is used to create a payment gateway link, a JWT token is required instead of the app-id and secret-key. This endpoint is intended for a client-to-server call, and the JWT token should be generated by our servers. More details can be found in the specific API reference.
The JWT token ensures that the payment process remains secure and allows for dynamic interactions directly between the client and our backend systems.