Authentication & Headers

UMVA API Authentication

The UMVA API uses a key pair for authentication. To make an authenticated request to the API, you must include the appropriate credentials as described below.

Obtain the Keys:

Merchants: Merchants are required to use both Public and Secret Keys. These can be copied from the merchant dashboard under the specific merchant account details:
https://umva.net/merchant/business/api/key.
Please ensure that your keys are stored safely and not shared publicly. If your keys are compromised, contact UMVA immediately for assistance. You can also regenerate the Secret Key from your merchant account dashboard.

Non-Merchants and Referral Programs: Only API Keys are required, which can be obtained here:
https://umva.net/user/api-keys.

Request Headers: For server-side Payment API calls you must send JSON bodies and standard JSON headers. Authentication for the server payment endpoints is done via the public_key field in the JSON body (not via X-API-Key headers).

Header Name Value Required
Content-Type application/json YES
Accept application/json YES