Authentication
Authentication ๐
All requests to the Komerce Payment API must be authenticated using an API key.
This key uniquely identifies your merchant account and ensures that your requests are authorized.
Your Komerce Payment API key is the same key used in the Komerce Shipping (RajaOngkir) service.
You do not need to create a new key to use the Payment API.
๐ Getting Your API Key
- Login to your Collaborator Dashboard
- Navigate to the sidebar menu Developer โ Settings
- Click on Api Key
- You'll find Payment API
- Do not use API keys intended for other services (e.g. Shipping Delivery, etc.)
Info
โ ๏ธ Important: Treat your APIKEY like a password. Never share it or expose it publicly (e.g., in GitHub repos or front-end code).
๐งพ Authentication Method
Komerce Payment uses header-based authentication.
Each request must include the following header:
โ๏ธ Sandbox vs Production Keys
| Environment | Base URL | Key Prefix | Description |
|---|---|---|---|
Sandbox | https://api-sandbox.collaborator.komerce.id/user | sandbox | Used for testing transactions. Payments are simulated and not processed by banks. |
Production | https://api.collaborator.komerce.id/user | live | Used for live payments in real transactions. |
๐ Tip: Always use separate keys for sandbox and production environments to avoid mixing real and test data.
More Information
Need Help?
For questions about integration or the API, hit the live chat. Our team's on standby.

