X-Api-Key as the primary credential for server-to-server integration.
Get your API key
- Sign in to app.wazapin.com.
- Open organization Settings → API keys (or Developer settings).
- Create a key with the permissions your integration needs.
- Store the secret once; it is not shown again in full.
POST /v1/api-keysGET /v1/api-keysDELETE /v1/api-keys/{keyID}
Verify your key
Use a read-only call that does not change data. Health does not require authentication; List channels confirms your key works.Success response
200 OK
Invalid key (401)
401 Unauthorized
Optional: bearer token
Bearer token is supported for session-based login flows (for example dashboard orPOST /v1/auth/login). Prefer X-Api-Key for integrations.
Security
- Store keys in a secret manager, not in client-side code.
- Rotate keys if you suspect leakage.
- Scope keys to minimum required permissions.