Quick Reference
| Key Type | Where | Purpose | User |
|---|---|---|---|
| Marketplace API Key | Admin Settings | All marketplace operations | Backend servers |
| Advanced API Key | Vendor Dashboard | Single vendor campaigns | Vendor tools |
Which Key Do I Need?
| Endpoint | Key Type |
|---|---|
POST /v2/auctions | Marketplace |
POST /v2/events | Marketplace |
POST /v2/products | Marketplace |
GET /public/v1/reporting-service/* | Marketplace |
POST /public/v1/campaign-service/* | Either (scoped to vendor if Advanced key) |
GET /public/v1/billing-service/* | Marketplace |
Common Errors
401 Unauthorized
- API key not included in
Authorizationheader - Key is malformed or expired
- Using Advanced key on Marketplace-only endpoint
Authorization: Bearer YOUR_API_KEY
403 Forbidden
- Using Advanced key for endpoint that requires Marketplace key
- Advanced key trying to access different vendor’s data
How to Get Your Keys
Marketplace API Key
Advanced API Key
Security Best Practices
- Never commit keys to version control
- Store keys in environment variables
- Rotate keys regularly
- Use different keys for different environments (dev, staging, production)
- Restrict key access to only necessary team members
Key Permissions Scope
Marketplace API Key
- Full access to all marketplace operations
- Can create and manage campaigns for any vendor
- Access to all reporting data
- Required for auction and event endpoints
Advanced API Key
- Limited to specific vendor’s data
- Can only manage campaigns for the associated vendor
- Cannot access other vendors’ information
- Ideal for vendor-specific integrations
Last updated: