API Keys Management
AuxVault issues three key types. Understand which one to use before creating keys.
Key Types
| Type | Prefix | Purpose | Scope |
|---|---|---|---|
| ERP Integration | lv_erp_ |
Full API access for ERP systems — merchants, customers, reports, batch, everything | Tenant-wide |
| Processing | lv_pk_ |
Payment operations for one specific merchant + gateway (SDK & PCI server) | Per merchant + gateway |
| Standard | api- |
Legacy reporting / data access for one merchant | Per merchant |
Create an ERP Integration Key
Use this key for all Luqra ERP API operations. Created once per tenant.
curl -X POST https://dev.auxcore.net/api/v1/api-keys \
-H "Authorization: Bearer YOUR_JWT_TOKEN" \
-H "X-Tenant-ID: YOUR_TENANT_ID" \
-H "Content-Type: application/json" \
-d '{
"name": "Luqra ERP Integration",
"description": "Primary ERP integration key",
"keyType": "erp",
"scope": "tenant"
}'
Response:
{
"success": true,
"data": {
"id": "uuid-here",
"plainKey": "lv_erp_abcdef1234...",
"name": "Luqra ERP Integration",
"keyType": "erp",
"scope": "tenant"
}
}
⚠️ Save this key immediately — it is only shown once. The plain key cannot be retrieved again.
You can also create ERP keys in the dashboard: Settings → API Keys → Create New → ERP Integration Key.
Processing Keys (lv_pk_)
Processing keys are auto-provisioned — you do not create them manually. When a merchant's VAR sheet is saved, the system automatically generates a lv_pk_ key scoped to that merchant + gateway. You can view it in Merchant → API Key tab.
These keys are used by the AuxVault SDK and the PCI tokenization server to submit payment transactions on behalf of a specific merchant.
Create a Standard Key (per merchant)
curl -X POST https://dev.auxcore.net/api/v1/api-keys \
-H "Authorization: Bearer YOUR_JWT_TOKEN" \
-H "X-Tenant-ID: YOUR_TENANT_ID" \
-H "Content-Type: application/json" \
-d '{
"merchantId": "YOUR_MERCHANT_ID",
"name": "Reporting Key",
"keyType": "standard",
"scope": "merchant"
}'
List API Keys
# All keys for this tenant
curl https://dev.auxcore.net/api/v1/api-keys \
-H "x-api-key: lv_erp_YOUR_ERP_KEY" \
-H "X-Tenant-ID: YOUR_TENANT_ID"
# Filter by key type
curl "https://dev.auxcore.net/api/v1/api-keys?keyType=erp" \
-H "x-api-key: lv_erp_YOUR_ERP_KEY" \
-H "X-Tenant-ID: YOUR_TENANT_ID"
# Filter by merchant
curl "https://dev.auxcore.net/api/v1/api-keys?merchantId=MERCHANT_ID" \
-H "x-api-key: lv_erp_YOUR_ERP_KEY" \
-H "X-Tenant-ID: YOUR_TENANT_ID"
Revoke (Deactivate) a Key
curl -X DELETE https://dev.auxcore.net/api/v1/api-keys/KEY_ID \
-H "Authorization: Bearer YOUR_JWT_TOKEN" \
-H "X-Tenant-ID: YOUR_TENANT_ID"
Verify a Key
curl -X POST https://dev.auxcore.net/api/v1/api-keys/verify \
-H "Content-Type: application/json" \
-H "X-Tenant-ID: YOUR_TENANT_ID" \
-d '{ "apiKey": "lv_erp_abcdef1234..." }'
Response includes: keyType, merchantId, tenantId, scope, permissions, isActive.
Need help? Contact support@auxvault.com