Overview

Merchants can create API keys to authenticate requests to the LoyaltyLion API. Each API key has a unique token, set of permissions (scopes) and can be disabled or deleted at any time.

If you’re a LoyaltyLion partner, OAuth is the recommended method of accessing our API. It provides the best experience for merchants as they don’t need to manage API keys manually.

Each LoyaltyLion site has a single token and secret which can be used to authenticate API requests. This method of authentication is deprecated and will be removed in future, because it doesn’t support permissions or credential rotation.