LoyaltyLion home page
v2
Search...
⌘K
Status
Support
Dashboard
Dashboard
Search...
Navigation
Authentication
Overview
Documentation
SDK
Admin API
Headless API
Admin API
Introduction
Authentication
Overview
API keys
OAuth
Token & secret (deprecated)
Pagination
Resources
Identity
Customers
Activities
Transactions
Orders
Sites
Emails
Webhooks
Webhooks
Introduction
Webhook events
Authentication
Overview
The LoyaltyLion API supports two recommended methods of authentication - API keys and OAuth, and one deprecated method, token & secret.
API keys
Merchants can create API keys to authenticate requests to the LoyaltyLion API. Each API key has a unique token, set of permissions (scopes) and can be disabled or deleted at any time.
OAuth
If you’re a LoyaltyLion partner, OAuth is the recommended method of accessing our API. It provides the best experience for merchants as they don’t need to manage API keys manually.
Token and secret (deprecated)
Each LoyaltyLion site has a single token and secret which can be used to authenticate API requests. This method of authentication is deprecated and will be removed in future, because it doesn’t support permissions or credential rotation.
Introduction
API keys
Assistant
Responses are generated using AI and may contain mistakes.