API key

If you are a Qonto customer, you can authenticate by using the login and the secret key of your Qonto organization. To do so:

Go to the Qonto web app of the environment you are currently working on 👇
- Sandbox: From the Toolkit, click on “Sandbox web app”.
  If you need an access to our Sandbox environment, please sign up to the Developer Portal.
- Production: Go to the Production web app.
If you have several organizations, choose the organization to which you want to connect.
Click on Integrations and Partnerships > API key.
(optional) Click on the Generate button to create your secret key.
Use the following header in your API calls 👇
```
Authorization: {sign-in}:{secret-key}
```

As an example, to authenticate an organization whose sign-in is pied-piper-7132 and secret key is 62885d39f3a0ddedd3d3ee0432a43ccr, your request will look like this:

cURL example

curl --location --globoff 'https://thirdparty.qonto.com/v2/organization' \
--header 'Authorization: pied-piper-7132:62885d39f3a0ddedd3d3ee0432a43ccr'

While this may resemble HTTP Basic Authentication,it’s not. This approach simply concatenates the sign-in and secret-key values with a colon (:) separator — no Base64 encoding involved.

Make your first request to https://thirdparty.qonto.com/v2/organization
- If you get a 200 Success code (with details of your organization)
  → 🎉 Congratulations, your Authorization header is valid
- If you get a 401 Unauthorized error code → Double-check your header name & value

General

Business API

Onboarding API

SDKs & Libraries