How It Works
Instead of each merchant generating their own API keys, platform partners receive a single set of Platform API credentials that can be used to access any merchant account linked to their platform.Authentication
Required Headers & Parameters
When making requests as a partner you must provide:Example Request
Getting the Merchant ID
Thex-merchant-id header requires the merchant’s Company ID. This is the internal identifier for the merchant’s account in Helio.
You can find the Helio company ID upon creation of a merchant account using the Create a Merchant Account endpoint. This is the internal identifier for the merchant’s account.
As a platform partner, you should store this ID when merchants connect their accounts to your platform.
Supported Endpoints
Partner API Access works with all merchant-facing API endpoints, including:- Pay Links - Create, update, disable pay links
- Transactions - Retrieve transaction history
- Charges - Create and manage charges
- Deposits - Create deposits and manage customers
- Subscriptions - View subscription details
- Webhooks - Manage webhook configurations
Error Handling
Common Error Responses
Platform Key Without Merchant ID
If you accidentally use a Platform API key without thex-merchant-id header, you’ll recieve:
Access Levels
Platform API keys have an associated access level that determines which operations are permitted. The access level is configured when the Platform API key is issued.Best Practices
- Store Platform credentials securely - Never expose your Platform API secret in client-side code
- Validate merchant IDs - Ensure the merchant ID is valid before making API calls
- Handle errors gracefully - Implement proper error handling for authorization failures
- Use HTTPS only - All API requests must use HTTPS
Getting Started
- Request Platform API access - Contact the Helio team to become a platform partner
- Receive credentials - You’ll receive a Platform API Key and Secret
- Connect merchants - Merchants link their Helio accounts to your platform (store their Company IDs)
- Make API calls - Use the
x-merchant-idheader to act on behalf of merchants
