This guide walks you through your first request against the sandbox environment.

1. Get an API key

API keys are issued from the Balansas dashboard. Each key is scoped to your customer, can be restricted to specific IP addresses, and may carry an expiry date.
Treat your API key like a password. Never embed it in client-side code or commit it to source control.

2. Make your first call

List your fiat accounts. This is a read-only GET, so it needs only your API key — no CSRF token. 
curl https://stagingapi.balansas.com/functions/v1/customer-api/fiat-accounts \
  -H "x-api-key: sk_test_xxxxxxxxxxxxxxxxxxxx"

3. Read the response

Every successful response wraps the payload in a data field, with optional meta for paginated lists: 
{
  "data": [
    { "id": "acct_...", "currency": "EUR", "status": "active" }
  ],
  "meta": { "pagination": { "page": 1, "limit": 25, "total": 1 } }
}

4. Next steps

1

Authenticate writes

POST, PATCH, and DELETE also require an X-CSRF-Token header. See Authentication.
2

Make money moves safely

Money-moving endpoints accept an Idempotency-Key. See Idempotency.
3

Explore the resources

Open Accounts, End users, and Payments.

API Reference

Browse every endpoint with an interactive request playground.