Quick Start

This page will guide you on how to use Xendit APIs easily

Register A Xendit Account

Register here if you do not have an account Login to Xendit Dashboard

Generate API Key


Only user with Admin or Manage Tech Settings permission can generate API key

  1. Go to API keys settings in Xendit Dashboard
  2. In Secret keys in API Keys section, click Generate secret key to generate your secret key
  3. A pop-up will be prompted to configure your API key name and permission.
  4. Click Generate Key
  5. Your secret API key will be shown in the pop-up. You can Copy or Download the key.
    The key will only be displayed once in this pop up and will not be able to be viewed again after the pop up has been closed.
  6. You can generate, edit, or delete API key name and permissions when you need to

We highly recommended you to select strict API key permission. Generate unique API key for different product or don't select permission for product you are not planning to use yet

Setup IP Allowlist

Block unauthorised requests from unrecognised IP Addresse by adding your server IP Address to IP Allowlist

  1. Navigate to IP Allowlist settings in Xendit Dashboard
  2. In IP Allowlist section, add IP Address to allowlist your server IPs. You can find your IP address by using What's My IP

Create API Request

Use our Postman collection to explore Xendit APIs. Simply select any API you're interested in, attach the API key in header, and send the request

Run in Postman

Setup Webhook

For some of our products, we'll send a webhook after we have processed your requests. Webhook setup can be done via these steps:

  1. Set up your server to listen to our webhook request. You can use a tool like ngrok to make your endpoint available for receiving webhook
  2. Navigate to Webhook settings in Xendit Dashboard
  3. Attach your server's URL in the input box of the product you are going to use. Click Save and Test and a dummy event will be sent to the URL
  4. Validate Xendit as legitimate webhook sender via x-callback-token header. Find your x-callback-token in Webhook verification token section in Webhook settings

See Webhook page for more information about our callback feature

Going Live Checklists

See our going-live checklists to make sure your integration is completed

Last Updated on 2023-09-04