# Authentication

All REST API endpoints are protected by HTTP Basic Authentication (opens new window). HTTP Basic Authentication requires a username and password encoded in base64. In our case, the username and password are the API key Client ID and API key Secret respectively.

You can create API keys for your project in the API Keys section in the XanPay dashboard (opens new window). You can find more details about this here.