Skip to main content
The Lootex Plus API supports two authentication methods:

API Key Authentication

For most endpoints, you can authenticate using an API key in the request header: 
curl -H "x-api-key: YOUR_API_KEY" \
  https://api.lootexplus.com/v1/assets/explore

Secret Key Authentication

For project wallet operations (mint and transfer), you need to use a secret key with Bearer token authentication: 
curl -H "Authorization: Bearer YOUR_SECRET_KEY" \
  -X POST \
  -H "Content-Type: application/json" \
  -d '{
    "type": "native",
    "chainId": 1,
    "recipientAddress": "0x1234567890123456789012345678901234567890",
    "amount": "1000000000000000000"
  }' \
  https://api.lootexplus.com/v1/project-wallet/transfer

Getting Your Keys

  1. API Keys: Create API keys in your project dashboard under the API Keys section
  2. Secret Keys: Create secret keys in your project dashboard under the Secret Keys section

Security Best Practices

  • Keep your keys secure and never expose them in client-side code
  • Rotate your keys regularly
  • Use different keys for different environments (development, staging, production)
  • Monitor your API usage to detect any unauthorized access