The KohortPay API uses API keys to authenticate requests. You can view and manage your API keys in the KohortPay Dashboard. Test mode secret keys have the prefix sk_test and live mode secret keys have the prefix sk_live.
Your API keys carry many privileges, so be sure to keep them secure! Do not share your secret API keys in publicly accessible areas such as GitHub, client-side code, and so forth.
To authenticate you need to add an Authorization header with the contents of the header being Bearer sk_live_12345 where sk_live_12345 is your API Key. 
Authorization: Bearer sk_live_12345
All API requests must be made over HTTPS. Calls made over plain HTTP will fail. API requests without authentication will also fail.