General Security

As a T2A customer, you may configure and control the security of your account credits - preventing unauthorised use.

  1. Using the control panel, add the IP address(es) of your server(s) which are permitted to use your T2A account. If any IP addresses are in the permitted list, requests from other IP addresses will be denied.
  2. When invoking T2A from client-side JavaScript, generate a secure temporary key (we refer to this as a JavaScript key) that can be safely included in your HTML mark-up, using the javascript_key method. This key expires after a short period, and is restricted to only function on your specified domain, and can optionally be configured to only operate for the user's IP address.
  3. All methods can be optionally invoked via HTTPS.

Next: API Method List