MintMove API Docs

Getting the API Key

Generate your API credentials to start integrating with MintMove

Step-by-Step Guide

1

Sign In or Register

If you don't have a MintMove account, visit mintmove.io and create a new account. If you already have an account, sign in with your credentials.

2

Navigate to API Management

Once logged in, go to your Dashboard and click on API Management in the navigation menu. This section allows you to manage all your API credentials.

3

Generate API Key

Click the Generate API Key button. You'll be prompted to give your API key a name (e.g., "Production Server" or "Trading Bot"). This helps you identify different keys if you create multiple ones.

4

Save Your Credentials Securely

After generation, you'll see two important values:

  • API Key - Your public identifier (starts with mm_)
  • API Secret - Your private key (starts with sk_)

⚠️ Critical: The API Secret is only shown once during generation. If you lose it, you'll need to generate a new API key. Make sure to copy and store it securely immediately.

Security Warnings

Never Expose Secrets on Frontend

Your API secret must never be included in client-side code (JavaScript, mobile apps, browser extensions). Anyone can view the source code and extract your secret, leading to unauthorized access to your account.

Always use API keys server-side only. If you need to make API calls from a frontend application, create a backend proxy that handles authentication securely.

Secure Storage Recommendations

  • Store API secrets in environment variables (e.g., .env files)
  • Use secret management services (AWS Secrets Manager, HashiCorp Vault, etc.)
  • Never commit secrets to version control (add .env to .gitignore)
  • Use different API keys for development, staging, and production environments
  • Rotate API keys periodically (every 90 days recommended)

API Key Management

In the API Management section, you can:

  • View all your active API keys and their creation dates
  • See the last usage timestamp for each key
  • Revoke API keys that are no longer needed
  • Set IP whitelist restrictions for enhanced security
  • Monitor API usage and rate limit status

Next Steps

Now that you have your API key, you're ready to start making API calls:

  1. Review the Request Format documentation
  2. Learn about signature generation if you haven't already
  3. Try the Available Currencies endpoint to get started
  4. Check out our official SDKs for easier integration