Swell · Authentication Profile

Swell Io Authentication

Authentication

Swell secures its APIs with apiKey across 2 declared security schemes, as derived from its OpenAPI definitions.

CommerceHeadless CommerceAPI-FirstB2CB2BSubscriptionsMarketplacesWholesaleStorefrontCheckoutPaymentsCartsOrdersCatalogInternationalization
Methods: apiKey Schemes: 2 OAuth flows: API key in: header

Security Schemes

SwellStoreId apiKey
· in: header (X-Store-Id)
SwellSecretKey apiKey
· in: header (Authorization)

Source

Authentication Profile

Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/swell-backend-api-openapi.yml, openapi/swell-frontend-api-openapi.yml
summary:
  types:
  - apiKey
  api_key_in:
  - header
schemes:
- name: SwellStoreId
  type: apiKey
  in: header
  parameter: X-Store-Id
  description: Your Swell store ID, found in the Developer section of the dashboard.
  sources:
  - openapi/swell-backend-api-openapi.yml
- name: SwellSecretKey
  type: apiKey
  in: header
  parameter: Authorization
  description: 'Secret API key prefixed with `sk_`. Sent as `Authorization: Basic <base64(store-id:secret-key)>`
    or equivalent custom header by official libraries.'
  sources:
  - openapi/swell-backend-api-openapi.yml
  - openapi/swell-frontend-api-openapi.yml