Can I Use Restricted Keys For Stripe Access?

Can I Use Restricted Keys For Stripe Access?

When you add a Stripe connection to your workspace, you can choose to use a restricted key.

This allows you to safeguard your Stripe environment by:
  1. Limiting access to read-only mode
  2. Limiting access to those entities required to calculate commissions
  3. Identifying which caller submits calls to the Stripe API

To generate a restricted key:
  1. Login to Stripe
  2. Generate a restricted key
    1. Click on "Developers"
    2. Click on "API Keys"
    3. Click on "+ Restricted Key"
    4. Enter a key name (ex: "Sales Cookie")
    5. Select read-only permissions for specific entities


Here are our recommendations in terms of selecting entities:
  1. We recommend providing read only access to the following entities as they are commonly used in commission calculations (the exact list depends on your commission structure and the underlying required data):
    1. Customers
    2. Credit notes
    3. Charges
    4. Events
    5. Invoices
    6. Orders
    7. PaymentIntents
    8. Prices
    9. Products
    10. SKUs
    11. Sources
    12. Subscriptions
    13. Transactions
    14. Balance
    15. Balance transaction sources
    16. Tax Rates
    17. Tax Calculations and Transactions
    18. Tax Settings and Registrations
  2. You may also want to enable read only access to the following optional entities (this depends on your commission structure):
    1. Authorizations
    2. Customer session
    3. Cards
    4. Cardholders
    5. Coupons
    6. Disputes
    7. Quotes
  3. We typically do not not require access to the following entities:
    1. Tokens
    2. Token Network Data
    3. Payment Methods (unless you need this information for commissions)
    4. Login Links
    5. Payment Links
    6. Payouts
    7. Files
    8. Funding Instructions
    9. Transfers
    10. Apple Pay domains
    11. Ephemeral keys
    12. Connection Tokens
    13. Reviews
    14. Webhook Endpoints
    15. Report Runs and Report Types
    16. Debugging tools

You can then enter the secret restricted API key in Sales Cookie under Settings > Connections > Stripe.

To learn more about connections, click here.
To learn more about managing synchronizations, click here.
To learn more about importing transactions, click here.

    • Related Articles

    • How Can I Use The Zapier Integration?

      The Zapier integration provides access to: A "Create Transaction" Action This allows you to add or update sales transactions within Sales Cookie. For example, you could create a Zap which calls this action when a new invoice or opportunity is created ...

    • What Is Direct Access?

      Sales Cookie's authentication uses strong security measures by default: Users must complete the authentication flow each time they connect. Users must provide a strong proof of identity, such as a correct email & password, a valid Google ...

    • How Can I Use The CSV Upload API?

      This article is about CSV transaction upload API. This is by far the easiest way to upload sales transactions, and it is also blazing fast. About 1-3 lines of code are required to upload transactions. All you need to do is prepare a CSV file and then ...

    • What Type Of Support Is Available For Stripe?

      By adding a Stripe connection to your workspace, you can automatically import and sync sales transactions to your workspace We support charges, invoices, refunds You will need to map fields the first time you import transactions Newly created Stripe ...

    • How Can I Use The Transaction Import API?

      The data import API allows you to create (or update) sales transactions within Sales Cookie using HTTP requests. Three options are available to import sales transactions using an API: Use the CSV Upload API (easiest) Manually upload a sample CSV file ...