# Authorization

### Step 1: Generate a User Access Token

1. Navigate to the [User Access Token page](https://dashboard.paytweed.com/api-keys) in the Management Dashboard.
2. Click on **Create user access token**.

<figure><img src="https://2034179314-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FgQyCg5IN7Cv6AnUUpGl2%2Fuploads%2Fn8KjLwon5k6tD5NKO0MJ%2Fimage.png?alt=media&#x26;token=8d7e4a4d-0474-4aec-9e60-cf8d0c3fcbfc" alt="" width="375"><figcaption></figcaption></figure>

3. The generated token will include:

* **API Key**: Your unique identifier.
* **API Secret**: Your secret key for secure access.

### Step 2: Use the Authorization Header

When making requests to the API, you must include the authorization header in the following format:

```
Authorization: Bearer <API_KEY>:<API_SECRET>
```

#### Example Request

```
GET /api/v1/resource
Authorization: Bearer abcd1234:efgh5678
```

#### Important Notes

* Keep your **API Secret** confidential and do not share it.
* The token grants access to your account and data, so store it securely.
* If your token is compromised, revoke it immediately from the User Access Token page and generate a new one.