Authentication
Only authenticated users can make API requests. Gini API uses the OAuth 2.0 protocol with bearer tokens for authentication from untrusted devices and a simplified authentication scheme for trusted devices/systems (backend or gateway) based on basic auth.
In order to use the API in your application, register your application with Gini. Afterwards, your application should request an access token from the Gini Authorization Server and use it to access Gini Pay API.
Security
Gini Pay API is only accessible over HTTPS. Make sure your application validates the relevant X.509 certificates, such as, common name matches hostname or issuing CA is trusted. Gini Pay API and User Center are accessible from legacy IPv4 and IPv6 networks. The protocol precedence depends on your operating system and configuration if both protocols are enabled.
...