Skip to main content
Before you can submit signed receipts, you need three credentials in your vendor account:
  • VAULTGRAPH_VENDOR_API_KEY
  • VAULTGRAPH_VENDOR_PUBLIC_KEY
  • VAULTGRAPH_VENDOR_PRIVATE_KEY

1) Create your vendor API key

  1. Sign in at app.vaultgraph.com
  2. Switch to your vendor organization
  3. Open Org Settings → API Keys
  4. Click Create API key and copy it
Save this value as VAULTGRAPH_VENDOR_API_KEY in your server environment.
Never expose API keys in browser/client code. Keep them in your backend secrets manager or server-only environment variables.

2) Generate your Ed25519 keypair (SDK helper)

Use the SDK helper to generate PEM-encoded keys: 
import { generateKeyPair } from "@vaultgraph/sdk";

const { privateKey, publicKey } = generateKeyPair();

console.log("VAULTGRAPH_VENDOR_PRIVATE_KEY=\n", privateKey);
console.log("VAULTGRAPH_VENDOR_PUBLIC_KEY=\n", publicKey);
Set these in your server environment as:
  • VAULTGRAPH_VENDOR_PRIVATE_KEY
  • VAULTGRAPH_VENDOR_PUBLIC_KEY
The private key must remain secret. Store it server-side only and never commit it to source control.

3) Add credentials to your environment

Example: 
VAULTGRAPH_VENDOR_API_KEY=vgk_...
VAULTGRAPH_VENDOR_PUBLIC_KEY="-----BEGIN PUBLIC KEY-----\n...\n-----END PUBLIC KEY-----"
VAULTGRAPH_VENDOR_PRIVATE_KEY="-----BEGIN PRIVATE KEY-----\n...\n-----END PRIVATE KEY-----"

Next step

Continue with: