# Quick Start Guide
source: https://developer.mastercard.com/identity-insights-for-transactions/documentation/quick-start-guide/index.md

## Overview {#overview}

Use this guide to go from account setup to your first successful Sandbox request for Identity Insights for Transactions. You will create a project, generate credentials, make a test call, and prepare the same project for Production access.

Tip: If you want the fastest path to a working Sandbox request, start with the [Postman Collections page](https://developer.mastercard.com/identity-insights-for-transactions/documentation/postman-collection/index.md). It lets you test Sandbox and Production flows without writing code first.

<br />

### Before you begin {#before-you-begin}

* Create a [Mastercard Developers](https://developer.mastercard.com/) account.
* Have a secure place to store downloaded OAuth and encryption keys.
* Decide how you want to test: Postman, Insomnia, the reference application, or your own client.

### Sandbox checklist {#sandbox-checklist}

| # |    Step     |                                                                                                                         What to do                                                                                                                         |
|---|-------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| 1 | Access      | Get access to Identity Insights for Transactions API and create your Mastercard Developers project.                                                                                                                                                        |
| 2 | Credentials | Generate your Sandbox MTLS credentials and download the zipped file containing the encryption key.                                                                                                                                                         |
| 3 | Encryption  | The API requires an encrypted payload, so implement the client encryption library in your project as detailed in [API Basics](https://developer.mastercard.com/identity-insights-for-transactions/documentation/api-basics/index.md#transport-encryption). |
| 4 | First call  | Send your first Sandbox request using the Sandbox base URL and OAuth 1.0a signing.                                                                                                                                                                         |
| 5 | Validation  | Use the sample response and [Testing](https://developer.mastercard.com/identity-insights-for-transactions/documentation/testing/index.md) page to validate test data, positive flows, and negative flows.                                                  |
| 6 | Production  | After Sandbox validation is complete, use Step 5 and the [Onboarding Checklist](https://developer.mastercard.com/identity-insights-for-transactions/documentation/tutorials-and-guides/prerequisites/index.md) to request Production access.               |

## Step 1: Get access to the API {#step-1-get-access-to-the-api}

1. Go to [Mastercard Developers](https://developer.mastercard.com/) and create an account.
2. Activate your account by opening the link sent to your email address, and log in.
3. Open your [My Projects](https://developer.mastercard.com/dashboard) page and start a new project. Sandbox access is open, so you can begin testing as soon as your project credentials are generated.

## Step 2: Create a project and generate Sandbox credentials {#step-2-create-a-project-and-generate-sandbox-credentials}

Create a Mastercard Developers project to generate your Sandbox credentials. Sandbox gives you mocked data so you can validate your integration before requesting Production access.

### Project Details {#project-details}

1. Click 'Create new project' on your [My Projects](https://developer.mastercard.com/dashboard) page. ![Identity Insights for Transactions Project Details](https://static.developer.mastercard.com/content/identity-insights-for-transactions/uploads/quick-start-screenshot-01.webp)
2. Enter a project name.
3. If prompted, indicate whether you are creating the project on behalf of a client.
4. In the 'Select at least one API' field, choose **Identity Insights for Transactions**.

### Service Details {#service-details}

5. Complete the 'Service details' form if it appears.

### Project Credentials {#project-credentials}

6. In 'Project Credentials', select the 'OAuth 1.0' radio button for this OAuth 1.0a service.
7. Create a key alias and keystore password for your OAuth keys, record them securely, and click 'Proceed'. ![Select OAuth Type](https://static.developer.mastercard.com/content/identity-insights-for-transactions/uploads/oauth-type.png)

### Additional Credentials {#additional-credentials}

8. Create a key alias and keystore password for your encryption keys, record them securely, and click 'Create Project'.
9. Download the encryption keys and store them in a safe place. Then click 'Open Project'.
10. Once you receive an email informing you that the Sandbox Authentication key has been approved, reach out to your [Mastercard Representative](https://developer.mastercard.com/identity-insights-for-transactions/documentation/support/index.md#how-can-i-find-who-is-my-mastercard-representative) to complete your onboarding. ![Project creation confirmation with key download links](https://static.developer.mastercard.com/content/identity-insights-for-transactions/uploads/project-creation.png)

### Save the values you will need {#save-the-values-you-will-need}

11. On the project dashboard, record the following values:

* Sandbox and Production status
* Authentication consumer key
* Client encryption key fingerprint

![Project dashboard showing Sandbox and Production status and credentials](https://static.developer.mastercard.com/content/identity-insights-for-transactions/uploads/project-dashboard.png)

## Step 3: Make your first Sandbox request {#step-3-make-your-first-sandbox-request}

Once you have Sandbox credentials, make a simple GET request to confirm that your project is set up correctly.

Before you run the request, make sure you have:

* Your Sandbox consumer key and Sandbox encryption key
* The private key used to sign OAuth requests
* A Mastercard OAuth library or signer that generates `oauth_timestamp`, `oauth_nonce`, and `oauth_signature`
* A Mastercard Encryption library that can generate the encrypted payload

Note: For a full client setup, including encryption configuration, see the [API Basics](https://developer.mastercard.com/identity-insights-for-transactions/documentation/api-basics/index.md#how-to-consume-the-api) section.

**Example Request (cURL):**

```bash
curl --request GET \
  --url "https://sandbox.api.mastercard.com/identity/transactions" \
  --header "Authorization: OAuth oauth_consumer_key=\"<YOUR_CONSUMER_KEY>\", oauth_signature_method=\"RSA-SHA256\", oauth_timestamp=\"<UNIX_TIMESTAMP>\", oauth_nonce=\"<RANDOM_NONCE>\", oauth_version=\"1.0\", oauth_signature=\"<URL_ENCODED_RSA_SHA256_SIGNATURE>\"" \
  --cert "<PATH_TO_CLIENT_CERT.pem>" \
  --key "<PATH_TO_CLIENT_KEY.pem>"
```

> This example shows the required OAuth 1.0a header fields explicitly, but uses placeholders for sensitive values.
> Replace `YOUR_CONSUMER_KEY` with the consumer key from your project and generate `oauth_signature` with a Mastercard OAuth library. The library also handles `oauth_timestamp` and `oauth_nonce` for you.
>
> For step-by-step examples see the [Integration and Testing Tutorial](https://developer.mastercard.com/identity-insights-for-transactions/tutorial/api-testing/index.md).

**Expected Response:**

```json
{
  "id": "819bedc4-1a43-435b-8f06-747fa653092c",
  "deviceInsights": {
    "deviceInfo": {
      "browser": "IE",
      "platform": "Windows",
      "deviceType": "Generic"
    }
  },
  "individualInsights": {
    "primaryEmail": {},
    "ip": {
      "billingAddressDistance": 240,
      "lastSeenDays": 234,
      "connectionType": "cable-dsl",
      "shippingAddressDistance": 240,
      "providerDetails": {
        "country": "australia",
        "ipCarrier": "cloudflare",
        "city": "research (melbourne)",
        "state": "victoria"
      },
      "isProxy": true,
      "proxyRiskClass": "low"
    },
    "shippingAddress": {
      "validityLevel": "missing_address"
    },
    "billingAddress": {
      "validityLevel": "missing_address"
    },
    "scores": {
      "ipRisk": {
        "score": 0.935
      },
      "identityRisk": {
        "score": 61,
        "reasonCode": "RN"
      }
    },
    "paymentCard": {
      "cardHolderNamefirstSeenDays": 0,
      "cardHolderNameVelocity": 0
    }
  }
}
```

> See [Testing](https://developer.mastercard.com/identity-insights-for-transactions/documentation/testing/index.md) for additional scenarios.

## Step 4: Choose how you want to test and integrate {#step-4-choose-how-you-want-to-test-and-integrate}

After the first Sandbox request succeeds, pick the integration path that matches your workflow:

* **Postman:** Use the [Postman Collection](https://developer.mastercard.com/identity-insights-for-transactions/documentation/postman-collection/index.md) page for setup.
* **Reference Application:** Use the [Reference Application](https://developer.mastercard.com/identity-insights-for-transactions/documentation/reference-app/index.md) page.
* **cURL or a custom client:** Use the [Testing](https://developer.mastercard.com/identity-insights-for-transactions/documentation/testing/index.md) page for test cases and additional examples.

## Step 5: Promote the same project to Production {#step-5-promote-the-same-project-to-production}

Once your project is working in Sandbox, request Production access for that same project.

### Transition your project from Sandbox to Production {#transition-your-project-from-sandbox-to-production}

1. **Open your project in Mastercard Developers**
   Go to your [My Projects](https://developer.mastercard.com/dashboard) page and open the Identity Insights for Transactions Project you used for Sandbox testing.

2. **Provide commercial countries for your project**
   In the project dashboard, select the commercial countries where you intend to use the service. This information is required for Mastercard to process your Production access request.
   ![Commercial countries selection dropdown on the project dashboard](https://static.developer.mastercard.com/content/identity-insights-for-transactions/uploads/select-countries-project.png)

3. **Request Production access for that project**
   In the project dashboard, select 'Request Production Access'. Your Sandbox and Production statuses are shown separately on the project page, so you can track when Production moves from `Not Requested` to an enabled `Ready` state.

4. **Generate or download your Production keys**
   After Production access is approved, download the Production OAuth and encryption keys for the same project. Keep the Production key material separate from your Sandbox keys.

5. **Update your application configuration**
   Switch the base URL from Sandbox to Production:

   * Sandbox:
     * `https://sandbox.idv.mastercard.com/identity/transactions`
     * `https://sandbox.idv.mastercard.eu/identity/transactions`
     * `https://sandbox.idv.mastercard.asia/identity/transactions`
   * Production:
     * `https://idv.mastercard.com/identity/transactions`
     * `https://idv.mastercard.eu/identity/transactions`
     * `https://idv.mastercard.asia/identity/transactions`

   Update your application to use the Production consumer key, signing key, and encryption certificates.

Note: OAuth 1.0a authentication and JWE payload encryption work the same way in Sandbox and Production. The main changes are the Production key set, the Production approval state, and the Production base URL.

If you need the full onboarding process, including contract, MTF, SLA, and escalation details, see the [Onboarding Checklist](https://developer.mastercard.com/identity-insights-for-transactions/documentation/tutorials-and-guides/prerequisites/index.md).

### Next Steps {#next-steps}

Continue with the documentation that matches your next task:

* [API Reference](https://developer.mastercard.com/identity-insights-for-transactions/documentation/api-reference/index.md) for endpoint details
* [API Basics](https://developer.mastercard.com/identity-insights-for-transactions/documentation/api-basics/index.md) for authentication, encryption, and client configuration
* [Testing](https://developer.mastercard.com/identity-insights-for-transactions/documentation/testing/index.md) for additional request scenarios
* [Onboarding Checklist](https://developer.mastercard.com/identity-insights-for-transactions/documentation/tutorials-and-guides/prerequisites/index.md) for the full operational go-live process
