ECSEND API v1 Documentation

Authentication

All /api/v1 endpoints require the X-Api-Key header.

X-Api-Key

In OpenAPI, the security scheme is defined as apiKey in the X-Api-Key header.

header

X-Api-Key: YOUR_API_KEY
Best practices
  • Never expose your API key in public frontend code.
  • Store your key in secure backend environment variables.
  • If compromised, regenerate the key in the portal immediately.
Common errors

401 Unauthorized

Usually means missing or invalid API key. Error payload format is {"error": "..."}.

1