Authentication
All API requests require authentication using an API key. Your API key is used to identify your account and authorize requests.
API Keys
You can generate and manage API keys from the Developer Settings in your dashboard.
- 1. Go to Settings > Developer in your dashboard.
- 2. Click Create API Key.
- 3. Give your key a name (e.g., "Production", "Development").
- 4. Select the permissions for this key (read, write, or both).
- 5. Copy the key and store it securely. You will not be able to see it again.
Authentication Method
All API requests must include your API key in the Authorization header:
Authorization: Bearer YOUR_API_KEY
curl -H "Authorization: Bearer YOUR_API_KEY" \ https://api.bookora.work/v1/customers
Rate Limits
API requests are rate-limited to ensure fair usage:
| Tier | Rate Limit | Burst Limit |
|---|---|---|
| Free | 100 requests/hour | 10 requests/minute |
| Pro | 1,000 requests/hour | 100 requests/minute |
| Enterprise | Custom | Custom |
Rate limit headers are included in every response:
X-RateLimit-Limit: 1000 X-RateLimit-Remaining: 987 X-RateLimit-Reset: 1623456789
Error Codes
| Code | Description |
|---|---|
| 401 | Unauthorized — Invalid or missing API key |
| 403 | Forbidden — Insufficient permissions |
| 429 | Too Many Requests — Rate limit exceeded |
Security Note
Never share your API key or expose it in client-side code. If you suspect your key has been compromised, revoke it immediately from the Developer Settings.