Kublau Docs
  • Welcome
  • Guides
    • Track a shipment in real-time
      • Tracker tracking status
    • Buy a shipping label
      • Shipment metafields
      • ShipmentRate metafields
    • Schedule a pickup for your shipments
    • Verify an address
    • Feed order, customer & product data
      • Resource metafields
    • Send notifications to customers
    • Embed a widget on your site or app
  • API
    • Getting Started
    • Playground
    • Running examples
    • Authentication
    • API Reference
    • Webhooks
Powered by GitBook
On this page
  • API keys
  • Obtaining your API keys
  • Query the API
  • curl

Was this helpful?

  1. API

Authentication

PreviousRunning examplesNextAPI Reference

Last updated 4 years ago

Was this helpful?

API keys

The Kublau API uses API keys to authenticate requests. You can view and manage your API keys in .

Kublau authenticates your API requests using your workspace’s API keys. If you do not include your key when making an API request, or use one that is incorrect or outdated, Kublau returns an error.

Every workspace is provided with separate keys for testing and for running live transactions. All API requests exist in either test or live mode, and objects—customers, trackers, shipments, and so forth—in one mode cannot be manipulated by objects in the other.

API keys should be kept confidential and only stored on your own servers. Your account’s secret API key can perform any API request to Kublau without restriction.

Obtaining your API keys

Your API keys are available in the . These keys carry many privileges, so be sure to keep them secure! Do not share your secret API keys in publicly accessible areas such as GitHub, client-side code, and so forth.

Authentication to the API is performed via . Provide your API key prefixed by Bearer as the value of the Authentication header in all GraphQL queries and mutations.

All API requests must be made over . Calls made over plain HTTP will fail. API requests without authentication will also fail.

Query the API

You can access the API endpoint using cURL or any other HTTP client. For the following examples, make sure to replace <ACCESS_TOKEN> with the token you generated in the Authentication section.

If you are using an HTTP client to query the API, then you may need to set Content-Type to application/graphqldepending on the content format you provide in the body.

curl

To make a query to the API using curl, send a POST request with your query as the JSON payload.

GRAPHQL_TOKEN=<ACCESS_TOKEN>
curl "https://api.kublau.com/graphql" --header "Authorization: Bearer $GRAPHQL_TOKEN" --header "Content-Type: application/json" --request POST --data "{\"query\": \"query {workspace {name}}\"}"
the Kublau Dashboard
Dashboard
bearer tokens
HTTPS