API Documentation
Everything you need to integrate Authon into your application. Full REST API with examples in cURL, Python, C++, and more.
Getting Started
Set up your first application and make your first API call in under 2 minutes.
Create an Application
Go to your dashboard and create a new application. You'll receive an API key and secret.
Install the SDK
Choose your language SDK or use the REST API directly with any HTTP client.
Initialize & Authenticate
Use your API key to initialize the client and start authenticating users.
curl -X POST https://api.authon.pro/v1/client/login \
-H "Content-Type: application/json" \
-H "X-Api-Key: your_api_key_here" \
-d '{"username": "user1", "password": "pass123", "hwid": "ABC-DEF-123"}'Authentication
All API requests require authentication via API key in the header.
X-Api-Key: your_api_keyInclude your API key in every request header. For admin endpoints, use your seller token via Bearer authentication.
Authorization: Bearer your_seller_tokenClient API
Endpoints used by your application to authenticate users, validate licenses, and fetch data.
/v1/client/loginAuthenticate a user with username, password, and optional HWID.
Request Body
{
"username": "testuser",
"password": "securepass",
"hwid": "ABCD-1234-EFGH"
}Response
{
"success": true,
"data": {
"token": "eyJhbG...",
"user": {
"id": "usr_abc123",
"username": "testuser",
"hwid": "ABCD-1234-EFGH",
"subscription": "premium",
"expiresAt": "2026-12-31T23:59:59Z"
}
}
}/v1/client/registerRegister a new user with a license key.
Request Body
{
"username": "newuser",
"password": "securepass",
"licenseKey": "XXXX-XXXX-XXXX-XXXX",
"hwid": "ABCD-1234-EFGH"
}Response
{
"success": true,
"data": {
"token": "eyJhbG...",
"user": {
"id": "usr_def456",
"username": "newuser"
}
}
}/v1/client/licenseLogin with license key only (no username/password).
Request Body
{
"licenseKey": "XXXX-XXXX-XXXX-XXXX",
"hwid": "ABCD-1234-EFGH"
}Response
{
"success": true,
"data": {
"token": "eyJhbG...",
"license": {
"key": "XXXX-XXXX-XXXX-XXXX",
"expiresAt": "2026-12-31T23:59:59Z",
"hwid": "ABCD-1234-EFGH"
}
}
}Admin API
Manage your applications, users, licenses, and settings. Requires seller authentication.
/v1/admin/appsList all your applications with user and license counts.
Response
{
"success": true,
"data": [
{
"id": "app_123",
"name": "My App",
"apiKey": "ak_...",
"version": "1.0.0",
"status": "ACTIVE",
"_count": { "appUsers": 150, "licenses": 200 }
}
]
}/v1/admin/apps/v1/admin/licenses/generate/v1/admin/users/v1/admin/users/:id/v1/admin/blacklistReseller API
Endpoints for resellers to generate keys and manage their customers.
/v1/reseller/keys/generate/v1/reseller/keys/v1/reseller/statsFile Downloads
Upload, manage, and serve encrypted files to authenticated users.
/v1/admin/files/upload/v1/client/files/:fileId/v1/client/files/:fileId/bytesWebhooks
Receive real-time notifications when events occur in your application.
Available Events
user.loginuser.registeruser.banlicense.activatelicense.expirelicense.deletefile.downloadsession.create{
"event": "user.login",
"timestamp": "2026-06-15T12:00:00Z",
"data": {
"userId": "usr_abc123",
"username": "testuser",
"ip": "192.168.1.1",
"hwid": "ABCD-1234-EFGH",
"country": "US"
}
}Error Codes
Standard error responses returned by the API.
| Code | Message | Description |
|---|---|---|
| 401 | INVALID_KEY | API key is missing or invalid |
| 401 | INVALID_CREDENTIALS | Username or password is incorrect |
| 403 | HWID_MISMATCH | Hardware ID does not match registered device |
| 403 | BLACKLISTED | User IP or HWID is blacklisted |
| 403 | LICENSE_EXPIRED | License key has expired |
| 429 | RATE_LIMITED | Too many requests, try again later |
| 404 | NOT_FOUND | Requested resource does not exist |
Ready to integrate?
Create your free account and start building in minutes. Full API access on all plans.