Authentication

ValidationCore.dev uses API keys for authentication with our two-tier system: Test environment for risk-free development and Production environment with pay-as-you-scale pricing.

🔑 API Key Format

All API keys follow a standardized format for easy identification and security:

Format: adb_[environment]_[random_string]

Examples:
adb_test_a1b2c3d4e5f6g7h8i9j0    # Test Environment    # Test Environment
adb_prod_x9y8z7w6v5u4t3s2r1q0    # Production Environment    # Production Environment

Security Note: API keys are case-sensitive and must be kept secure. Never expose them in client-side code or public repositories.

🛡️ Making Authenticated Requests

Include your API key in the Authorization header using Bearer token authentication:

HTTP Header

Authorization: Bearer adb_test_your_api_key_here

Complete cURL Example

cURL Request

curl -X POST https://api.validationcore.dev/api/v2/validate/product \
  -H "Authorization: Bearer adb_test_your_api_key_here" \
  -H "Content-Type: application/json" \
  -d '{"products": [{"title": "Sample Product", "price": "99.99 USD"}]}'

⚡ Two-Tier Environment System

ValidationCore.dev provides Test and Production environments with different capabilities and pricing:

Test Environment adb_test_*

Risk-free integration & evaluation

FREE

No credit card required

undefined

Perfect for: Development, testing, proof of concept, and integration validation

Production Environment adb_prod_*

Pay-as-you-scale with volume discounts

$0.02 - $0.08

per validation

Volume-Based Pricing:

First 10,000 validations $0.08 each

10,001 - 50,000 validations $0.06 each

50,001 - 200,000 validations $0.04 each

200,001+ validations $0.02 each

1,000/min

Priority

Advanced

Enterprise Features: Business intelligence, revenue impact analysis, competitive insights, 114 GMC field validations

⏰ Rate Limiting

All API requests include rate limiting headers to help you manage your usage:

HTTP Response Headers:

undefined
undefined
undefined
undefined
undefined

⚠️

Rate Limit Exceeded

When rate limits are exceeded, you'll receive a 429 Too Many Requests response. Implement exponential backoff in your applications.

Example Rate Limit Response

undefined
X-RateLimit-Limit: 50
X-RateLimit-Remaining: 0
X-RateLimit-Reset: 1640995320
Retry-After: 60

undefined

Authentication Errors

Common authentication errors and how to resolve them:

401

Unauthorized

Missing or invalid API key

Authorization header missing or invalid API key format

403

Forbidden

API key doesn't have access to this endpoint

Insufficient permissions for this tier

429

Too Many Requests

Rate limit exceeded for your tier

Rate limit exceeded. Retry after: 60 seconds

Best Practices

✅ Store API keys securely using environment variables

✅ Implement exponential backoff for rate limit handling

✅ Monitor rate limit headers to optimize request timing

✅ Use HTTPS for all API requests to protect keys in transit

✅ Rotate API keys regularly for enhanced security