Learn how to authenticate and make requests to the Script Store API.
All API requests should be made to:
https://letest.scriptstore.store/api/v1/offers
The Script Store API uses API keys for authentication. You can find your API keys in your app's integration page in the publisher dashboard.
| Key Type | Purpose | Visibility |
|---|---|---|
| API Key | Used for client-side integrations (iframe, JavaScript) | Public - can be exposed in frontend code |
| API Secret | Used for server-side API requests | Private - must be kept secure on your server |
Include your API credentials in the request headers or query parameters:
GET https://letest.scriptstore.store/api/v1/offers?apiKey=YOUR_API_KEY&apiSecret=YOUR_API_SECRET
curl -X POST https://letest.scriptstore.store/v1/conversions \
-H "X-API-Key: YOUR_API_KEY" \
-H "X-API-Secret: YOUR_API_SECRET" \
-H "Content-Type: application/json" \
-d '{"userId": "USER123", "offerId": 12345}'
Rate limit information is included in response headers:
X-RateLimit-Limit: 100
X-RateLimit-Remaining: 95
X-RateLimit-Reset: 1705789234
All API responses are in JSON format with the following structure:
{
"success": true,
"data": { ... },
"message": "Request successful",
"meta": {
"timestamp": 1705789234,
"request_id": "req_abc123"
}
}
Errors follow a consistent format:
{
"success": false,
"error": {
"code": "INVALID_API_KEY",
"message": "The provided API key is invalid or expired",
"details": null
},
"meta": {
"timestamp": 1705789234,
"request_id": "req_abc123"
}
}
| Code | HTTP Status | Description |
|---|---|---|
INVALID_API_KEY |
401 | API key is missing or invalid |
INVALID_API_SECRET |
401 | API secret is missing or invalid |
RATE_LIMIT_EXCEEDED |
429 | Too many requests |
INVALID_REQUEST |
400 | Request is malformed or missing required parameters |
RESOURCE_NOT_FOUND |
404 | Requested resource doesn't exist |
SERVER_ERROR |
500 | Internal server error |