Overview
Requests to Allxon API
This section describes the elements that make up an API request:
API Regional Domains
- US Region
https://us.api.allxon.com - EU Region
https://eu.api.allxon.com
HTTP Method
Currently, Allxon API supports the following methods
- GET
- POST
- PUT
If you request an unsuppoted method, you will see an error response with status code 405.
Requests Headers
The headers here are required in every request with Allxon API.
If the headers are incomplete, you will see an error response with status code 401.
Accept
Allxon API only supports application/json. When making a request, you should pass an Accept header with a value of application/json, for example:
Accept: application/json
Accept-Encoding
Allxon API only supports gzip. When making a request, you must pass the Accept-Encoding header with a value of gzip, for example:
Accept-Encoding: gzip
Content-Type
Allxon API only supports application/json. When making a request, you must pass the Content-Type header with a value of application/json, for example:
Content-Type: application/json
Authorization
Allxon API only supports Allxon Signature Version 1(ALLXON-SIG1) for authentication. When making a request, you must pass the Authorization header in the format below:
Authorization: ALLXON-SIG1 Credential="ApiKeyID",Signature="Signature"
See API Authorization for more detail.
X-Allxon-Epoch
The UTC timestamp in number of milliseconds. It's needed for calculating the signature in the Authorization header. Upon receiving a request, the server will validate the value of X-Allxon-Epoch within a 10 minute window. When making a request, you must pass the X-Allxon-Epoch header with the format below:
X-Allxon-Epoch: 1708954065872
Allxon API response
Response Headers
These headers are included the header in every response from Allxon API.
Content-Encoding
Allxon API always uses the value gzip in response, for example:
Content-Encoding: gzip
Content-Type
Allxon API always uses the value application/json in response, for example:
Content-Type: application/json
X-Request-ID
The value for the X-Request-ID is a random token which is unique per HTTP request. A UUID 4 string is used as the identifier, for example:
X-Request-ID: 0535ae17-3bb1-4b07-aa07-a25b831e5979
X-Ratelimit-Limit
The maximum number of requests that you can make per hour, for example:
X-Ratelimit-Limit: 1000
X-Ratelimit-Remaining
The number of requests remaining in the current rate-limit window, for example:
X-Ratelimit-Remaining: 900
X-Ratelimit-Reset
The epoch time, in seconds, at which the current rate-limit window resets. For example:
X-Ratelimit-Reset: 1714726743
Response HTTP Status Codes
Allxon API uses HTTP response codes to indicate the success or failure of an API request. In general:
- 2xx: Indicate success, different per API endpoint
- 4xx: Indicate a client errors that occur due to invalid or incomplete information in the request
- 5xx: Indicate an error with the server
The response body for 4xx error codes will be formatted as follows:
{
"code": "E403-1",
"message": "The failed reason"
}
HTTP Status Code Summary
| Code | Description |
|---|---|
| 200 | The request has completed successfully |
| 202 | The request has been submitted and will be processed in the background |
| 400 | The request contains invalid or incomplete information |
| 401 | The request does not contain a valid API key |
| 403 | The API key does not have permissions to perform the request |
| 404 | The requested resource does not exist |
| 405 | The requested method is not supported |
| 409 | The requested resource already exists |
| 429 | The number of requests have exceeded the rate limits |
| 500 | Something went wrong on server |