Skip to main content
TimeLockData API uses API Key authentication for all requests.

API Key Authentication

Include your API key in the X-API-Key header with every request. 
X-API-Key: your_api_key_here

Getting Your API Key

  1. Log in to the TimeLockData Dashboard
  2. Navigate to Administration > Source Systems
  3. Create a new source system to generate an API key
  4. Copy the key and store it securely

Example

curl -X GET "https://api.timelockdata.com/api/v1/evidences/{COMPANY_ID}/category" \
  -H "X-API-Key: your-api-key"

Security Best Practices

  • Store API keys in environment variables, never in source code
  • Use HTTPS for all requests
  • Rotate API keys periodically
  • Use different keys for development and production

Error Responses

401 Unauthorized — Missing or invalid API key: 
{
  "statusCode": 401,
  "message": "Unauthorized"
}
403 Forbidden — Insufficient permissions: 
{
  "statusCode": 403,
  "message": "Forbidden resource"
}