api-referenceAuthentication

Authentication

EventSlot API access uses bearer tokens with workspace-level scopes.

Create an API Key

  1. Go to Organizer Settings.
  2. Open Developer Access.
  3. Create API key.
  4. Copy and store the secret once.

Use Bearer Token Authentication

curl https://api.eventslot.co/v1/events \
  -H "Authorization: Bearer es_live_xxxxx" \
  -H "Content-Type: application/json"

Recommended Scope Model

ScopeAccess
events.readView event metadata
events.writeCreate and update events
registrations.readAccess attendee records
registrations.writeCreate or edit registrations
waitlist.managePromote or reorder waitlist entries

Key Management Best Practices

  • Rotate keys every 90 days.
  • Use environment variables only.
  • Issue separate keys per service.
  • Revoke keys immediately on role changes.
Appendix - EventSlot DocsEndpoints