GolfGlobe365 GAMP
Getting Started

Authentication

Authentication

All API requests require authentication via an X-Api-Key header.

API Key Authentication

Include your API key in every request:

Code
 
GET /courses HTTP/1.1
Host: api.golfglobe365.com
X-Api-Key: your_api_key_here

JWT Token Authentication (Optional)

For high-frequency integrations, you can exchange your API key for a short-lived JWT token:

1. Get a Token

Code
 
POST /auth/token HTTP/1.1
Host: api.golfglobe365.com
X-Api-Key: your_api_key_here

2. Use the Token

Code
 
GET /courses HTTP/1.1
Host: api.golfglobe365.com
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...

3. Refresh the Token

Code
 
POST /auth/refresh HTTP/1.1
Host: api.golfglobe365.com
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...

4. Revoke a Token

Code
 
POST /auth/logout HTTP/1.1
Host: api.golfglobe365.com
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...

Both X-Api-Key and Bearer token authentication are accepted on all endpoints. You do not need to use JWT tokens — the API key always works.

Obtaining an API Key

API keys are issued after completing the agency onboarding process:

  1. Contact our sales team at [email protected]
  2. Complete the agency registration
  3. Receive your API key via email

API Key Security

  • Never expose your API key in client-side code
  • Do not commit API keys to public repositories
  • Use environment variables to store keys
  • Use different API keys for development and production

If you believe your API key has been compromised, contact [email protected] immediately to have it revoked and replaced.

Environments

EnvironmentBase URL
Productionhttps://api.golfglobe365.com/api/v1
Staginghttps://api-stg.golfglobe365.com/api/v1
Developmenthttps://api-dev.golfglobe365.com/api/v1

API keys are environment-specific. Use the correct key for each environment.

Last modified on
Rate Limiting