Auric API Documentation
v3.0.0Overview
The Auric API provides programmatic access to event tracking, contact management, and data retrieval for your applications.
Base URL
All API requests are made to: https://YOUR-APP-ID.auriccloud.com
API Types
- Public Endpoints: For client-side tracking (CORS-protected)
- API Key Endpoints: For server-to-server integration
Response Format
All responses are in JSON format. Successful responses include version information:
{
"status": "ok",
"version": "v3.0.0",
"unified_naming": true
}Authentication
API Keys
Generate API keys in your Auric Settings panel:
- Go to Settings → API Keys
- Enter a descriptive name
- Click "Create API Key"
- Copy the key immediately (shown only once)
Using API Keys
Include your API key in the Authorization header:
Authorization: Bearer YOUR_API_KEY_HERECORS Authentication
For public endpoints, requests are authenticated by:
- Origin Header: Must match allowed origins
- Referer Header: Fallback authentication method
Configure allowed origins in Settings → Ingest → Allowed Origins.
Public Endpoints
These endpoints are designed for client-side JavaScript and are protected by CORS/origin checking.
POST /i - Public Event Ingestion
Send events from client-side JavaScript or webhooks.
Request Body
{
"event_type": "form_submit",
"occurred_at": "2025-01-01T12:00:00Z",
"email": "user@example.com",
"page_url": "https://example.com/signup",
"referrer": "https://google.com",
"session_id": "abc123",
"querystring": {
"utm_source": "google",
"utm_medium": "cpc",
"lead_source": "Google Ads"
},
"custom": {
"plan": "pro",
"trial_days": 14
}
}Response
{
"status": "ok",
"version": "v3.0.0"
}Field Compatibility
The endpoint accepts both new and legacy field names for backward compatibility:
event_type(new) orevent_name(legacy)occurred_at(new) orevent_time/event_date(legacy)custom(new) ormetadata/data(legacy)
API Key Endpoints
Server-to-server endpoints requiring Bearer token authentication.
POST /api/events - Create Events
Create one or multiple events with API key authentication.
Headers
Authorization: Bearer YOUR_API_KEY
Content-Type: application/jsonSingle Event
{
"email": "user@example.com",
"event_type": "purchase",
"occurred_at": "2025-01-01T12:00:00Z",
"custom": {
"amount": 99.00,
"plan": "premium"
}
}Multiple Events
{
"events": [
{
"email": "user1@example.com",
"event_type": "signup",
"occurred_at": "2025-01-01T12:00:00Z"
},
{
"email": "user2@example.com",
"event_type": "purchase",
"occurred_at": "2025-01-01T13:00:00Z",
"custom": {
"amount": 49.00
}
}
]
}Response
{
"created": 2,
"errors": [],
"version": "v3.0.0"
}POST /api/contacts - Create/Update Contacts
Create or update contact information.
Headers
Authorization: Bearer YOUR_API_KEY
Content-Type: application/jsonSingle Contact
{
"email": "user@example.com",
"name": "John Doe",
"lead_source": "Google Ads",
"custom": {
"company": "Acme Corp",
"role": "CEO"
}
}Multiple Contacts
{
"contacts": [
{
"email": "user1@example.com",
"name": "Jane Smith",
"lead_source": "Referral"
},
{
"email": "user2@example.com",
"name": "Bob Johnson",
"lead_source": "Social Media"
}
]
}Response
{
"upserted": 2,
"errors": [],
"version": "v3.0.0"
}Unified Naming Convention
Auric v3.0.0 uses a unified naming scheme across all endpoints while maintaining backward compatibility.
Field Name Mapping
| Concept | New Name (v3.0.0) | Legacy Names (still supported) |
|---|---|---|
| Event Classification | event_type |
event_name, event, type |
| Event Timestamp | occurred_at |
event_time, event_date, ts, date |
| Custom Data | custom |
metadata, data |
Priority Order
When multiple field names are provided, the API uses this priority order:
- New unified names (highest priority)
- Common legacy names
- Alternative legacy names
- Default values (lowest priority)
Error Handling
The API uses standard HTTP status codes and provides detailed error information.
HTTP Status Codes
- 200 OK: Successful request
- 201 Created: Resource created successfully
- 400 Bad Request: Invalid request data
- 401 Unauthorized: Invalid or missing authentication
- 403 Forbidden: Origin not allowed or access denied
- 404 Not Found: Endpoint or resource not found
- 422 Unprocessable Entity: Valid format but business logic error
- 500 Internal Server Error: Server error
Error Response Format
{
"error": "validation_failed",
"detail": "Event type 'invalid_type' does not exist",
"version": "v3.0.0"
}Bulk Operation Errors
For endpoints that process multiple items, partial success is supported:
{
"created": 2,
"errors": [
{
"index": 1,
"error": "Invalid email format"
}
],
"version": "v3.0.0"
}Rate Limits
API endpoints have the following rate limits to ensure fair usage:
| Endpoint | Rate Limit | Burst Limit |
|---|---|---|
Public /i |
1000/hour per origin | 100/minute |
API /api/events |
5000/hour per API key | 500/minute |
API /api/contacts |
1000/hour per API key | 100/minute |
Rate Limit Headers
Response headers provide rate limit information:
X-RateLimit-Limit: 1000
X-RateLimit-Remaining: 999
X-RateLimit-Reset: 1609459200Code Examples
JavaScript (Client-side)
// Public endpoint - no API key needed
fetch('https://your-app-id.auriccloud.com/i', {
method: 'POST',
headers: {
'Content-Type': 'application/json'
},
body: JSON.stringify({
event_type: 'form_submit',
email: 'user@example.com',
occurred_at: new Date().toISOString(),
custom: {
form_id: 'newsletter-signup',
page: 'homepage'
}
})
})
.then(response => response.json())
.then(data => console.log('Event tracked:', data));Node.js (Server-side)
const axios = require('axios');
async function createEvent(apiKey, eventData) {
try {
const response = await axios.post(
'https://your-app-id.auriccloud.com/api/events',
eventData,
{
headers: {
'Authorization': `Bearer ${apiKey}`,
'Content-Type': 'application/json'
}
}
);
return response.data;
} catch (error) {
console.error('API Error:', error.response?.data || error.message);
throw error;
}
}
// Usage
createEvent('your-api-key', {
email: 'user@example.com',
event_type: 'purchase',
occurred_at: new Date().toISOString(),
custom: {
amount: 99.00,
currency: 'USD'
}
});Python
import requests
import json
from datetime import datetime
def create_event(api_key, event_data):
url = 'https://your-app-id.auriccloud.com/api/events'
headers = {
'Authorization': f'Bearer {api_key}',
'Content-Type': 'application/json'
}
response = requests.post(url, headers=headers, json=event_data)
response.raise_for_status()
return response.json()
# Usage
event_data = {
'email': 'user@example.com',
'event_type': 'signup',
'occurred_at': datetime.utcnow().isoformat() + 'Z',
'custom': {
'plan': 'premium',
'source': 'organic'
}
}
result = create_event('your-api-key', event_data)
print(f"Event created: {result}")PHP
'user@example.com',
'event_type' => 'download',
'occurred_at' => date('c'),
'custom' => [
'file_type' => 'pdf',
'file_name' => 'user-guide.pdf'
]
];
$result = createEvent('your-api-key', $eventData);
?>cURL
# Public endpoint
curl -X POST "https://your-app-id.auriccloud.com/i" \
-H "Content-Type: application/json" \
-H "Origin: https://yourdomain.com" \
-d '{
"event_type": "form_submit",
"email": "user@example.com",
"occurred_at": "2025-01-01T12:00:00Z",
"custom": {"form_id": "contact"}
}'
# API endpoint
curl -X POST "https://your-app-id.auriccloud.com/api/events" \
-H "Authorization: Bearer YOUR_API_KEY" \
-H "Content-Type: application/json" \
-d '{
"email": "user@example.com",
"event_type": "purchase",
"occurred_at": "2025-01-01T12:00:00Z",
"custom": {"amount": 99.00}
}'