Zwely API

Build against checkout, licensing, and sales data.

Use the REST API to keep product metadata synced, read customers and orders, manage promotions, and validate license keys for the software you sell.

Manage API keys

Getting started

Authentication, responses, and safety

Account API keys use bearer authentication and should only be stored on trusted servers. Never embed a zwy_ key in shipped software.

For software activation, create a product-scoped zvl_ validation token from Account API Keys and use the client-safe validation endpoint.

Rate limits are designed for ecommerce integrations that poll responsibly, sync in batches, and retry with backoff. Write requests use a stricter bucket and also count toward the general account API limit.

Account API: 120 requests/minute
Writes: 30 requests/minute
Client license validation: 60 requests/minute
Invalid license attempts: 20 requests/minute

Send Accept: application/json and authenticate with a bearer token on every API request.
Account API and write limits are keyed by the authenticated zwy_ API key.
Client-safe license validation is keyed by the zvl_ validation token and request IP.
Failed authentication is limited to 20 attempts per minute per IP.
Invalid license validation attempts are limited separately to slow brute-force key guessing.
Errors use JSON responses: 401 for missing or invalid tokens, 404 for missing or cross-account resources, 422 for validation errors, and 429 with Retry-After when limited.

Base URL

https://zwely.com/api/v1

Send account API requests with Authorization: Bearer zwy_.... Send client-safe license checks with Authorization: Bearer zvl_....

Product object

Products

Products are the digital goods you sell through Zwely checkout buttons. They hold pricing, product copy, checkout button styling, discount eligibility, and delivery settings. A product can be a single product or a bundle shell that sells multiple existing products together.

Use products to keep your external catalog, storefront, or internal admin tools in sync with Zwely.
The API manages product metadata only. Delivery files, product images, and license key pools stay managed in the Zwely app in v1.
Bundles require at least two existing non-bundle products before creation. Bundle membership, including the list and order of included products, is managed in the Zwely app in v1.
Product type is immutable after creation. If you need a bundle instead of a regular product, create a new bundle product.

GET /api/v1/products

List products

Use this endpoint to mirror your Zwely product catalog into another admin tool, storefront, analytics pipeline, or fulfillment system.

Inputs

page query

Optional

Page number to fetch from the paginated collection. Defaults to 1.

per_page query

Optional

Number of records to return per page. Defaults to 25 and is capped at 100.

Returns: A paginated list of Product objects with price, checkout button settings, delivery status, and license inventory counts.
Auth: Account API key

Response properties

data[] array

Array of Product objects for the requested page.

links object

Pagination URLs for first, last, previous, and next pages.

meta object

Pagination metadata including current_page, per_page, total, and last_page.

data[].id string

Public product UUID. Use this as product_id in path parameters and license validation.

data[].product_type string

Product kind: product for a single product, or bundle for a bundle shell. Product type is chosen at creation and cannot be changed later.

data[].title string

Customer-facing product name.

data[].description string|null

Product description shown in checkout and admin views.

data[].price_cents integer

Current product price in cents.

data[].original_price_cents integer|null

Optional compare-at price in cents.

data[].allow_discount_codes boolean

Whether checkout accepts discount codes for this product.

data[].auto_tags array<string>

Normalized product tags.

data[].requires_license boolean

Whether this product uses license key delivery.

data[].generate_license_keys_when_empty boolean

Whether Zwely can generate license keys when the imported pool is empty.

data[].license_keys.total integer

Total license keys attached to the product.

data[].license_keys.used integer

License keys already assigned by checkout.

data[].license_keys.remaining integer

Available license keys remaining.

data[].delivery.has_file boolean

For products, whether a delivery file is attached in Zwely. For bundles, whether bundle product selection has been completed.

data[].delivery.file_name string|null

Original delivery file name when present.

data[].delivery.bundle_product_count integer|null

For bundles, the number of included products when the count is loaded. Regular products omit this value.

data[].image_url string|null

Public image URL when a product image is attached.

data[].checkout_button.text string|null

Embedded checkout button label.

data[].checkout_button.color string|null

Embedded checkout button hex color.

data[].checkout_button.border_radius integer|null

Embedded checkout button corner radius.

data[].checkout_button.padding integer|null

Embedded checkout button padding value.

data[].checkout_button.font_size integer|null

Embedded checkout button font size.

data[].checkout_button.font_family string|null

Embedded checkout button and modal accent font family.

data[].checkout_button.effect string

Embedded checkout button effect. Values include none, sparkle, rainbow-glow, and shimmer.

data[].created_at string|null

ISO timestamp for creation.

data[].updated_at string|null

ISO timestamp for last update.

GET /products

curl -X GET "https://zwely.com/api/v1/products?page=1&per_page=25" \
  -H "Authorization: Bearer zwy_live_your_account_key" \
  -H "Accept: application/json"

const response = await fetch("https://zwely.com/api/v1/products?page=1&per_page=25", {
  method: "GET",
  headers: {
    Authorization: "Bearer zwy_live_your_account_key",
    Accept: "application/json"
  },
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/products?page=1&per_page=25");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'GET',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zwy_live_your_account_key',
        'Accept: application/json',
    ],
]);

$payload = json_decode(curl_exec($ch), true);

import requests

response = requests.request(
    "GET",
    "https://zwely.com/api/v1/products?page=1&per_page=25",
    headers={
        "Authorization": "Bearer zwy_live_your_account_key",
        "Accept": "application/json"
    },
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": [
        {
            "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
            "product_type": "product",
            "title": "Synth Preset Vault",
            "description": "A downloadable pack of 120 synth presets.",
            "price_cents": 3900,
            "original_price_cents": 4900,
            "allow_discount_codes": true,
            "auto_tags": [
                "synth",
                "presets"
            ],
            "requires_license": true,
            "generate_license_keys_when_empty": false,
            "license_keys": {
                "total": 250,
                "used": 74,
                "remaining": 176
            },
            "delivery": {
                "has_file": true,
                "file_name": "synth-preset-vault.zip"
            },
            "image_url": "https://zwely.com/storage/products/synth-preset-vault.png",
            "checkout_button": {
                "text": "Buy presets",
                "color": "#fd614c",
                "border_radius": 8,
                "padding": 14,
                "font_size": 16,
                "font_family": "Rubik",
                "effect": "shimmer"
            },
            "created_at": "2026-06-07T18:23:41.000000Z",
            "updated_at": "2026-06-07T19:05:12.000000Z"
        },
        {
            "id": "9fd7c63e-7a4d-4e91-95ab-bf1c754a20d2",
            "product_type": "bundle",
            "title": "Producer Starter Bundle",
            "description": "Loop pack and preset vault sold together.",
            "price_cents": 7900,
            "original_price_cents": null,
            "allow_discount_codes": true,
            "auto_tags": [
                "bundle",
                "launch"
            ],
            "requires_license": false,
            "generate_license_keys_when_empty": false,
            "license_keys": {
                "total": 0,
                "used": 0,
                "remaining": 0
            },
            "delivery": {
                "has_file": true,
                "file_name": null,
                "bundle_product_count": 2
            },
            "image_url": null,
            "checkout_button": {
                "text": "Buy presets",
                "color": "#fd614c",
                "border_radius": 8,
                "padding": 14,
                "font_size": 16,
                "font_family": "Rubik",
                "effect": "shimmer"
            },
            "created_at": "2026-06-07T18:23:41.000000Z",
            "updated_at": "2026-06-07T19:05:12.000000Z"
        }
    ],
    "links": {
        "first": "https://zwely.com/api/v1/products?page=1",
        "last": "https://zwely.com/api/v1/products?page=4",
        "prev": null,
        "next": "https://zwely.com/api/v1/products?page=2"
    },
    "meta": {
        "current_page": 1,
        "from": 1,
        "last_page": 4,
        "path": "https://zwely.com/api/v1/products",
        "per_page": 25,
        "to": 25,
        "total": 94
    }
}

GET /api/v1/products/{product_id}

Retrieve a product

Fetch one product when you need fresh pricing, availability, license inventory, or checkout button settings before rendering a custom interface.

Inputs

product_id path

Required

Product UUID returned as id by the API. Internal integer IDs are never exposed.

Returns: A single Product object.
Auth: Account API key

Response properties

data.id string

Public product UUID. Use this as product_id in path parameters and license validation.

data.product_type string

Product kind: product for a single product, or bundle for a bundle shell. Product type is chosen at creation and cannot be changed later.

data.title string

Customer-facing product name.

data.description string|null

Product description shown in checkout and admin views.

data.price_cents integer

Current product price in cents.

data.original_price_cents integer|null

Optional compare-at price in cents.

data.allow_discount_codes boolean

Whether checkout accepts discount codes for this product.

data.auto_tags array<string>

Normalized product tags.

data.requires_license boolean

Whether this product uses license key delivery.

data.generate_license_keys_when_empty boolean

Whether Zwely can generate license keys when the imported pool is empty.

data.license_keys.total integer

Total license keys attached to the product.

data.license_keys.used integer

License keys already assigned by checkout.

data.license_keys.remaining integer

Available license keys remaining.

data.delivery.has_file boolean

For products, whether a delivery file is attached in Zwely. For bundles, whether bundle product selection has been completed.

data.delivery.file_name string|null

Original delivery file name when present.

data.delivery.bundle_product_count integer|null

For bundles, the number of included products when the count is loaded. Regular products omit this value.

data.image_url string|null

Public image URL when a product image is attached.

data.checkout_button.text string|null

Embedded checkout button label.

data.checkout_button.color string|null

Embedded checkout button hex color.

data.checkout_button.border_radius integer|null

Embedded checkout button corner radius.

data.checkout_button.padding integer|null

Embedded checkout button padding value.

data.checkout_button.font_size integer|null

Embedded checkout button font size.

data.checkout_button.font_family string|null

Embedded checkout button and modal accent font family.

data.checkout_button.effect string

Embedded checkout button effect. Values include none, sparkle, rainbow-glow, and shimmer.

data.created_at string|null

ISO timestamp for creation.

data.updated_at string|null

ISO timestamp for last update.

GET /products/{product_id}

curl -X GET "https://zwely.com/api/v1/products/8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1" \
  -H "Authorization: Bearer zwy_live_your_account_key" \
  -H "Accept: application/json"

const response = await fetch("https://zwely.com/api/v1/products/8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1", {
  method: "GET",
  headers: {
    Authorization: "Bearer zwy_live_your_account_key",
    Accept: "application/json"
  },
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/products/8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'GET',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zwy_live_your_account_key',
        'Accept: application/json',
    ],
]);

$payload = json_decode(curl_exec($ch), true);

import requests

response = requests.request(
    "GET",
    "https://zwely.com/api/v1/products/8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
    headers={
        "Authorization": "Bearer zwy_live_your_account_key",
        "Accept": "application/json"
    },
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": {
        "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
        "product_type": "product",
        "title": "Synth Preset Vault",
        "description": "A downloadable pack of 120 synth presets.",
        "price_cents": 3900,
        "original_price_cents": 4900,
        "allow_discount_codes": true,
        "auto_tags": [
            "synth",
            "presets"
        ],
        "requires_license": true,
        "generate_license_keys_when_empty": false,
        "license_keys": {
            "total": 250,
            "used": 74,
            "remaining": 176
        },
        "delivery": {
            "has_file": true,
            "file_name": "synth-preset-vault.zip"
        },
        "image_url": "https://zwely.com/storage/products/synth-preset-vault.png",
        "checkout_button": {
            "text": "Buy presets",
            "color": "#fd614c",
            "border_radius": 8,
            "padding": 14,
            "font_size": 16,
            "font_family": "Rubik",
            "effect": "shimmer"
        },
        "created_at": "2026-06-07T18:23:41.000000Z",
        "updated_at": "2026-06-07T19:05:12.000000Z"
    }
}

PATCH /api/v1/products/{product_id}

Update a product

Patch product metadata when price, positioning, tags, or checkout button copy changes in your external catalog.

product_type cannot be changed with PATCH.

Inputs

product_id path

Required

Product UUID returned as id by the API. Internal integer IDs are never exposed.

title body

Optional

Customer-facing product name. Maximum 120 characters.

product_type body

Optional

Product kind. Use product for a single product or bundle for a bundle shell. Defaults to product. The type cannot be changed after creation; bundle creation requires at least two existing non-bundle products, and bundle membership is managed in the Zwely app in v1.

description body

Optional

Product description shown in checkout and admin views. Maximum 800 characters.

price_cents body

Optional

Current price in cents. Use 3900 for $39.00.

original_price_cents body

Optional

Optional compare-at price in cents. Must be greater than price_cents when set.

allow_discount_codes body

Optional

Boolean that controls whether checkout accepts discount codes for this product.

auto_tags body

Optional

Array of up to 12 product tags. Each tag is normalized, deduplicated, and limited to 32 characters.

button_text body

Optional

Checkout button label. Maximum 40 characters.

button_color body

Optional

Hex color for the embedded checkout button, such as #fd614c.

button_border_radius body

Optional

Button corner radius in pixels. Allowed range is 0 to 32.

button_padding body

Optional

Button vertical padding value. Allowed range is 8 to 26.

button_font_size body

Optional

Button font size in pixels. Allowed range is 13 to 22.

button_font_family body

Optional

Google font family used by the checkout button and checkout modal headline/buttons. Use one of the supported Zwely font options, such as Rubik, Manrope, Sora, Playfair Display, or Space Grotesk.

button_effect body

Optional

Optional checkout button effect. Use none for a clean button, sparkle for twinkling yellow sparkles, rainbow-glow for a pulsing color-spectrum glow, or shimmer for a diagonal light sweep around the embedded button and modal payment button.

Returns: The updated Product object.
Auth: Account API key

Response properties

data.id string

Public product UUID. Use this as product_id in path parameters and license validation.

data.product_type string

Product kind: product for a single product, or bundle for a bundle shell. Product type is chosen at creation and cannot be changed later.

data.title string

Customer-facing product name.

data.description string|null

Product description shown in checkout and admin views.

data.price_cents integer

Current product price in cents.

data.original_price_cents integer|null

Optional compare-at price in cents.

data.allow_discount_codes boolean

Whether checkout accepts discount codes for this product.

data.auto_tags array<string>

Normalized product tags.

data.requires_license boolean

Whether this product uses license key delivery.

data.generate_license_keys_when_empty boolean

Whether Zwely can generate license keys when the imported pool is empty.

data.license_keys.total integer

Total license keys attached to the product.

data.license_keys.used integer

License keys already assigned by checkout.

data.license_keys.remaining integer

Available license keys remaining.

data.delivery.has_file boolean

For products, whether a delivery file is attached in Zwely. For bundles, whether bundle product selection has been completed.

data.delivery.file_name string|null

Original delivery file name when present.

data.delivery.bundle_product_count integer|null

For bundles, the number of included products when the count is loaded. Regular products omit this value.

data.image_url string|null

Public image URL when a product image is attached.

data.checkout_button.text string|null

Embedded checkout button label.

data.checkout_button.color string|null

Embedded checkout button hex color.

data.checkout_button.border_radius integer|null

Embedded checkout button corner radius.

data.checkout_button.padding integer|null

Embedded checkout button padding value.

data.checkout_button.font_size integer|null

Embedded checkout button font size.

data.checkout_button.font_family string|null

Embedded checkout button and modal accent font family.

data.checkout_button.effect string

Embedded checkout button effect. Values include none, sparkle, rainbow-glow, and shimmer.

data.created_at string|null

ISO timestamp for creation.

data.updated_at string|null

ISO timestamp for last update.

message string

Confirmation message for the update action.

PATCH /products/{product_id}

curl -X PATCH "https://zwely.com/api/v1/products/8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1" \
  -H "Authorization: Bearer zwy_live_your_account_key" \
  -H "Accept: application/json" \
  -H "Content-Type: application/json" \
  -d '{
    "price_cents": 2900,
    "original_price_cents": 3900,
    "button_text": "Download now",
    "auto_tags": [
        "synth",
        "sale"
    ]
}'

const response = await fetch("https://zwely.com/api/v1/products/8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1", {
  method: "PATCH",
  headers: {
    Authorization: "Bearer zwy_live_your_account_key",
    Accept: "application/json",
    "Content-Type": "application/json"
  },
  body: JSON.stringify({
    "price_cents": 2900,
    "original_price_cents": 3900,
    "button_text": "Download now",
    "auto_tags": [
        "synth",
        "sale"
    ]
}),
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/products/8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'PATCH',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zwy_live_your_account_key',
        'Accept: application/json',
        'Content-Type: application/json',
    ],
    CURLOPT_POSTFIELDS => '{
    "price_cents": 2900,
    "original_price_cents": 3900,
    "button_text": "Download now",
    "auto_tags": [
        "synth",
        "sale"
    ]
}',
]);

$payload = json_decode(curl_exec($ch), true);

import json
import requests

payload = json.loads("""{
    "price_cents": 2900,
    "original_price_cents": 3900,
    "button_text": "Download now",
    "auto_tags": [
        "synth",
        "sale"
    ]
}""")

response = requests.request(
    "PATCH",
    "https://zwely.com/api/v1/products/8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
    headers={
        "Authorization": "Bearer zwy_live_your_account_key",
        "Accept": "application/json",
        "Content-Type": "application/json"
    },
    json=payload,
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": {
        "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
        "product_type": "product",
        "title": "Synth Preset Vault",
        "description": "A downloadable pack of 120 synth presets.",
        "price_cents": 2900,
        "original_price_cents": 3900,
        "allow_discount_codes": true,
        "auto_tags": [
            "synth",
            "sale"
        ],
        "requires_license": true,
        "generate_license_keys_when_empty": false,
        "license_keys": {
            "total": 250,
            "used": 74,
            "remaining": 176
        },
        "delivery": {
            "has_file": true,
            "file_name": "synth-preset-vault.zip"
        },
        "image_url": "https://zwely.com/storage/products/synth-preset-vault.png",
        "checkout_button": {
            "text": "Download now",
            "color": "#fd614c",
            "border_radius": 8,
            "padding": 14,
            "font_size": 16,
            "font_family": "Rubik",
            "effect": "shimmer"
        },
        "created_at": "2026-06-07T18:23:41.000000Z",
        "updated_at": "2026-06-07T19:05:12.000000Z"
    },
    "message": "Product updated."
}

Customer object

Customers

Customers are buyers or free-claim recipients created by checkout activity. Zwely keeps customer records account-scoped and attaches order history, tags, billing geography, and acquisition page data.

Customer endpoints are read-only so checkout remains the source of truth for buyer creation.
Use them for CRM syncs, support tooling, customer enrichment, and lifecycle reporting.

GET /api/v1/customers

List customers

Pull customers into your CRM, support dashboard, or analytics warehouse. The response includes order counts and lifetime order total when available.

Inputs

page query

Optional

Page number to fetch from the paginated collection. Defaults to 1.

per_page query

Optional

Number of records to return per page. Defaults to 25 and is capped at 100.

Returns: A paginated list of Customer objects.
Auth: Account API key

Response properties

data[] array

Array of Customer objects for the requested page.

links object

Pagination URLs for first, last, previous, and next pages.

meta object

Pagination metadata including current_page, per_page, total, and last_page.

data[].id string

Public customer UUID.

data[].email string

Customer email collected at checkout.

data[].name string|null

Customer name when available.

data[].phone string|null

Customer phone when available.

data[].billing_country string|null

Billing country from checkout or payment details.

data[].billing_region string|null

Billing region or state when available.

data[].tags array<string>

Customer tags stored in Zwely.

data[].first_checkout_page_url string|null

First checkout page URL where Zwely saw this customer.

data[].first_checkout_page_domain string|null

Domain of the first checkout page.

data[].latest_checkout_page_url string|null

Most recent checkout page URL.

data[].latest_checkout_page_domain string|null

Domain of the most recent checkout page.

data[].latest_order_at string|null

ISO timestamp of the customer’s latest order.

data[].orders_count integer

Number of orders attached to this customer.

data[].orders_total_cents integer

Lifetime order total in cents.

data[].created_at string|null

ISO timestamp for creation.

data[].updated_at string|null

ISO timestamp for last update.

GET /customers

curl -X GET "https://zwely.com/api/v1/customers?page=1&per_page=25" \
  -H "Authorization: Bearer zwy_live_your_account_key" \
  -H "Accept: application/json"

const response = await fetch("https://zwely.com/api/v1/customers?page=1&per_page=25", {
  method: "GET",
  headers: {
    Authorization: "Bearer zwy_live_your_account_key",
    Accept: "application/json"
  },
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/customers?page=1&per_page=25");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'GET',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zwy_live_your_account_key',
        'Accept: application/json',
    ],
]);

$payload = json_decode(curl_exec($ch), true);

import requests

response = requests.request(
    "GET",
    "https://zwely.com/api/v1/customers?page=1&per_page=25",
    headers={
        "Authorization": "Bearer zwy_live_your_account_key",
        "Accept": "application/json"
    },
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": [
        {
            "id": "2a4b0186-9b5f-42cf-8a64-89cf5c182e65",
            "email": "buyer@example.com",
            "name": "Avery Buyer",
            "phone": "+15555550199",
            "billing_country": "US",
            "billing_region": "CA",
            "tags": [
                "launch",
                "presets"
            ],
            "first_checkout_page_url": "https://example.com/store/synth-preset-vault",
            "first_checkout_page_domain": "example.com",
            "latest_checkout_page_url": "https://example.com/store/synth-preset-vault",
            "latest_checkout_page_domain": "example.com",
            "latest_order_at": "2026-06-07T19:05:12.000000Z",
            "orders_count": 3,
            "orders_total_cents": 11700,
            "created_at": "2026-06-07T18:23:41.000000Z",
            "updated_at": "2026-06-07T19:05:12.000000Z"
        }
    ],
    "links": {
        "first": "https://zwely.com/api/v1/customers?page=1",
        "last": "https://zwely.com/api/v1/customers?page=4",
        "prev": null,
        "next": "https://zwely.com/api/v1/customers?page=2"
    },
    "meta": {
        "current_page": 1,
        "from": 1,
        "last_page": 4,
        "path": "https://zwely.com/api/v1/customers",
        "per_page": 25,
        "to": 25,
        "total": 94
    }
}

GET /api/v1/customers/{customer_id}

Retrieve a customer

Fetch one customer profile for a support view, entitlement check, or internal buyer detail page.

Inputs

customer_id path

Required

Customer UUID returned as id by the API.

Returns: A single Customer object.
Auth: Account API key

Response properties

data.id string

Public customer UUID.

data.email string

Customer email collected at checkout.

data.name string|null

Customer name when available.

data.phone string|null

Customer phone when available.

data.billing_country string|null

Billing country from checkout or payment details.

data.billing_region string|null

Billing region or state when available.

data.tags array<string>

Customer tags stored in Zwely.

data.first_checkout_page_url string|null

First checkout page URL where Zwely saw this customer.

data.first_checkout_page_domain string|null

Domain of the first checkout page.

data.latest_checkout_page_url string|null

Most recent checkout page URL.

data.latest_checkout_page_domain string|null

Domain of the most recent checkout page.

data.latest_order_at string|null

ISO timestamp of the customer’s latest order.

data.orders_count integer

Number of orders attached to this customer.

data.orders_total_cents integer

Lifetime order total in cents.

data.created_at string|null

ISO timestamp for creation.

data.updated_at string|null

ISO timestamp for last update.

GET /customers/{customer_id}

curl -X GET "https://zwely.com/api/v1/customers/2a4b0186-9b5f-42cf-8a64-89cf5c182e65" \
  -H "Authorization: Bearer zwy_live_your_account_key" \
  -H "Accept: application/json"

const response = await fetch("https://zwely.com/api/v1/customers/2a4b0186-9b5f-42cf-8a64-89cf5c182e65", {
  method: "GET",
  headers: {
    Authorization: "Bearer zwy_live_your_account_key",
    Accept: "application/json"
  },
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/customers/2a4b0186-9b5f-42cf-8a64-89cf5c182e65");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'GET',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zwy_live_your_account_key',
        'Accept: application/json',
    ],
]);

$payload = json_decode(curl_exec($ch), true);

import requests

response = requests.request(
    "GET",
    "https://zwely.com/api/v1/customers/2a4b0186-9b5f-42cf-8a64-89cf5c182e65",
    headers={
        "Authorization": "Bearer zwy_live_your_account_key",
        "Accept": "application/json"
    },
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": {
        "id": "2a4b0186-9b5f-42cf-8a64-89cf5c182e65",
        "email": "buyer@example.com",
        "name": "Avery Buyer",
        "phone": "+15555550199",
        "billing_country": "US",
        "billing_region": "CA",
        "tags": [
            "launch",
            "presets"
        ],
        "first_checkout_page_url": "https://example.com/store/synth-preset-vault",
        "first_checkout_page_domain": "example.com",
        "latest_checkout_page_url": "https://example.com/store/synth-preset-vault",
        "latest_checkout_page_domain": "example.com",
        "latest_order_at": "2026-06-07T19:05:12.000000Z",
        "orders_count": 3,
        "orders_total_cents": 11700,
        "created_at": "2026-06-07T18:23:41.000000Z",
        "updated_at": "2026-06-07T19:05:12.000000Z"
    }
}

Order object

Orders

Orders are completed checkout records. They connect products, customers, optional discounts, optional license keys, gross revenue, refunds, Stripe fees, and Zwely application fees.

Orders are read-only through the API because payment state is controlled by checkout and Stripe.
Use orders for fulfillment audit trails, finance exports, dashboards, and customer support.

GET /api/v1/orders

List orders

Sync recent checkouts into your warehouse, fulfillment monitor, customer support queue, or revenue reporting system.

Inputs

page query

Optional

Page number to fetch from the paginated collection. Defaults to 1.

per_page query

Optional

Number of records to return per page. Defaults to 25 and is capped at 100.

Returns: A paginated list of Order objects with related product, customer, discount, payment, and fee summaries.
Auth: Account API key

Response properties

data[] array

Array of Order objects for the requested page.

links object

Pagination URLs for first, last, previous, and next pages.

meta object

Pagination metadata including current_page, per_page, total, and last_page.

data[].id string

Public order UUID.

data[].status string

Order status, such as completed, refunded, or failed.

data[].customer_email string

Email used at checkout.

data[].subtotal_cents integer|null

Subtotal before discounts in cents.

data[].discount_amount_cents integer|null

Discount amount applied in cents.

data[].amount_cents integer

Final charged amount in cents.

data[].refunded_amount_cents integer

Amount refunded in cents.

data[].currency string

Three-letter lowercase currency code.

data[].fees.stripe_fee_cents integer|null

Total Stripe fee recorded for the order.

data[].fees.stripe_processing_fee_cents integer|null

Stripe processing fee portion when known.

data[].fees.application_fee_cents integer|null

Zwely application fee recorded for the order.

data[].fees.creator_net_cents integer|null

Estimated net amount to the seller.

data[].product.id string|null

Product UUID when loaded.

data[].product.title string|null

Product title when loaded.

data[].customer.id string|null

Customer UUID when loaded.

data[].customer.email string|null

Customer email when loaded.

data[].customer.name string|null

Customer name when available.

data[].discount.id string|null

Discount UUID when a code was applied.

data[].discount.code string|null

Discount code applied at checkout.

data[].license_key.assigned boolean|null

True when a license key was assigned.

data[].license_key.created_at string|null

ISO timestamp for license key creation.

data[].license_key.assigned_at string|null

ISO timestamp when checkout assigned the key.

data[].payment.type string|null

Payment method type reported by Stripe.

data[].payment.wallet string|null

Wallet type when a wallet was used.

data[].payment.card_brand string|null

Card brand when available.

data[].payment.card_funding string|null

Card funding type when available.

data[].payment.card_country string|null

Card issuing country when available.

data[].payment.card_last4 string|null

Last four digits of the card when available.

data[].payment.receipt_url string|null

Stripe receipt URL when available.

data[].completed_at string|null

ISO timestamp when checkout completed.

data[].refunded_at string|null

ISO timestamp when the order was refunded.

data[].created_at string|null

ISO timestamp for creation.

data[].updated_at string|null

ISO timestamp for last update.

GET /orders

curl -X GET "https://zwely.com/api/v1/orders?page=1&per_page=25" \
  -H "Authorization: Bearer zwy_live_your_account_key" \
  -H "Accept: application/json"

const response = await fetch("https://zwely.com/api/v1/orders?page=1&per_page=25", {
  method: "GET",
  headers: {
    Authorization: "Bearer zwy_live_your_account_key",
    Accept: "application/json"
  },
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/orders?page=1&per_page=25");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'GET',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zwy_live_your_account_key',
        'Accept: application/json',
    ],
]);

$payload = json_decode(curl_exec($ch), true);

import requests

response = requests.request(
    "GET",
    "https://zwely.com/api/v1/orders?page=1&per_page=25",
    headers={
        "Authorization": "Bearer zwy_live_your_account_key",
        "Accept": "application/json"
    },
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": [
        {
            "id": "7418ad68-ec89-4a8e-968f-1b097d6908df",
            "status": "completed",
            "customer_email": "buyer@example.com",
            "subtotal_cents": 3900,
            "discount_amount_cents": 975,
            "amount_cents": 2925,
            "refunded_amount_cents": 0,
            "currency": "usd",
            "fees": {
                "stripe_fee_cents": 115,
                "stripe_processing_fee_cents": 115,
                "application_fee_cents": 146,
                "creator_net_cents": 2664
            },
            "product": {
                "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
                "title": "Synth Preset Vault"
            },
            "customer": {
                "id": "2a4b0186-9b5f-42cf-8a64-89cf5c182e65",
                "email": "buyer@example.com",
                "name": "Avery Buyer"
            },
            "discount": {
                "id": "417f5af7-9f32-4df0-84fd-7566f623cb24",
                "code": "LAUNCH25"
            },
            "license_key": {
                "assigned": true,
                "created_at": "2026-06-07T18:23:41.000000Z",
                "assigned_at": "2026-06-07T19:05:12.000000Z"
            },
            "payment": {
                "type": "card",
                "wallet": null,
                "card_brand": "visa",
                "card_funding": "credit",
                "card_country": "US",
                "card_last4": "4242",
                "receipt_url": "https://pay.stripe.com/receipts/example"
            },
            "completed_at": "2026-06-07T19:05:12.000000Z",
            "refunded_at": null,
            "created_at": "2026-06-07T18:23:41.000000Z",
            "updated_at": "2026-06-07T19:05:12.000000Z"
        }
    ],
    "links": {
        "first": "https://zwely.com/api/v1/orders?page=1",
        "last": "https://zwely.com/api/v1/orders?page=4",
        "prev": null,
        "next": "https://zwely.com/api/v1/orders?page=2"
    },
    "meta": {
        "current_page": 1,
        "from": 1,
        "last_page": 4,
        "path": "https://zwely.com/api/v1/orders",
        "per_page": 25,
        "to": 25,
        "total": 94
    }
}

GET /api/v1/orders/{order_id}

Retrieve an order

Look up a specific order by UUID for support, refund investigation, license assignment inspection, or reconciliation.

Inputs

order_id path

Required

Order UUID returned as id by the API.

Returns: A single Order object.
Auth: Account API key

Response properties

data.id string

Public order UUID.

data.status string

Order status, such as completed, refunded, or failed.

data.customer_email string

Email used at checkout.

data.subtotal_cents integer|null

Subtotal before discounts in cents.

data.discount_amount_cents integer|null

Discount amount applied in cents.

data.amount_cents integer

Final charged amount in cents.

data.refunded_amount_cents integer

Amount refunded in cents.

data.currency string

Three-letter lowercase currency code.

data.fees.stripe_fee_cents integer|null

Total Stripe fee recorded for the order.

data.fees.stripe_processing_fee_cents integer|null

Stripe processing fee portion when known.

data.fees.application_fee_cents integer|null

Zwely application fee recorded for the order.

data.fees.creator_net_cents integer|null

Estimated net amount to the seller.

data.product.id string|null

Product UUID when loaded.

data.product.title string|null

Product title when loaded.

data.customer.id string|null

Customer UUID when loaded.

data.customer.email string|null

Customer email when loaded.

data.customer.name string|null

Customer name when available.

data.discount.id string|null

Discount UUID when a code was applied.

data.discount.code string|null

Discount code applied at checkout.

data.license_key.assigned boolean|null

True when a license key was assigned.

data.license_key.created_at string|null

ISO timestamp for license key creation.

data.license_key.assigned_at string|null

ISO timestamp when checkout assigned the key.

data.payment.type string|null

Payment method type reported by Stripe.

data.payment.wallet string|null

Wallet type when a wallet was used.

data.payment.card_brand string|null

Card brand when available.

data.payment.card_funding string|null

Card funding type when available.

data.payment.card_country string|null

Card issuing country when available.

data.payment.card_last4 string|null

Last four digits of the card when available.

data.payment.receipt_url string|null

Stripe receipt URL when available.

data.completed_at string|null

ISO timestamp when checkout completed.

data.refunded_at string|null

ISO timestamp when the order was refunded.

data.created_at string|null

ISO timestamp for creation.

data.updated_at string|null

ISO timestamp for last update.

GET /orders/{order_id}

curl -X GET "https://zwely.com/api/v1/orders/7418ad68-ec89-4a8e-968f-1b097d6908df" \
  -H "Authorization: Bearer zwy_live_your_account_key" \
  -H "Accept: application/json"

const response = await fetch("https://zwely.com/api/v1/orders/7418ad68-ec89-4a8e-968f-1b097d6908df", {
  method: "GET",
  headers: {
    Authorization: "Bearer zwy_live_your_account_key",
    Accept: "application/json"
  },
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/orders/7418ad68-ec89-4a8e-968f-1b097d6908df");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'GET',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zwy_live_your_account_key',
        'Accept: application/json',
    ],
]);

$payload = json_decode(curl_exec($ch), true);

import requests

response = requests.request(
    "GET",
    "https://zwely.com/api/v1/orders/7418ad68-ec89-4a8e-968f-1b097d6908df",
    headers={
        "Authorization": "Bearer zwy_live_your_account_key",
        "Accept": "application/json"
    },
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": {
        "id": "7418ad68-ec89-4a8e-968f-1b097d6908df",
        "status": "completed",
        "customer_email": "buyer@example.com",
        "subtotal_cents": 3900,
        "discount_amount_cents": 975,
        "amount_cents": 2925,
        "refunded_amount_cents": 0,
        "currency": "usd",
        "fees": {
            "stripe_fee_cents": 115,
            "stripe_processing_fee_cents": 115,
            "application_fee_cents": 146,
            "creator_net_cents": 2664
        },
        "product": {
            "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
            "title": "Synth Preset Vault"
        },
        "customer": {
            "id": "2a4b0186-9b5f-42cf-8a64-89cf5c182e65",
            "email": "buyer@example.com",
            "name": "Avery Buyer"
        },
        "discount": {
            "id": "417f5af7-9f32-4df0-84fd-7566f623cb24",
            "code": "LAUNCH25"
        },
        "license_key": {
            "assigned": true,
            "created_at": "2026-06-07T18:23:41.000000Z",
            "assigned_at": "2026-06-07T19:05:12.000000Z"
        },
        "payment": {
            "type": "card",
            "wallet": null,
            "card_brand": "visa",
            "card_funding": "credit",
            "card_country": "US",
            "card_last4": "4242",
            "receipt_url": "https://pay.stripe.com/receipts/example"
        },
        "completed_at": "2026-06-07T19:05:12.000000Z",
        "refunded_at": null,
        "created_at": "2026-06-07T18:23:41.000000Z",
        "updated_at": "2026-06-07T19:05:12.000000Z"
    }
}

Discount code object

Discounts

Discount codes let you offer percentage or fixed-amount promotions in checkout. Codes can be globally usable, limited by total redemptions, restricted to a customer email, or restricted to one product.

Use discount endpoints to coordinate launch campaigns, affiliate codes, support coupons, and limited promotions from another system.
Product restrictions use product UUIDs, not internal database IDs.

GET /api/v1/discounts

List discounts

Audit active campaigns, sync coupons to support tools, or report on remaining redemption capacity.

Inputs

page query

Optional

Page number to fetch from the paginated collection. Defaults to 1.

per_page query

Optional

Number of records to return per page. Defaults to 25 and is capped at 100.

Returns: A paginated list of Discount Code objects.
Auth: Account API key

Response properties

data[] array

Array of Discount Code objects for the requested page.

links object

Pagination URLs for first, last, previous, and next pages.

meta object

Pagination metadata including current_page, per_page, total, and last_page.

data[].id string

Public discount UUID.

data[].code string

Normalized uppercase checkout code.

data[].discount_type string

Discount mode: percent or amount.

data[].percent_off integer|null

Percentage off when discount_type is percent.

data[].amount_off_cents integer|null

Fixed amount off in cents when discount_type is amount.

data[].max_redemptions integer|null

Maximum total uses, or null for unlimited.

data[].max_redemptions_per_customer integer|null

Maximum uses per customer email, or null for unlimited.

data[].redemptions_count integer

Number of completed redemptions.

data[].remaining_redemptions integer|null

Remaining uses based on max_redemptions.

data[].expires_at string|null

ISO expiration timestamp when set.

data[].is_active boolean

Whether the code can currently be redeemed.

data[].restricted_product.id string|null

Restricted product UUID when the code is product-scoped.

data[].restricted_product.title string|null

Restricted product title when loaded.

data[].restricted_customer_email string|null

Email restriction when set.

data[].created_at string|null

ISO timestamp for creation.

data[].updated_at string|null

ISO timestamp for last update.

GET /discounts

curl -X GET "https://zwely.com/api/v1/discounts?page=1&per_page=25" \
  -H "Authorization: Bearer zwy_live_your_account_key" \
  -H "Accept: application/json"

const response = await fetch("https://zwely.com/api/v1/discounts?page=1&per_page=25", {
  method: "GET",
  headers: {
    Authorization: "Bearer zwy_live_your_account_key",
    Accept: "application/json"
  },
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/discounts?page=1&per_page=25");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'GET',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zwy_live_your_account_key',
        'Accept: application/json',
    ],
]);

$payload = json_decode(curl_exec($ch), true);

import requests

response = requests.request(
    "GET",
    "https://zwely.com/api/v1/discounts?page=1&per_page=25",
    headers={
        "Authorization": "Bearer zwy_live_your_account_key",
        "Accept": "application/json"
    },
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": [
        {
            "id": "417f5af7-9f32-4df0-84fd-7566f623cb24",
            "code": "LAUNCH25",
            "discount_type": "percent",
            "percent_off": 25,
            "amount_off_cents": null,
            "max_redemptions": 500,
            "max_redemptions_per_customer": 1,
            "redemptions_count": 42,
            "remaining_redemptions": 458,
            "expires_at": "2026-07-01T00:00:00.000000Z",
            "is_active": true,
            "restricted_product": {
                "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
                "title": "Synth Preset Vault"
            },
            "restricted_customer_email": null,
            "created_at": "2026-06-07T18:23:41.000000Z",
            "updated_at": "2026-06-07T19:05:12.000000Z"
        }
    ],
    "links": {
        "first": "https://zwely.com/api/v1/discounts?page=1",
        "last": "https://zwely.com/api/v1/discounts?page=4",
        "prev": null,
        "next": "https://zwely.com/api/v1/discounts?page=2"
    },
    "meta": {
        "current_page": 1,
        "from": 1,
        "last_page": 4,
        "path": "https://zwely.com/api/v1/discounts",
        "per_page": 25,
        "to": 25,
        "total": 94
    }
}

GET /api/v1/discounts/{discount_id}

Retrieve a discount

Fetch one discount when you need to show campaign details, redemption counts, remaining usage, or product restrictions in another tool.

Inputs

discount_id path

Required

Discount UUID returned as id by the API.

Returns: A single Discount Code object.
Auth: Account API key

Response properties

data.id string

Public discount UUID.

data.code string

Normalized uppercase checkout code.

data.discount_type string

Discount mode: percent or amount.

data.percent_off integer|null

Percentage off when discount_type is percent.

data.amount_off_cents integer|null

Fixed amount off in cents when discount_type is amount.

data.max_redemptions integer|null

Maximum total uses, or null for unlimited.

data.max_redemptions_per_customer integer|null

Maximum uses per customer email, or null for unlimited.

data.redemptions_count integer

Number of completed redemptions.

data.remaining_redemptions integer|null

Remaining uses based on max_redemptions.

data.expires_at string|null

ISO expiration timestamp when set.

data.is_active boolean

Whether the code can currently be redeemed.

data.restricted_product.id string|null

Restricted product UUID when the code is product-scoped.

data.restricted_product.title string|null

Restricted product title when loaded.

data.restricted_customer_email string|null

Email restriction when set.

data.created_at string|null

ISO timestamp for creation.

data.updated_at string|null

ISO timestamp for last update.

GET /discounts/{discount_id}

curl -X GET "https://zwely.com/api/v1/discounts/417f5af7-9f32-4df0-84fd-7566f623cb24" \
  -H "Authorization: Bearer zwy_live_your_account_key" \
  -H "Accept: application/json"

const response = await fetch("https://zwely.com/api/v1/discounts/417f5af7-9f32-4df0-84fd-7566f623cb24", {
  method: "GET",
  headers: {
    Authorization: "Bearer zwy_live_your_account_key",
    Accept: "application/json"
  },
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/discounts/417f5af7-9f32-4df0-84fd-7566f623cb24");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'GET',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zwy_live_your_account_key',
        'Accept: application/json',
    ],
]);

$payload = json_decode(curl_exec($ch), true);

import requests

response = requests.request(
    "GET",
    "https://zwely.com/api/v1/discounts/417f5af7-9f32-4df0-84fd-7566f623cb24",
    headers={
        "Authorization": "Bearer zwy_live_your_account_key",
        "Accept": "application/json"
    },
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": {
        "id": "417f5af7-9f32-4df0-84fd-7566f623cb24",
        "code": "LAUNCH25",
        "discount_type": "percent",
        "percent_off": 25,
        "amount_off_cents": null,
        "max_redemptions": 500,
        "max_redemptions_per_customer": 1,
        "redemptions_count": 42,
        "remaining_redemptions": 458,
        "expires_at": "2026-07-01T00:00:00.000000Z",
        "is_active": true,
        "restricted_product": {
            "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
            "title": "Synth Preset Vault"
        },
        "restricted_customer_email": null,
        "created_at": "2026-06-07T18:23:41.000000Z",
        "updated_at": "2026-06-07T19:05:12.000000Z"
    }
}

PATCH /api/v1/discounts/{discount_id}

Update a discount

Pause a campaign, change redemption limits, extend an expiration date, or move a code to a different product restriction.

Inputs

discount_id path

Required

Discount UUID returned as id by the API.

code body

Optional

Discount code customers enter at checkout. Zwely normalizes it to uppercase letters and numbers.

discount_type body

Optional

Discount mode. Use percent for percentage discounts or amount for fixed-cent discounts.

percent_off body

Conditional

Percentage off from 1 to 100. Required when switching a code to percent.

amount_off_cents body

Conditional

Fixed discount amount in cents. Required when switching a code to amount.

max_redemptions body

Optional

Maximum total uses for the code. Leave null for no account-level cap.

max_redemptions_per_customer body

Optional

Maximum uses per customer email. Leave null for no per-customer cap.

expires_at body

Optional

Future expiration timestamp. Send null to clear the expiration on update.

is_active body

Optional

Boolean switch for whether the code can currently be used at checkout.

restricted_product_id body

Optional

Optional product UUID that limits the code to one product. Send null to remove the restriction.

restricted_customer_email body

Optional

Optional customer email that limits redemption to one buyer. Zwely normalizes email casing.

Returns: The updated Discount Code object.
Auth: Account API key

Response properties

data.id string

Public discount UUID.

data.code string

Normalized uppercase checkout code.

data.discount_type string

Discount mode: percent or amount.

data.percent_off integer|null

Percentage off when discount_type is percent.

data.amount_off_cents integer|null

Fixed amount off in cents when discount_type is amount.

data.max_redemptions integer|null

Maximum total uses, or null for unlimited.

data.max_redemptions_per_customer integer|null

Maximum uses per customer email, or null for unlimited.

data.redemptions_count integer

Number of completed redemptions.

data.remaining_redemptions integer|null

Remaining uses based on max_redemptions.

data.expires_at string|null

ISO expiration timestamp when set.

data.is_active boolean

Whether the code can currently be redeemed.

data.restricted_product.id string|null

Restricted product UUID when the code is product-scoped.

data.restricted_product.title string|null

Restricted product title when loaded.

data.restricted_customer_email string|null

Email restriction when set.

data.created_at string|null

ISO timestamp for creation.

data.updated_at string|null

ISO timestamp for last update.

message string

Confirmation message for the update action.

PATCH /discounts/{discount_id}

curl -X PATCH "https://zwely.com/api/v1/discounts/417f5af7-9f32-4df0-84fd-7566f623cb24" \
  -H "Authorization: Bearer zwy_live_your_account_key" \
  -H "Accept: application/json" \
  -H "Content-Type: application/json" \
  -d '{
    "is_active": false,
    "max_redemptions": 750
}'

const response = await fetch("https://zwely.com/api/v1/discounts/417f5af7-9f32-4df0-84fd-7566f623cb24", {
  method: "PATCH",
  headers: {
    Authorization: "Bearer zwy_live_your_account_key",
    Accept: "application/json",
    "Content-Type": "application/json"
  },
  body: JSON.stringify({
    "is_active": false,
    "max_redemptions": 750
}),
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/discounts/417f5af7-9f32-4df0-84fd-7566f623cb24");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'PATCH',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zwy_live_your_account_key',
        'Accept: application/json',
        'Content-Type: application/json',
    ],
    CURLOPT_POSTFIELDS => '{
    "is_active": false,
    "max_redemptions": 750
}',
]);

$payload = json_decode(curl_exec($ch), true);

import json
import requests

payload = json.loads("""{
    "is_active": false,
    "max_redemptions": 750
}""")

response = requests.request(
    "PATCH",
    "https://zwely.com/api/v1/discounts/417f5af7-9f32-4df0-84fd-7566f623cb24",
    headers={
        "Authorization": "Bearer zwy_live_your_account_key",
        "Accept": "application/json",
        "Content-Type": "application/json"
    },
    json=payload,
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": {
        "id": "417f5af7-9f32-4df0-84fd-7566f623cb24",
        "code": "LAUNCH25",
        "discount_type": "percent",
        "percent_off": 25,
        "amount_off_cents": null,
        "max_redemptions": 750,
        "max_redemptions_per_customer": 1,
        "redemptions_count": 42,
        "remaining_redemptions": 708,
        "expires_at": "2026-07-01T00:00:00.000000Z",
        "is_active": false,
        "restricted_product": {
            "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
            "title": "Synth Preset Vault"
        },
        "restricted_customer_email": null,
        "created_at": "2026-06-07T18:23:41.000000Z",
        "updated_at": "2026-06-07T19:05:12.000000Z"
    },
    "message": "Discount updated."
}

License validation result

License validation

License validation checks whether a license key belongs to a product and was assigned by a real checkout. Use it to unlock paid software, plugins, downloads, or subscription-adjacent product access.

Server-side validation uses an account API key and can return customer and order details for your backend.
Client-safe validation uses a product-scoped validation token and omits customer email, order financials, and other sensitive data.
A key is valid only when it belongs to the product, has been assigned by checkout, has a customer and order, and the order is not failed or refunded.
Status values are valid, not_found, unassigned, email_mismatch, refunded, and inactive_order.

POST /api/v1/license-validations

Validate a license server-side

Call this from your own server when you need the richest answer: whether the key is valid, which buyer owns it, and which order assigned it.

Inputs

product_id body

Required

Product UUID the license key must belong to.

license_key body

Required

License key string issued by Zwely after checkout assignment.

customer_email body

Optional

Optional buyer email check. When provided, Zwely returns email_mismatch if the key belongs to a different email.

Returns: A rich License Validation Result with product, license, customer, and order details.
Auth: Account API key

Response properties

data.valid boolean

True only when the key belongs to the product, is assigned, and the order is active.

data.status string

Validation status: valid, not_found, unassigned, email_mismatch, refunded, or inactive_order.

data.product.id string|null

Product UUID when the key can be associated with the token-scoped product.

data.product.title string|null

Product title when available.

data.license.created_at string|null

ISO timestamp when the license key was created.

data.license.assigned_at string|null

ISO timestamp when checkout assigned the key.

data.license.key string|null

Raw license key. Returned only by the server-side endpoint.

data.customer.id string|null

Customer UUID when a customer is attached to the key.

data.customer.email string|null

Customer email. Returned only by the server-side endpoint.

data.customer.name string|null

Customer name when available.

data.order.id string|null

Order UUID when a checkout assigned the key.

data.order.status string|null

Order status used for validity checks.

data.order.amount_cents integer|null

Order amount in cents. Returned only server-side.

data.order.currency string|null

Order currency.

data.order.completed_at string|null

ISO timestamp when the order completed.

POST /license-validations

curl -X POST "https://zwely.com/api/v1/license-validations" \
  -H "Authorization: Bearer zwy_live_your_account_key" \
  -H "Accept: application/json" \
  -H "Content-Type: application/json" \
  -d '{
    "product_id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
    "license_key": "STUDIO-VALID-KEY",
    "customer_email": "buyer@example.com"
}'

const response = await fetch("https://zwely.com/api/v1/license-validations", {
  method: "POST",
  headers: {
    Authorization: "Bearer zwy_live_your_account_key",
    Accept: "application/json",
    "Content-Type": "application/json"
  },
  body: JSON.stringify({
    "product_id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
    "license_key": "STUDIO-VALID-KEY",
    "customer_email": "buyer@example.com"
}),
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/license-validations");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'POST',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zwy_live_your_account_key',
        'Accept: application/json',
        'Content-Type: application/json',
    ],
    CURLOPT_POSTFIELDS => '{
    "product_id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
    "license_key": "STUDIO-VALID-KEY",
    "customer_email": "buyer@example.com"
}',
]);

$payload = json_decode(curl_exec($ch), true);

import json
import requests

payload = json.loads("""{
    "product_id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
    "license_key": "STUDIO-VALID-KEY",
    "customer_email": "buyer@example.com"
}""")

response = requests.request(
    "POST",
    "https://zwely.com/api/v1/license-validations",
    headers={
        "Authorization": "Bearer zwy_live_your_account_key",
        "Accept": "application/json",
        "Content-Type": "application/json"
    },
    json=payload,
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": {
        "valid": true,
        "status": "valid",
        "product": {
            "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
            "title": "Synth Preset Vault"
        },
        "license": {
            "key": "STUDIO-VALID-KEY",
            "created_at": "2026-06-07T18:23:41.000000Z",
            "assigned_at": "2026-06-07T19:05:12.000000Z"
        },
        "customer": {
            "id": "2a4b0186-9b5f-42cf-8a64-89cf5c182e65",
            "email": "buyer@example.com",
            "name": "Avery Buyer"
        },
        "order": {
            "id": "7418ad68-ec89-4a8e-968f-1b097d6908df",
            "status": "completed",
            "amount_cents": 2925,
            "currency": "usd",
            "completed_at": "2026-06-07T19:05:12.000000Z"
        }
    }
}

POST /api/v1/public/license-validations

Validate a license from software

Call this from distributed software with a product-scoped validation token. The response is intentionally minimal so the app can unlock access without exposing private buyer or order data.

Inputs

license_key body

Required

License key string issued by Zwely after checkout assignment.

product_id body

Optional

Optional product UUID. If sent, it must match the product bound to the validation token.

customer_email body

Optional

Optional buyer email check. The public response still omits buyer PII.

Returns: A client-safe License Validation Result with valid status, product identity, and license timestamps.
Auth: Product-scoped validation token

Response properties

data.valid boolean

True only when the key belongs to the product, is assigned, and the order is active.

data.status string

Validation status: valid, not_found, unassigned, email_mismatch, refunded, or inactive_order.

data.product.id string|null

Product UUID when the key can be associated with the token-scoped product.

data.product.title string|null

Product title when available.

data.license.created_at string|null

ISO timestamp when the license key was created.

data.license.assigned_at string|null

ISO timestamp when checkout assigned the key.

POST /public/license-validations

curl -X POST "https://zwely.com/api/v1/public/license-validations" \
  -H "Authorization: Bearer zvl_live_your_product_token" \
  -H "Accept: application/json" \
  -H "Content-Type: application/json" \
  -d '{
    "license_key": "STUDIO-VALID-KEY",
    "customer_email": "buyer@example.com"
}'

const response = await fetch("https://zwely.com/api/v1/public/license-validations", {
  method: "POST",
  headers: {
    Authorization: "Bearer zvl_live_your_product_token",
    Accept: "application/json",
    "Content-Type": "application/json"
  },
  body: JSON.stringify({
    "license_key": "STUDIO-VALID-KEY",
    "customer_email": "buyer@example.com"
}),
});

const payload = await response.json();

$ch = curl_init("https://zwely.com/api/v1/public/license-validations");

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_CUSTOMREQUEST => 'POST',
    CURLOPT_HTTPHEADER => [
        'Authorization: Bearer zvl_live_your_product_token',
        'Accept: application/json',
        'Content-Type: application/json',
    ],
    CURLOPT_POSTFIELDS => '{
    "license_key": "STUDIO-VALID-KEY",
    "customer_email": "buyer@example.com"
}',
]);

$payload = json_decode(curl_exec($ch), true);

import json
import requests

payload = json.loads("""{
    "license_key": "STUDIO-VALID-KEY",
    "customer_email": "buyer@example.com"
}""")

response = requests.request(
    "POST",
    "https://zwely.com/api/v1/public/license-validations",
    headers={
        "Authorization": "Bearer zvl_live_your_product_token",
        "Accept": "application/json",
        "Content-Type": "application/json"
    },
    json=payload,
)
response.raise_for_status()
payload = response.json()

Example response 200 OK

{
    "data": {
        "valid": true,
        "status": "valid",
        "product": {
            "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
            "title": "Synth Preset Vault"
        },
        "license": {
            "created_at": "2026-06-07T18:23:41.000000Z",
            "assigned_at": "2026-06-07T19:05:12.000000Z"
        }
    }
}

Webhooks

Receive order events in your own app

Webhook endpoints let your backend react when a Zwely checkout creates an order. Zwely sends order.created for both free and paid orders, so you can update a CRM, grant access in another system, notify a team, or start your own onboarding flow without polling the Orders API.

Register webhook URLs from Account API Keys. Zwely posts JSON to each active endpoint after an order is created.
Each delivery includes Zwely-Event, Zwely-Delivery, and Zwely-Signature headers.
Bundle orders include delivery_items so your backend can see each included product, download availability, filename, and assigned license key.
The signature uses your endpoint signing secret. Build the signed payload as timestamp + "." + raw_request_body and verify the v1 HMAC SHA-256 value.
Return a 2xx response quickly. If your app needs more time, store the payload and process it asynchronously.

POST Your webhook URL

Zwely-Event: order.created
Zwely-Delivery: evt_f95d7b4e-2e65-4469-98bc-6f11b6f8a33d
Zwely-Signature: t=1781023331,v1=calculated_hmac_sha256

Example payload order.created

{
    "id": "evt_f95d7b4e-2e65-4469-98bc-6f11b6f8a33d",
    "type": "order.created",
    "created": "2026-06-09T16:42:11+00:00",
    "data": {
        "object": {
            "id": "7418ad68-ec89-4a8e-968f-1b097d6908df",
            "status": "completed",
            "currency": "usd",
            "amount_cents": 1900,
            "subtotal_cents": 1900,
            "discount_amount_cents": 0,
            "refunded_amount_cents": 0,
            "completed_at": "2026-06-09T16:42:11+00:00",
            "created_at": "2026-06-09T16:42:10+00:00",
            "product": {
                "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
                "title": "808 Texture Pack",
                "price_cents": 1900,
                "requires_license": true
            },
            "customer": {
                "id": "2a4b0186-9b5f-42cf-8a64-89cf5c182e65",
                "email": "buyer@example.com",
                "name": "Maya Chen"
            },
            "discount": null,
            "license_key": {
                "assigned": true,
                "key": "STUDIO-VALID-KEY",
                "created_at": "2026-06-08T18:23:41+00:00",
                "assigned_at": "2026-06-09T16:42:11+00:00"
            },
            "delivery_items": [
                {
                    "id": "7e0f580b-d49c-42c1-a1f5-b46906d16a72",
                    "product": {
                        "id": "8f5d0c7c-6c86-4b2f-9e55-2c0e8d98c3a1",
                        "title": "808 Texture Pack"
                    },
                    "download": {
                        "available": true,
                        "filename": "808-texture-pack.zip"
                    },
                    "license_key": {
                        "assigned": true,
                        "key": "STUDIO-VALID-KEY",
                        "assigned_at": "2026-06-09T16:42:11+00:00"
                    }
                }
            ],
            "payment": {
                "type": "card",
                "wallet": null,
                "card_brand": "visa",
                "card_funding": "credit",
                "card_country": "US",
                "card_last4": "4242"
            },
            "checkout": {
                "page_url": "https://creator.example/downloads/texture-pack",
                "page_domain": "creator.example",
                "referrer": null,
                "utm_source": "newsletter",
                "utm_medium": "email",
                "utm_campaign": "launch",
                "utm_content": null,
                "utm_term": null
            }
        }
    }
}