Fetch the complete documentation index at: https://eulabel.eu/docs/llms.txt Use this file to discover all available pages before exploring further. Full content: https://eulabel.eu/docs/llms-full.txt Append .md to any page URL for markdown, or send Accept: text/markdown.
Get Started

Authentication

How to authenticate with the EUlabel API using API keys or session-based authentication.

The EUlabel API supports two authentication methods depending on your use case.

At a glance

  • Server-to-server integrations: use an API key (Bearer token).
  • Dashboard usage: use a session cookie (WorkOS-backed).
  • Rule of thumb: never put secrets in the browser.

API key (Bearer token)

CI/CD, PIM sync, backend services — fastest and simplest for integrations

Session cookie

For logged-in dashboard usage — not recommended for service integrations

Never expose API keys in client-side code, public repositories, or browser JavaScript. API keys grant full access to your organization's data and should only be used in server-side code.

API Key (Bearer Token)

For machine-to-machine integrations, scripts, and CI pipelines. Include your API key in the Authorization header:

export EULABEL_API_KEY="sk_test_..."

curl https://api.eulabel.eu/v1/products \
  -H "Authorization: Bearer $EULABEL_API_KEY"
const EULABEL_API_KEY = process.env.EULABEL_API_KEY;

const response = await fetch('https://api.eulabel.eu/v1/products', {
  headers: { 'Authorization': `Bearer ${EULABEL_API_KEY}` },
});
import requests

EULABEL_API_KEY = "sk_test_..."

response = requests.get(
    "https://api.eulabel.eu/v1/products",
    headers={"Authorization": f"Bearer {EULABEL_API_KEY}"},
)

API keys are scoped to a specific organization and can be restricted to specific permissions.

PropertyDescription
Formatsk_live_ prefix (production) or sk_test_ prefix (sandbox)
ScopePer organization, per environment
Use casesPIM webhook delivery, bulk data sync, CI/CD pipelines

For browser-based access through the EUlabel Dashboard:

PropertyDescription
ProviderWorkOS (SAML, OIDC, Google, Microsoft)
SessionServer-side with refresh token rotation
Use casesDashboard access, API key management

Permissions (Scopes)

Every API key is assigned one or more permission scopes that control what resources it can access.

ScopeGrants
products:readList and get products, passports, QR codes
products:writeCreate products
passports:readRead passport data
passports:writeCreate and publish passports
suppliers:readList suppliers
suppliers:writeCreate suppliers
analytics:readView scan analytics
api_keys:manageManage API keys (session only)

Error responses

StatusMeaning
401Missing or invalid API key
403Valid API key but insufficient permissions for this endpoint

Next steps

API Keys

Create, rotate, and revoke keys safely

Sandbox

Test with pre-populated data using sk_test_...

Quickstart

Create a product, publish a passport, and download a QR code

Sandbox Environment

Test the EUlabel API with pre-populated sample data in the sandbox.

API Keys

Create, rotate, and revoke API keys for the EUlabel API.

On this page

At a glanceAPI Key (Bearer Token)Session CookiePermissions (Scopes)Error responsesNext steps