Skip to content
SmartLobby Logo SmartLobby Logo SmartLobby Documentation

REST API access and keys

The API page in the admin dashboard lets you manage API keys for the SmartLobby public REST API, so your own systems can read visit data (for integrations, reporting, or access control) subject to your subscription and permissions.

Availability

If the page shows that the feature is disabled, your current plan or account settings may not include API access. Contact support if you need it enabled.

Keys

  • Use Generate API key to create credentials when you have permission to edit API settings.
  • The dashboard shows your API key and API secret. Treat these like passwords. Anyone with them can call the API as your integration—store them securely and rotate the key if it may have been exposed.

Example: listing visits

The dashboard displays a sample curl command for your location, including headers:

  • X-ABB-API-KEY — your API key
  • Authorization: Bearer — your API secret

Query parameters typically include a limit, from and to time range, and filters such as whether visitors are still signed in. Exact paths and hostnames are shown in the admin UI for your environment—use those as the source of truth.

Good practice

  • Prefer least privilege: only the integrations that need visit data should receive keys.
  • Rotate keys when staff who had access leave or after an incident.
  • Refer to any API documentation or support materials your organisation provides for full endpoint lists and rate limits.