Authentication
Every Levam OEM API method requires an API key. The key is passed as the api_key query parameter in each request:
curl "https://api.levam.net/oem/v1/CatalogsListGet?api_key=YOUR_KEY"
Authorization headers (Authorization, X-Api-Key, etc.) are not used.
Getting a key
- Register at levam.net (or levam.ru).
- Your API key is shown in the dashboard.
- An active unit package is required for the API to work — see Pricing and billing.
Authorization errors
| HTTP status | Response body | Reason |
|---|---|---|
| 401 | {"error": "invalid api key"} | Key missing, not found, or blocked |
| 403 | {"error": "Client disabled. not enough money"} | Access disabled: out of units or the package expired |
Failed authorization requests are not billed.
Recommendations
- Do not expose
api_keyin client-side code (browser, mobile app) — call the API from your server. - You can restrict the list of IP addresses allowed to use your key in the dashboard.