Skip to main content

Introduction

LatePoint API Extension uses an API Keys based authentication system to ensure the security of your data. Each API request must include a valid key to be processed.

API Key Generation

Create a New API Key

  1. Go to LatePoint > API Settings in your WordPress dashboard
  2. Click “Generate New API Key”
  3. Assign a descriptive name (e.g., “Mobile App”, “CRM System”)
  4. Copy and save the generated key securely
Important: The API Key is only shown once. If you lose it, you’ll need to generate a new one.

Using the API Key

Authentication Header

Include your API Key in the X-API-Key header of each request: 
curl -X GET "https://your-site.com/wp-json/latepoint-api/v1/bookings" \
  -H "X-API-Key: lp__1234567890abcdef" \
  -H "Content-Type: application/json"

Authentication Errors

401 Unauthorized

Cause: Missing or invalid API Key 
{
  "error": {
    "code": "unauthorized",
    "message": "Invalid or missing API key"
  }
}
Solution:
  • Verify that you include the X-API-Key header
  • Confirm that the API Key is correct
  • Make sure the key hasn’t expired

API Key Management

List Active Keys

In LatePoint > API Settings, you can see:
  • All generated API Keys
  • Creation date and last use
  • Status (active/inactive)

Remove an API Key

  1. Go to LatePoint > API Settings
  2. Find the key you want to remove
  3. Click “Remove”
  4. Confirm the action
Once revoked, the API Key will stop working immediately in all applications that use it.

Next Steps

API Reference

Explore all available endpoints

Error Handling

Learn to handle errors correctly

Rate Limiting

Optimize your request quota usage

Code Examples

See practical implementation examples