API Overview¶

Base URL¶

https://api.lexgo.cl/api/v1

Authentication¶

All API requests require authentication via the Authorization header:

Authorization: YOUR_API_KEY

See Authentication for details.

Request Format¶

Content Type¶

Envelope creation uses multipart/form-data:

Content-Type: multipart/form-data

Other endpoints may use JSON or form-data depending on the operation.

Request Body¶

Envelope requests use form-data with bracket notation:

name=Contract Name
recipients[0][name]=John Doe
recipients[0][email]=john@example.com
documents[0][base64]=JVBERi0xLjQK...
documents[0][name]=contract.pdf

Response Format¶

Success Response¶

All successful responses include the requested data and a request_id:

{
  "envelope": {...},
  "request_id": "req_abc123"
}

Error Response¶

Error responses include an error message and request_id:

{
  "error": "Envelope not found",
  "request_id": "req_def456"
}

HTTP Status Codes¶

Code	Meaning	Description
`200`	OK	Request succeeded
`401`	Unauthorized	Missing or invalid API key
`404`	Not Found	Resource doesn't exist
`405`	Method Not Allowed	Invalid operation for resource state
`422`	Unprocessable Entity	Validation error
`429`	Too Many Requests	Rate limit exceeded
`500`	Internal Server Error	Server error

Endpoints¶

Envelopes¶

Method	Endpoint	Description
`POST`	`/envelopes`	Create a new envelope
`GET`	`/envelopes/:id`	Get envelope details
`POST`	`/envelopes/:id/send_invitation`	Send envelope to recipients
`PUT`	`/envelopes/:id/void`	Cancel an envelope
`GET`	`/envelopes/:id/evidence`	Get evidence sheet URL

See Envelopes API for detailed documentation.

Validations (2FA)¶

Method	Endpoint	Description
`POST`	`/envelopes/:envelope_id/recipients/:recipient_id/validations/send_code`	Send verification code
`POST`	`/envelopes/:envelope_id/recipients/:recipient_id/validations/verify_code`	Verify submitted code

See Validations API for detailed documentation.

Settings¶

Method	Endpoint	Description
`GET`	`/settings`	Get current configuration
`PUT`	`/settings`	Update configuration

See Settings API for detailed documentation.

Webhooks¶

Method	Endpoint	Description
`GET`	`/webhooks`	List all webhooks
`POST`	`/webhooks`	Create a webhook
`GET`	`/webhooks/:id`	Get webhook details
`PUT`	`/webhooks/:id`	Update webhook
`DELETE`	`/webhooks/:id`	Delete webhook

See Webhooks API for detailed documentation.

Request IDs¶

Every API response includes a request_id field:

{
  "envelope": {...},
  "request_id": "req_abc123"
}

Use request IDs when contacting support to help us debug issues quickly.

Rate Limiting¶

Rate limits protect the API from abuse and ensure fair usage:

Resource	Limit	Window
Email validation codes	5 requests	1 hour
Code verification attempts	3 attempts	Per code
Cooldown period	60 seconds	Between codes
API requests	Based on plan	1 hour

Rate Limit Headers¶

Responses include rate limit information:

X-RateLimit-Limit: 5
X-RateLimit-Remaining: 3
X-RateLimit-Reset: 1635724800

Exceeded Rate Limit¶

When rate limited, you'll receive a 429 status:

{
  "error": "Wait 45 seconds before requesting another code",
  "request_id": "req_ghi789"
}

Pagination¶

Currently, the API does not implement pagination. All results are returned in a single response.

Versioning¶

The API version is included in the URL path:

/api/v1/envelopes
     ^^
  version

Version History¶

Version	Status	Release Date	Notes
v1	Current	2023-01-01	Initial release

Deprecation Policy¶

When we deprecate an API version:

6 months notice: Announcement via email and documentation
Parallel support: Old and new versions work simultaneously
Migration guide: Detailed upgrade instructions provided
Sunset date: Clear end-of-life timeline

Idempotency¶

Safe HTTP methods (GET, PUT, DELETE) are idempotent:

GET: Always returns the same resource
PUT: Multiple identical requests produce the same result
DELETE: Deleting a deleted resource returns the same response

POST is not idempotent: Creating the same envelope twice creates two separate envelopes.

HTTPS Required¶

All API requests must use HTTPS. Requests made over plain HTTP will fail:

https://api.lexgo.cl/api/v1/envelopes  ✅
http://api.lexgo.cl/api/v1/envelopes   ❌

CORS¶

Cross-Origin Resource Sharing (CORS) is supported for browser-based applications.

Allowed origins: - https://app.lexgo.cl - Custom domains (contact support to whitelist)

Errors¶

See Error Codes for complete error documentation.

Next Steps¶

Envelopes API - Create and manage envelopes
Validations API - Implement 2FA email verification
Webhooks API - Subscribe to real-time events