SanctionsLookupAuthentication
Authenticate every request with an API key passed in the Authorization header.
Get your API key
Create an account to receive your API key and start testing immediately.
- Includes 100 one-time test requests
- Uses live OFAC data (not a simulated sandbox)
- No credit card required
- Test usage is non-recurring and intended for evaluation only
You can send your first request in minutes. For higher usage, see the pricing page.
Send the API key
Pass your API key in the Authorization header using the Bearer format.
Authorization: Bearer YOUR_API_KEY
Required on every request.
Example request
curl -X POST https://api.domain.com/v1/screen \
-H "Authorization: Bearer YOUR_API_KEY" \
-H "Content-Type: application/json" \
-d '{
"subjects": [
{
"name": "Kim Jong Un"
}
]
}'
HTTPS required
All API requests must be sent over HTTPS.
Unencrypted HTTP requests are rejected.
Best practices
Keep your API keys secure and limit exposure in production environments.
- Store API keys securely (e.g. environment variables)
- Do not expose production keys in client-side code
- Rotate keys if they are compromised