REST API

Updated 10 July 2026

The REST API is the bridge between your software and your WordPress store’s license system. Instead of your customers manually entering keys on a website, your software can automatically call the API to verify a key, activate it on a specific device, check how many activations are remaining, and deactivate it when no longer needed.

What Is the API and Do You Need It?

Think of the API as a private phone line between your software and your store. Every time a customer opens your software, it can quietly call this phone line to ask: “Is this license key still valid?” The store answers yes or no. The whole thing happens in the background in less than a second – your customer never sees it.

You need the API if you want your software to automatically verify licenses when it starts up, block use if the key has expired, or prevent sharing by limiting activations to a set number of devices. If you only need to show keys to customers without any automated verification, you do not need the API.

Setting up the API integration requires a developer to add code to your software. This chapter explains the concepts and endpoints in plain English so you can brief your developer clearly on what to implement.

Authentication – The API Secret Key

Every API request must include your secret API key. This proves to the server that the request is coming from your authorised software and not from someone who guessed the API URL. You find your API key in License Verification → Settings → REST API section.

Include the key in the request in one of two ways:

Never hard-code the API key directly inside your software’s source code if you plan to distribute the software. Instead, store it in a configuration file that only your server reads. If the key is ever exposed, regenerate it immediately in Settings.

Base URL

All endpoints start from the same base URL, which you can copy from the Settings page:

You append the specific endpoint name after this base URL. For example, to verify a license, you call: https://yourstore.com/wp-json/wlv/v1/license/verify

The Four API Endpoints

The API has four endpoints, each performing a specific action on a license key. All four accept requests using the POST method with a JSON body (your developer will know what this means). Verify and Status also work with GET requests for simple lookups.

Request Fields Summary

Enabling the API

Tips for API Setup

You Have Completed the Documentation

You have now read through all 11 chapters of the Woo License Verification guide. Your store is ready to: