Skip to content
Qeet Group · API Platform

Every Qeet API, composed for shipping.

Discover, test, secure, and operate Qeet ID and Qeet Notify from one OpenAPI-first workspace, with live references, generated code, and production-ready auth flows.

250+
API endpoints
6
product areas
4
code languages
100%
OpenAPI 3.1
apis.qeet.in
productionstaginglocal
live console
GET/v1/auth/meSend
$ curl https://api.id.qeet.in/v1/auth/me   -H "Authorization: ApiKey qk_live_..."   -H "X-Qeet-Env: production" 
200 OKapplication/json42ms
{
  "principal": "usr_8f1c2a9e",
  "tenant":    "org_ace19f2c",
  "scopes":    ["identity.read", "openid"],
  "trace":     "qtr_4b7d9a"
}
Auth scopeApiKey
identity.read
notify.send
webhooks.write
Request pathhealthy
Discover
Authenticate
Run
Observe
sig

webhook.delivered

hmac verified · retry 0

schema

OpenAPI 3.1

audit

trace persisted

codegen

JS · Go · Python

Trusted by engineering teams worldwide

AxiomSupabaseResendNeonPlanetscaleUpstashTursoRailway
250+API endpoints
6product areas
4code languages
100%OpenAPI 3.1

Speaks the open standards you already trust

  • OAuth 2.1
  • OpenID Connect
  • SAML 2.0
  • SCIM 2.0
  • WebAuthn
  • Passkeys
  • OpenAPI 3.1
  • JWT / JWKS
  • Webhooks
  • mTLS
  • RBAC / ReBAC
  • Multi-tenant
The platform

Everything an API needs, in one platform.

Discover, integrate, manage, secure, monitor and scale every API your business runs — from a single control plane, behind a single credential.

DiscoverIntegrateManageSecureMonitorScale

Any client

Web appBackendAI agentCLI

Unified API Gateway

api.qeet.in

one credential
AuthenticationRate limitingSmart routingVersioningObservabilityWebhooks

Qeet ID

Live API

Qeet Notify

Live API

Qeet Logs

Observability

Qeet Pay

Payments

Qeet People

HCM

Qeet News

Media

Engineered for production

Built to be depended on.

No moving targets. The same guarantees back every product on the platform — from your first call to production scale.

SOC 2 Type IIGDPROpenAPI 3.1mTLSOAuth 2.1RBAC

Multi-region edge

Requests terminate at the edge closest to your users, with regional failover behind a single hostname.

Typed from OpenAPI 3.1

Every endpoint and schema is generated from a versioned spec — never hand-written, never stale.

Versioned & idempotent

Explicit API versions with additive-only changes, and idempotency keys that make retries safe.

mTLS & scoped keys

Mutual TLS, OAuth 2.1 and least-privilege API-key scopes secure every call by default.

Full audit trail

Every privileged action is written to an immutable, queryable audit log via Qeet Logs.

Event-driven webhooks

Subscribe to signed webhooks for the events that matter — no polling, no missed state.

API Discovery

Find any endpoint in a keystroke.

Two hundred and fifty-plus operations across products — searchable, filterable and instantly reachable. Discovery is a feature, not a scroll.

  • Unified search. One bar across every product — endpoints, parameters, schemas and error codes.
  • Command palette. Open ⌘K from anywhere and jump to any operation in a single keystroke.
  • Faceted filters. Narrow by product, HTTP method, tag or required scope as you type.
  • Never stale. The index is generated from OpenAPI 3.1 — new endpoints appear the moment they ship.
create userK
AllQeet IDNotifyPOST28 results
  • POST/v1/users
  • GET/v1/users/{id}
  • POST/v1/organizations
  • POST/v1/messages
  • GET/v1/audit/events
↑↓ navigate open indexed live
API Documentation

Docs that read like a product.

Everything you need to go from first request to production — quickstart, authentication, errors, SDKs and a live, runnable reference.

GET/v1/auth/merequires identity.read

Endpoint guide

Retrieve the authenticated principal.

Returns the current user, tenant, session, and granted scopes for any API key or OAuth token. Examples stay language-aware and production-ready.

NameTypeRequired
AuthorizationApiKey | Beareryes
X-Qeet-Envproduction | stagingno
Idempotency-Keystringmutations
cURLJavaScriptGo
$ curl https://api.id.qeet.in/v1/auth/me \
  -H "Authorization: ApiKey qk_live_..."

200 OK
{
  "principal": "usr_8f1c2a9e",
  "scopes": ["identity.read"]
}
playground · api.id.qeet.in
GET/v1/auth/me
200 OK38 msapplication/json
{
  "user_id": "usr_8f1c2a9e",
  "tenant_id": "org_ace19f2c",
  "scopes": ["identity.read", "openid"]
}
API Playground

Run it before you write a line.

A first-class console lives next to every endpoint. Send authenticated requests, inspect real responses, and copy the exact code you need.

  • Real requests, real responses. Authenticate and run any endpoint straight from the browser — no Postman round-trip.
  • Schema-aware inputs. Path, query, body and headers are typed from the spec, with inline validation.
  • Copy as code. Turn any request into cURL, JavaScript, Go or Python in one click.
  • Safe to explore. Scoped test keys and idempotency keys mean you can experiment without consequences.
Authentication & Authorization

Security you don't have to bolt on.

One credential, every API. Authenticate with the standard that fits, authorize with fine-grained scopes, and let the gateway enforce it.

  • Every standard, built in. API keys, OAuth 2.1, OIDC, SAML SSO, SCIM and mutual TLS — choose the flow per app.
  • Least-privilege by default. Scoped tokens and API keys grant only what each caller needs, and nothing more.
  • Passkeys-first. WebAuthn passkeys, TOTP and step-up MFA are native to every authentication flow.
  • Machine & agent identities. Service accounts and AI-agent credentials with expiry, rotation and full audit.
API KeyOAuth 2.1OIDCSAML SSOmTLS
POST/oauth/token TLS 1.3
grant_type=client_credentials
scope=identity.write notify.send

Access token · decoded

valid 3600s

"sub": "svc_billing_worker",

"iss": "https://id.qeet.in",

"exp": 1751792400,

"scope":

identity.readidentity.writenotify.send
policy allowed
scopes enforced
audit written
openapi.yamlOpenAPI 3.1 qeet sdk generate
client.ts resources/users.ts models.ts index.ts
npm i @qeet/sdk
import { Qeet } from "@qeet/sdk";

const qeet = new Qeet({ apiKey: process.env.QEET_KEY });

const user = await qeet.identity.users.create({
  email: "ada@qeet.in",
});
//    ^? User — fully typed
models typed
validators emitted
mocks generated
SDK Generation

From spec to typed client, instantly.

Ship in the language your team already writes. Every SDK is generated from the same OpenAPI document that powers the reference — so it always matches the live API.

  • Typed from the spec. Idiomatic SDKs generated directly from OpenAPI 3.1 — not hand-maintained wrappers.
  • Four languages, one shape. TypeScript, Go, Python and cURL today, with the same ergonomics across each.
  • Zero drift. Regenerated on every spec change, so your client is never out of date with the API.
  • Mocks & validators too. The same document powers local mock servers and request/response validators.
By the numbers

Platform-wide, every day.

<50ms

Average latency

p99 at the edge

99.99%

Uptime SLA

across all regions

250+

API endpoints

fully OpenAPI 3.1 typed

180+

Countries served

via multi-region edge

6

Platform products

one key, every API

4

SDK languages

cURL · JS · Go · Python

API Analytics

Know exactly how your APIs are used.

Understand traffic, performance and failures across every endpoint — without wiring up your own metrics pipeline first.

  • Every call, measured. Volume, latency, error rate and status-code mix — per endpoint, in real time.
  • Slice any dimension. Break down by product, API key, route, region or version on the fly.
  • Live and historical. Sub-second counters for now, plus retained series for trend analysis.
  • Export anywhere. Stream metrics to Datadog, Grafana or your own warehouse.

Requests

Last 7 days · all products

+18%
Thu · 1.28M

Requests · 7d

8.42M

+18%

Success rate

99.98%

+0.01

p95 latency

42ms

−6ms

Top endpoints

  • POST /v1/messages34%
  • GET /v1/users26%
  • POST /v1/auth/token21%
  • GET /v1/audit/events12%

All systems operational

status.qeet.in
us-east-1100%
eu-west-199.98%
ap-south-199.95%
p5012ms
p9542ms
p9988ms
API Monitoring

Uptime you can watch, latency you can trust.

Every region, every endpoint, probed around the clock. See the health of your integration the way your users experience it.

  • Global health at a glance. Uptime and latency tracked per region and per endpoint, continuously.
  • Percentiles that matter. p50, p95 and p99 — not misleading averages that hide the tail.
  • Synthetic + real-user. Probes from every region combined with signals from live traffic.
  • Alerts where you already are. Fire to PagerDuty, Slack or a webhook when a threshold is crossed.
Rate Limiting

Protect your platform, gracefully.

Fair, transparent limits keep every tenant fast. You always know your budget, and hitting a limit is a signal — never a surprise outage.

  • Predictable quotas. Per-key limits with burst allowances you can actually reason about.
  • Headers on every response. X-RateLimit-* tells you where you stand so you can back off before you're blocked.
  • Graceful 429s. A clear Retry-After plus idempotency keys mean retries are always safe.
  • Scales with your plan. Raise limits by upgrading a tier — never by re-architecting your app.
Requests this minute6,180 / 10,000

Resets in 41s · burst up to 1,500 rps

Response headers

X-RateLimit-Limit:10000

X-RateLimit-Remaining:3820

X-RateLimit-Reset:1751792460

X-RateLimit-Policy:10000;w=60

429Too Many Requests Retry-After: 2s

Free

250k/mo

Growth

10M/mo

Enterprise

Custom

API versionsdate-based
2024-07-012025-01-152026-06-01
additiveUser · v2026-06-01no breaking changes
+"phone_number": string
+"mfa_enrolled": boolean
"email": string
"created_at": string
Qeet-Version: 2026-06-0118-month support
API Versioning

Move fast without breaking callers.

Versioning is a contract, not a chore. Ship improvements continuously while every integration keeps working exactly as it did the day it went live.

  • Date-based versions. Pin a version with a single header, and upgrade entirely on your own schedule.
  • Additive by default. New fields and endpoints roll out without ever breaking calls you already ship.
  • Long support windows. Every published version is supported for at least 18 months.
  • Deprecations you can see. Sunset and Deprecation headers warn your code well before anything changes.
Webhooks

Real-time events you can rely on.

Push the moments that matter to your systems — securely signed, reliably delivered, and fully observable from first fire to final ack.

  • Signed, always. Every delivery carries an HMAC signature — verify authenticity before you trust it.
  • No polling, ever. Subscribe to the events you care about and react the moment they happen.
  • Reliable delivery. Automatic retries with exponential backoff, plus one-click replay from the console.
  • Full visibility. Inspect every attempt, payload and response — no black boxes.
Webhook deliveries streaming
user.createdmessage.deliveredinvoice.paidpayment.failed

POST https://api.acme.com/hooks

X-Qeet-Signature: t=1751792…, v1=3a8f9c…

EventAttemptStatus
  • user.created1200 OK
  • message.delivered1200 OK
  • invoice.paid2 retrying
  • payment.failed1200 OK
HMAC signedExponential backoffat-least-once
Enterprise Security

Ready for your security review.

SSO, RBAC, audit and least-privilege access are first-class across the platform — capabilities of the live specs, not bolt-on add-ons.

Single sign-on

OIDC and SAML 2.0 SSO with SCIM 2.0 provisioning for your entire workforce.

RBAC & organizations

Fine-grained roles, permissions and ReBAC checks across multi-tenant organizations.

Passkeys & MFA

WebAuthn passkeys, TOTP and step-up MFA are first-class on every auth flow.

Machine identities

Scoped API keys, service accounts and AI-agent credentials with least privilege.

Rate limits & quotas

Per-key limits with clear rate-limit headers and burst controls on every response.

Audit & operations

Immutable audit logs, usage analytics and tenant operations across the platform.

A

Acme Corp

Workspace · 12 members

SCIM on
  • AM

    Ada Mehta

    All products

    Owner
  • PS

    Priya Sundaram

    ID · Notify

    Admin
  • TG

    Tomás García

    ID · read/write

    Developer
  • dev@acme.com

    Invitation pending

    Read-only
Every change written to the audit log
Team Collaboration

Built for whole engineering orgs.

Ship together without stepping on each other. Roles, environments and provisioning that scale from a two-person startup to a global enterprise.

  • Shared workspaces. Organize API keys, environments and specs by team, not by spreadsheet.
  • Roles that map to reality. Owner, admin, developer and read-only — plus custom roles when you need them.
  • Provisioned automatically. SCIM syncs new members and deprovisions access the instant someone leaves.
  • Audited by default. Every key rotation, scope change and environment access is logged and queryable.
CLI Experience

The whole platform, from your terminal.

The Qeet CLI turns every capability into a command. Authenticate, call any endpoint, generate SDKs and tail logs — without leaving your shell.

  • One binary, the whole platform. Auth, keys, live calls, codegen and logs — all from your shell.
  • Scriptable by design. Clean JSON output and honest exit codes, made for CI and pipelines.
  • Instant context switching. Flip between environments and workspaces with a single flag.
  • Live tails. Stream logs and webhook deliveries in real time as they happen.
$ brew install qeetInstall the CLI
zsh · qeet-cli
$ qeet login
 Authenticated as ada@acme.com

$ qeet keys create --name ci --scope identity.read
 qk_live_9f2c… · copied to clipboard

$ qeet api GET /v1/users/usr_8f1c
{ "id": "usr_8f1c", "status": "active" }

$ qeet sdk generate --lang go
 Generated qeet-go in 1.2s

$ qeet logs tail --product id
2026-07-06T09:14Z  200  POST /v1/messages  41ms
Integrations

Plug into everything you already run.

Qeet meets your stack where it is — native SDKs, first-class observability exports, and open webhooks that connect to anything else.

Languages & frameworksCI/CD & infrastructureObservability & tooling

Don't see yours? Every event and metric can stream out over signed webhooks and the REST API — so you can wire Qeet into anything.

Explore the API
Developer Experience

Your first request in under a minute.

No SDK to install, no boilerplate. Grab a key, send a header, and you're talking to production.

  1. 1Create an API key in the Qeet console for the product you want to call.
  2. 2Send the key as Authorization: ApiKey <key> (Qeet ID) or X-Qeet-Api-Key (Qeet Notify).
  3. 3Call any endpoint — start with the authenticated principal, then explore the rest in the reference.
curl https://api.id.qeet.in/v1/auth/me \
  -H "Authorization: ApiKey qk_live_..."
const res = await fetch("https://api.id.qeet.in/v1/auth/me", {
  headers: { Authorization: "ApiKey qk_live_..." },
});
const principal = await res.json();
req, _ := http.NewRequest("GET", "https://api.id.qeet.in/v1/auth/me", nil)
req.Header.Set("Authorization", "ApiKey qk_live_...")
res, _ := http.DefaultClient.Do(req)
import requests

res = requests.get(
    "https://api.id.qeet.in/v1/auth/me",
    headers={"Authorization": "ApiKey qk_live_..."},
)
print(res.json())
What developers say

Trusted in production.

We evaluated five identity platforms. Qeet ID was the only one that had passkeys, SCIM, and a real OpenAPI spec on day one. The reference console alone saved us two weeks of integration work.

AM

Arjun Mehta

CTO · Lattice Systems

Switching our notification stack to Qeet Notify took one afternoon. The multi-channel API is genuinely well-designed — same payload shape whether you're sending email, SMS or webhooks.

PS

Priya Sundaram

Lead Platform Engineer · Finsight

The audit log API is the first one I've seen that's actually queryable in real time. Our compliance team went from dreading audit reviews to running them in self-service.

TG

Tomás García

Platform Architect · Buro Cloud

Pricing

Start free. Scale when you ship.

Every plan includes the full interactive API reference, live request console, and OpenAPI 3.1 specs. No surprises.

Developer

Freeforever

Everything you need to build and ship your first integration.

  • 250,000 API requests / month
  • Full API reference + live console
  • 2 SDK languages
  • Community support
  • SLA & uptime guarantee
  • SAML SSO & SCIM
Start building

Enterprise

Custompricing

For organizations that require compliance, SLA and dedicated support.

  • Unlimited API requests
  • Full API reference + live console
  • All 4 SDK languages
  • Dedicated Slack support
  • 99.99% uptime SLA
  • SAML SSO, SCIM & RBAC
Contact sales

All plans include multi-region edge routing, OpenAPI 3.1 specs, and the interactive reference console. —Compare plans ↗

FAQ

Questions from real developers.

Still have questions? Open the reference and run a live request — or reach us at support@qeet.in.

How do I authenticate with the Qeet APIs?

You can authenticate using an API key (pass it as Authorization: ApiKey <key>) or via OAuth 2.1 with a Bearer token. API keys are created in the Qeet console. For machine-to-machine flows, use the client credentials grant. Full details are in the Authentication guide.

Is one key valid across all Qeet APIs?

Yes. A single API key or OAuth token is scoped to the products and permissions you grant it — so one credential can call Qeet ID, Qeet Notify, and any other live product. Scopes are additive and least-privilege by default.

Are the API specs publicly available as OpenAPI files?

Yes. Every spec is published as OpenAPI 3.1 YAML under apis.qeet.in/specs/. The interactive reference is built directly from these files — they're never hand-written, so they're always in sync with the actual API surface.

Which SDK languages are supported?

The reference ships ready-to-run code snippets for cURL, JavaScript, Go, and Python. Idiomatic SDK packages are on the roadmap. You can also import any spec into Postman — a pre-built collection for Qeet ID is available on the SDKs page.

What does the free Developer plan include?

The Developer plan is free forever and includes 250,000 API requests per month, access to the full interactive API reference, and community support. It's designed to let you ship your first integration without a credit card.

Do you offer an uptime SLA?

Growth plans include a 99.9% monthly uptime SLA; Enterprise plans include 99.99%. All plans benefit from multi-region edge routing and automatic regional failover — SLA tiers add contractual commitments and credits.

How do webhooks work, and are they signed?

Webhooks are delivered as signed HTTP POST payloads — each request includes an X-Qeet-Signature header so you can verify authenticity before processing. Deliveries are retried with exponential backoff. You can subscribe to events in the Qeet console.

Ready for first request

Build on Qeet APIs.

One platform for every API your business needs. Discover, integrate, secure, monitor and scale — starting with your first request today.

api.id.qeet.inOpenAPI 3.1
$ curl /v1/auth/me
200 OK 42ms
{
  "principal": "usr_8f1c2a9e",
  "trace": "qtr_4b7d9a"
}
auth
docs
sdk