Overview

The Authorized Domains API empowers you to independently manage your list of authorized domains for retrieving leaked credentials in DBD. In line with compliance requirements, access to leaked credential data is restricted to predefined authorized domains. This API streamlines the process by allowing you to view, add, and delete domains - without relying on Webz.io support.

Please note that authorized domains apply to the following DBD search parameters: email, email_domain, login_domain.

In addition, If a TLD (top-level domain) is authorized, access will also be granted to all its associated subdomains.

HTTP Method: GET

URL Structure

https://api.webz.io/authorized-domains?token=xxxxx-xxxx-xxxxx&page=1

Description

Retrieve a paginated list of all authorized domains associated with your API token. This allows you to view which domains are currently permitted for accessing leaked credentials. Each page contains up to 50 domains. Use the next URL in the response to fetch additional pages.

HTTP GET Parameters

Parameter	Description	Example
token	Your private access token that you received when you signed up.	&token=[MY TOKEN]
page	Specifies the results page to retrieve. Every page contains up to 50 domains.	&page=1

Request Output

Parameter	Description
domains	An array of objects
// domain	authorized domain
// status	Possible values: `Active`,`in_progress`
page	Page number
totalPages	Total number of pages
next	A URL to get the next batch of authorized domains

Example Response

{
    "domains": [
        {
            "domain": "example1.com",
            "status": "Active"
        },
        {
            "domain": "example2.com",
            "status": "in_progress"
        }
    ],
  "page": 1,
  "totalPages": 3,
  "next": "https://api.webz.io/authorized-domains?token=XXXXX-XXXX-XXXXX&page=2"
}

HTTP Method: POST

Endpoint

POST https://api.webz.io/authorized-domains

Example Request Body

{
  "token": "YOUR-API-TOKEN",
  "domain": "example.com"
}

Description

Adds a new domain to your authorized domains list. Replace YOUR-API-TOKEN with your actual API token and example.com with the domain you want to authorize.

Response (Success)

{
  "status": "Success"
}

HTTP Method: DELETE

Endpoint

DELETE https://api.webz.io/authorized-domains

Example Request Body

{
  "token": "YOUR-API-TOKEN",
  "domain": "example.com"
}

Description

Delete an existing domain from your authorized domains list. Replace YOUR-API-TOKEN with your actual API token and example.com with the domain you want to remove.

Response (Success)

{
  "status": "deleted"
}