API Reference

Coming Soon

A hosted API is on the way. This page will hold its full HTTP reference once it ships.

You can verify taps in your own web API or backend with CrypTagDecoder — pure JavaScript, no hardware. See the Decoder examples and the SDK Reference.

What’s Coming

We’re building a hosted, self-manageable API so you can validate a tap with a single API request — no SDK to embed, no key material in your application code:

• Drop-In Verification — POST the picc_data / enc / cmac from a tapped URL and get back { authentic, uid, counter, fileData }.
• Self-Managed Keys & Tags — register your tags and keysets in a dashboard, and secrets never touch your servers.
• Per-Tag Insight — tap counts, last-seen, and TagTamper status from the same endpoint.

Once it ships, this page will document every endpoint, authentication, and request/response schema.