API Overview

The DMARC Defender API is organized around organization-scoped bearer API keys. Use it to list domains, create domains, retrieve setup guidance, scan DNS configuration, and inspect audit activity.

OpenAPI spec

The machine-readable schema is available as openapi.json. Use it with API clients, SDK generators, or import it into your own tooling.

Authentication

Generate API Keys from your organization settings page, then send the secret in the Authorization header as a bearer token. Keys are scoped to a single organization and each endpoint declares the minimum role it requires.

Authorization: Bearer dd_xxxxx.yyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyy

`read` keys can access read-only endpoints.
`write` keys can create or mutate resources.
`admin` keys can manage higher-privilege organization actions.

Pagination

Collection responses include a `meta` object. Some endpoints only return `total`, while paginated endpoints also include `page` and `pageSize` so clients can request the next result set explicitly.

{
  "data": [],
  "meta": {
    "page": 1,
    "pageSize": 1000,
    "total": 42
  }
}

Next steps

Start with the examples page for integration workflows, or jump straight to the API reference for the full endpoint list.