Developer API

API Reference

Integrate QR code generation, tracking, and analytics into your applications.

Base URL:https://trackqr-backend.fly.dev

Authentication

Include your token in the Authorization header for all authenticated requests.

Authorization: Bearer YOUR_API_KEY

Generate API keys from your . All responses use the format:

{
  "success": true,
  "data": { ... },
  "message": "Description"
}

Rate Limits

StarterNo API accessGrowth500 requests/dayBusiness2,000 requests/dayEnterpriseUnlimited

Rate limit headers are included in every response: X-RateLimit-Remaining, X-RateLimit-Reset.

Webhook Events

Webhook payloads are signed with HMAC-SHA256. Verify using the X-TrackQR-Signature header.

// Verify webhook signature (Node.js / Bun)
const crypto = require("crypto");
const signature = crypto
  .createHmac("sha256", webhookSecret)
  .update(rawBody)
  .digest("hex");
const isValid = sig === `sha256=${signature}`;

qr.scannedA QR code was scanned. Includes location, device, and browser info.

qr.createdA new QR code was created.

qr.updatedA QR code was updated (content, settings, or status).

qr.deletedA QR code was permanently deleted.

QR Codes

Create, manage, and track dynamic QR codes.

Analytics

Access scan analytics and engagement data.

Folders

Organize QR codes into folders.

Templates

Save and reuse QR code design templates.

Team

Manage team members and collaborate on QR campaigns.

Webhooks

Receive real-time notifications when QR code events occur. Webhooks are signed with HMAC-SHA256.

Landing Pages

Create and manage custom landing pages for QR codes.

Custom Domains

Use your own domain for QR code redirects.

API Keys

Manage API keys for server-to-server integrations.

Subscription

Manage billing and subscription plans.

User Profile

Manage user profile and preferences.

TrackQR