Your Shiipp base URL (for example,
https://acme.shiipp.com) is provisioned by your Shiipp administrator. Replace https://your-domain in every example below with the URL they provide.Log in and obtain your Bearer token
Send a ResponseCopy the value of
POST request to /api/login.php with your Shiipp credentials. Include "action": "login" along with your username and password. On success, the response contains an access_token you will use for all subsequent requests.Requestdata.access_token — you will need it in the next step.Attach the token to every API request
Pass the token in the Tokens are valid for 8 hours. After expiry, repeat Step 1 to obtain a fresh token. Your application should handle
Authorization header on all subsequent calls to the Shiipp API.401 Unauthorized responses by re-authenticating automatically.Courier partners: locate your API key
If you are a courier partner, you have a separate API key that grants access to the public Prealert endpoint. You do not need a JWT token for this endpoint.
- Log in to the Shiipp dashboard.
- Navigate to Settings → Courier Settings.
- Copy the value shown under API Key.
X-API-KEY header:Submit your first prealert
With your API key in hand, submit a prealert by posting shipment details to Success response (HTTP 201)Store the returned
/api/Prealert.php. UserCode and TrackingNumber are required; Vendor, Description, and Reference are optional.Requestprealert_id to track and reference this shipment in future API calls.