Skip to main content
The Sublay REST API is a project-scoped HTTP API. All endpoints follow the same base structure and share common conventions for authentication, pagination, and error reporting.

Base URL

All API requests are made to:
Replace :projectId with the UUID of your Sublay project, which you can find in the Sublay dashboard. So every endpoint takes the form:

Request Format

Most endpoints accept application/json. Endpoints that support file uploads accept multipart/form-data. The Content-Type header should be set accordingly.

Authentication

Protected endpoints require a Bearer token in the Authorization header:
See Authentication for full details on obtaining and refreshing tokens.

Pagination

Endpoints that return lists use cursor-free offset pagination. Pass page and limit as query parameters: Paginated responses always return the same envelope:

Error Format

All error responses follow a consistent structure:
Some errors include an additional field key (e.g., validation errors on a specific input field):

Common HTTP Status Codes

Rate Limiting

Each endpoint has its own rate limit, applied per project and per IP. When a limit is exceeded, the API returns 429 Too Many Requests. Limits are noted per endpoint in this reference.