Skip to main content

Getting an API key

1

Create an account

Sign up at app.reverselooker.com
2

Purchase a paid plan

Any paid plan (subscription or pay-as-you-go) enable Reverse Looker API. Go to app.reverselooker.com/billing
3

Access settings

Go to SettingsAPI Keys
4

Generate a key

Click Create API Key and give it a descriptive name

Usage

Include your API key in the x-api-key header of each request: 
curl -X POST https://api.reverselooker.com/reverse-contact/single \
  -H "Content-Type: application/json" \
  -H "x-api-key: rl_live_abc123..." \
  -d '{"email": "[email protected]"}'

const response = await fetch('https://api.reverselooker.com/reverse-contact/single', {
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'x-api-key': process.env.REVERSELOOKER_API_KEY
  },
  body: JSON.stringify({ email: '[email protected]' })
});

Key types

TypePrefixUsage
Liverl_live_Production
Testrl_test_Development (does not consume credits)
Test keys return mock data and should not be used in production.

Best practices

Environment variables

Never hardcode your API key in the code. Use environment variables.

One key per environment

Create separate keys for development, staging, and production.

Regular rotation

Rotate your keys periodically and after any security incident.

Minimal permissions

Use keys with only the necessary permissions.

Authentication errors

CodeMessageCause
401Missing API keyx-api-key header is missing
401Invalid API keyAPI key is invalid or revoked
403API key disabledKey disabled by administrator
Example 401 response
{
  "error": "Invalid API key",
  "message": "The provided API key is not valid or has been revoked"
}

Revoking a key

If you suspect a key has been compromised:
  1. Log in to app.reverselooker.com
  2. Go to SettingsAPI Keys
  3. Click Revoke next to the affected key
  4. Generate a new key
  5. Update your applications
Revocation is immediate. All requests using this key will fail instantly.