Authentication

Every request to the Recsphere API must include your API key in the X-Api-Key header.

X-Api-Key: YOUR_API_KEY_HERE

There is no OAuth flow or token exchange — the X-Api-Key header is all that's required.

Example

POST /v1/vacancies/get-filtered HTTP/1.1
Host: api.recsphere.co.uk
Content-Type: application/json
X-Api-Key: YOUR_API_KEY_HERE

Security

Server-side only

Your API key grants access to your vacancy data and the ability to submit applications on your behalf. It must never be included in client-side code (browser JavaScript, mobile apps). Always proxy requests through your own server or a serverless function.

See the Next.js example for a pattern that keeps your key server-side.

Example​

Security​

Example

Security