Skip to main content
The AgriBackup Enterprise EUDR API is a resource-oriented REST API that covers the full EU Deforestation Regulation compliance lifecycle — from pre-assessment risk scoring through polygon ingestion, batch registration, logistics linking, and automated Due Diligence Statement (DDS) filing. All requests accept and return JSON unless otherwise noted, and all responses use standard HTTP status codes.

Base URLs

The base URL is determined by your API key prefix. If you use an official SDK, the URL is resolved automatically.
EnvironmentBase URL
Production (Mainnet)https://live.agribackup.com
Sandbox (Testnet)https://sandbox.agribackup.com

Authentication

Every request must include your API key as a Bearer token in the Authorization header:
Authorization: Bearer sk_live_YOUR_API_KEY
  • Keys prefixed sk_live_ authenticate against the production environment.
  • Keys prefixed sk_test_ authenticate against the sandbox environment.
Generate and manage your API keys in the Dashboard or via the API Keys endpoints.

Request & Response Format

  • All request bodies must be JSON with Content-Type: application/json.
  • File uploads (land tenure documents, GeoJSON files) use multipart/form-data.
  • All timestamps are ISO 8601 in UTC.
  • All monetary quantities use decimal strings to avoid floating-point precision issues.

Idempotency

Async ingestion endpoints (POST /polygons, POST /batches, POST /shipments/link) support idempotency keys. Pass a unique UUID in the Idempotency-Key header. If you retry the same key within 24 hours, the original response is returned without re-processing.
Idempotency-Key: 550e8400-e29b-41d4-a716-446655440000

Rate Limits

The API enforces a limit of 100 requests per second for production keys. Every response includes rate limit headers:
HeaderDescription
X-RateLimit-LimitYour per-second allowance
X-RateLimit-RemainingRequests remaining in the current window
X-RateLimit-ResetUTC epoch seconds when the window resets
When you exceed the limit, the API returns 429 Too Many Requests. Implement exponential backoff before retrying.

API Resource Groups

Risk & Assessment

Pre-assess deforestation risk by polygon or coordinate before full ingestion.

API Keys

Generate, rotate, and revoke API keys for your organization.

Credentials

Store and manage TRACES NT credentials for automated DDS submission.

Suppliers

Map ERP vendor IDs to EU Operator UUIDs for compliant traceability.

Polygons

Ingest and satellite-verify GeoJSON farm polygons.

Batches

Register consolidated commodity batches anchored on Hedera DLT.

Logistics

Cryptographically link batches to shipments via Bill of Lading.

Declarations

Generate, submit, and revoke Due Diligence Statements for TRACES NT.

Evidence

Retrieve Hedera DLT cryptographic evidence for batches, polygons, and shipments.

Webhooks

Register endpoints to receive real-time compliance event notifications.

Archival

Generate and download bulk compliance archive packages for auditors.

Jobs & Diagnostics

Monitor async job status and check API infrastructure health.

Error Responses

All errors follow a consistent JSON schema:
{
  "code": "POLYGON_NOT_COMPLIANT",
  "message": "One or more referenced polygons have not passed satellite verification.",
  "details": [
    {
      "code": "POLYGON_NOT_VERIFIED",
      "field": "polygonIds",
      "issue": "Polygon poly_abc123 has not completed satellite verification."
    }
  ]
}
See the Error Codes reference for the complete list of status codes and error types.