Snabbstart

Få din API-nyckel och gör din första förfrågan på under 5 minuter.

1Hämta din API-nyckel

Registrera dig för ett gratis konto för att få din API-nyckel direkt, eller prova vår live-demo först.

Din API-nyckel ser ut så här: sk_live_abc123...

2Gör din första förfrågan

Välj ditt föredragna språk:

curl -X POST https://api.scorika.com/v1/score \
  -H "X-Api-Key: YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "email": "user@example.com",
    "ip": "1.2.3.4"
  }'

import requests

response = requests.post(
    "https://api.scorika.com/v1/score",
    headers={
        "X-Api-Key": "YOUR_API_KEY",
        "Content-Type": "application/json"
    },
    json={
        "email": "user@example.com",
        "ip": "1.2.3.4"
    }
)

data = response.json()
print(f"Score: {data['data']['score']}")
print(f"Decision: {data['data']['decision']}")

const response = await fetch('https://api.scorika.com/v1/score', {
  method: 'POST',
  headers: {
    'X-Api-Key': 'YOUR_API_KEY',
    'Content-Type': 'application/json'
  },
  body: JSON.stringify({
    email: 'user@example.com',
    ip: '1.2.3.4'
  })
});

const data = await response.json();
console.log(`Score: ${data.data.score}`);
console.log(`Decision: ${data.data.decision}`);

require 'net/http'
require 'json'

uri = URI('https://api.scorika.com/v1/score')
http = Net::HTTP.new(uri.host, uri.port)
http.use_ssl = true

request = Net::HTTP::Post.new(uri.path)
request['X-Api-Key'] = 'YOUR_API_KEY'
request['Content-Type'] = 'application/json'
request.body = { email: 'user@example.com', ip: '1.2.3.4' }.to_json

response = http.request(request)
data = JSON.parse(response.body)

puts "Score: #{data['data']['score']}"
puts "Decision: #{data['data']['decision']}"

package main

import (
  "bytes"
  "encoding/json"
  "fmt"
  "net/http"
)

func main() {
  payload := map[string]string{
    "email": "user@example.com",
    "ip":    "1.2.3.4",
  }
  jsonPayload, _ := json.Marshal(payload)

  req, _ := http.NewRequest("POST", "https://api.scorika.com/v1/score",
    bytes.NewBuffer(jsonPayload))
  req.Header.Set("X-Api-Key", "YOUR_API_KEY")
  req.Header.Set("Content-Type", "application/json")

  client := &http.Client{}
  resp, _ := client.Do(req)
  defer resp.Body.Close()

  var result map[string]interface{}
  json.NewDecoder(resp.Body).Decode(&result)
  data := result["data"].(map[string]interface{})
  fmt.Printf("Score: %v\n", data["score"])
  fmt.Printf("Decision: %v\n", data["decision"])
}

<?php
$ch = curl_init('https://api.scorika.com/v1/score');

curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_POST => true,
    CURLOPT_HTTPHEADER => [
        'X-Api-Key: YOUR_API_KEY',
        'Content-Type: application/json'
    ],
    CURLOPT_POSTFIELDS => json_encode([
        'email' => 'user@example.com',
        'ip' => '1.2.3.4'
    ])
]);

$response = curl_exec($ch);
curl_close($ch);

$data = json_decode($response, true);
echo "Score: " . $data['data']['score'] . "\n";
echo "Decision: " . $data['data']['decision'] . "\n";
?>

3Hantera svaret

Svar

{
  "data": {
    "case_id": "case_abc123def456",
    "score": 23,
    "decision": "allow",
    "confidence": 0.94,
    "reason_codes": [
      {
        "code": "EMAIL_FREE_MAJOR",
        "severity": "low",
        "score_impact": 5,
        "description": "Free email provider detected"
      }
    ],
    "signals": [
      {
        "type": "email",
        "status": "success",
        "score_delta": 5
      },
      {
        "type": "ip",
        "status": "success",
        "score_delta": 0
      }
    ]
  },
  "meta": {
    "request_id": "req_xyz789",
    "latency_ms": 142
  }
}

poäng: 0-30

Låg risk - tillåt vanligtvis

poäng: 31-70

Mellanrisk - granskning rekommenderas

poäng: 71-100

Hög risk - neka vanligtvis

Integrationsguide

Produktionsklara klientimplementationer med felhantering, omförsökslogik och bästa praxis.

⚠️

Kritiskt: Ange alltid en timeout!

Anropas aldrig Scorika API synkront i köp- eller registreringsflöden utan en timeout. Om vårt API är långsamt eller otillgängligt ska dina kunder inte blockeras.

Rekommenderad timeout: 3–5 sekunder

Fallback-beslut: granska (tillåt + asynkron kontroll)

Bästa praxis

✓ Gör

• Ange timeout (3-5s) på alla API-anrop
• Implementera fallback för timeouts/fel
• Använd miljövariabler för API-nycklar
• Logga case_ids för felsökning

✗ Gör inte

• Blockera inte köpflöden vid API-fel
• Gör inte synkrona anrop utan timeout
• Exponera inte API-nycklar i kod på klientsidan
• Lagra inte råa API-svar med personuppgifter (PII)

Exempel på klienter för produktion

Kopiera en av dessa produktionsklara klienter:

# scorika_client.py - Production-ready Scorika client

import requests
from requests.exceptions import Timeout, RequestException
from dataclasses import dataclass
from typing import Optional, List, Dict, Any
from enum import Enum

class Decision(Enum):
    ALLOW = "allow"
    REVIEW = "review"
    DENY = "deny"

@dataclass
class ScoreResult:
    case_id: Optional[str]
    score: int
    decision: Decision
    confidence: float
    signals: List[Dict]
    fallback: bool = False  # True if using fallback response

class ScorikaClient:
    BASE_URL = "https://api.scorika.com/v1"
    TIMEOUT = 5  # seconds - never block critical flows!

    def __init__(self, api_key: str):
        self.api_key = api_key
        self.session = requests.Session()
        self.session.headers.update({
            "X-Api-Key": api_key,
            "Content-Type": "application/json"
        })

    def score(
        self,
        email: Optional[str] = None,
        ip: Optional[str] = None,
        domain: Optional[str] = None,
        url: Optional[str] = None
    ) -> ScoreResult:
        """Evaluate risk for given inputs with timeout protection."""
        payload = {k: v for k, v in {
            "email": email, "ip": ip, "domain": domain, "url": url
        }.items() if v}

        try:
            response = self.session.post(
                f"{self.BASE_URL}/score",
                json=payload,
                timeout=self.TIMEOUT  # IMPORTANT: Always set timeout!
            )
            response.raise_for_status()
            data = response.json()["data"]

            return ScoreResult(
                case_id=data["case_id"],
                score=data["score"],
                decision=Decision(data["decision"]),
                confidence=data["confidence"],
                signals=data.get("signals", [])
            )
        except (Timeout, RequestException) as e:
            # Fallback: allow but flag for async review
            print(f"Scorika unavailable: {e}, using fallback")
            return ScoreResult(
                case_id=None,
                score=50,
                decision=Decision.REVIEW,
                confidence=0.0,
                signals=[],
                fallback=True
            )

# Usage example
if __name__ == "__main__":
    client = ScorikaClient("sk_live_your_api_key")
    result = client.score(email="user@example.com", ip="1.2.3.4")

    if result.fallback:
        print("⚠ Using fallback - queue for async review")
    elif result.decision == Decision.ALLOW:
        print(f"✓ Allowed (score: {result.score})")
    elif result.decision == Decision.REVIEW:
        print(f"⚠ Review needed (score: {result.score})")
    else:
        print(f"✗ Denied (score: {result.score})")

// scorika-client.ts - Production-ready Scorika client

interface ScoreResult {
  case_id: string | null;
  score: number;
  decision: 'allow' | 'review' | 'deny';
  confidence: number;
  signals: Array<{ type: string; risk: string; reason_codes: string[] }>;
  fallback?: boolean;
}

class ScorikaClient {
  private baseUrl = 'https://api.scorika.com/v1';
  private timeout = 5000;  // 5 seconds - never block critical flows!

  constructor(private apiKey: string) {}

  async score(input: { email?: string; ip?: string }): Promise<ScoreResult> {
    const controller = new AbortController();
    const timeoutId = setTimeout(() => controller.abort(), this.timeout);

    try {
      const response = await fetch(`${this.baseUrl}/score`, {
        method: 'POST',
        headers: {
          'X-Api-Key': this.apiKey,
          'Content-Type': 'application/json',
        },
        body: JSON.stringify(input),
        signal: controller.signal,  // IMPORTANT: Enable timeout!
      });

      clearTimeout(timeoutId);

      if (!response.ok) {
        throw new Error(`API error: ${response.status}`);
      }

      const json = await response.json();
      return json.data as ScoreResult;

    } catch (error) {
      clearTimeout(timeoutId);

      // Fallback: allow but flag for async review
      console.error('Scorika unavailable:', error);
      return {
        case_id: null,
        score: 50,
        decision: 'review',
        confidence: 0,
        signals: [],
        fallback: true,
      };
    }
  }
}

// Usage example
const client = new ScorikaClient('sk_live_your_api_key');

async function handleCheckout(email: string, ip: string) {
  const result = await client.score({ email, ip });

  if (result.fallback) {
    console.log('⚠ Scorika unavailable - proceeding with async review');
    // Queue order for background verification
    return { proceed: true, needsReview: true };
  }

  if (result.decision === 'deny') {
    return { proceed: false, reason: 'High risk detected' };
  }

  return { proceed: true, needsReview: result.decision === 'review' };
}

export { ScorikaClient, ScoreResult };

# scorika_client.rb - Production-ready Scorika client

require 'net/http'
require 'json'
require 'uri'
require 'timeout'

module Scorika
  class Error < StandardError; end
  class TimeoutError < Error; end

  ScoreResult = Struct.new(
    :case_id, :score, :decision, :confidence, :signals, :fallback,
    keyword_init: true
  ) do
    def allow?; decision == 'allow'; end
    def deny?; decision == 'deny'; end
    def review?; decision == 'review'; end
  end

  class Client
    BASE_URL = 'https://api.scorika.com/v1'.freeze
    TIMEOUT = 5  # seconds - never block critical flows!

    def initialize(api_key)
      @api_key = api_key
    end

    def score(email: nil, ip: nil)
      payload = { email: email, ip: ip }.compact
      response = post('/score', payload)
      parse_result(response['data'])
    rescue Net::OpenTimeout, Net::ReadTimeout, Errno::ECONNREFUSED => e
      # Fallback: allow but flag for async review
      warn "Scorika unavailable: #{e.message}, using fallback"
      fallback_result
    end

    private

    def post(path, payload)
      uri = URI.parse("#{BASE_URL}#{path}")
      http = Net::HTTP.new(uri.host, uri.port)
      http.use_ssl = true
      http.open_timeout = TIMEOUT  # Connection timeout
      http.read_timeout = TIMEOUT  # Response timeout

      request = Net::HTTP::Post.new(uri.path)
      request['X-Api-Key'] = @api_key
      request['Content-Type'] = 'application/json'
      request.body = payload.to_json

      response = http.request(request)
      JSON.parse(response.body)
    end

    def parse_result(data)
      ScoreResult.new(
        case_id: data['case_id'],
        score: data['score'],
        decision: data['decision'],
        confidence: data['confidence'],
        signals: data['signals'] || [],
        fallback: false
      )
    end

    def fallback_result
      ScoreResult.new(
        case_id: nil,
        score: 50,
        decision: 'review',
        confidence: 0.0,
        signals: [],
        fallback: true
      )
    end
  end
end

# Usage example
client = Scorika::Client.new('sk_live_your_api_key')
result = client.score(email: 'user@example.com', ip: '1.2.3.4')

if result.fallback
  puts "⚠ Scorika unavailable - proceeding with async review"
elsif result.allow?
  puts "✓ Allowed (score: #{result.score})"
elsif result.review?
  puts "⚠ Review needed (score: #{result.score})"
else
  puts "✗ Denied (score: #{result.score})"
end

Felhantering

Implementera alltid korrekt felhantering för produktionsbruk:

Error Handling Pattern

try {  const result = await client.score({ email, ip });  // Handle decision} catch (error) {  if (error.status === 429) {    // Rate limited - back off and retry    await sleep(retryAfter * 1000);    return retry();  } else if (error.status >= 500) {    // Server error - allow and log for investigation    console.error('Scorika unavailable, allowing by default');    return { decision: 'allow', fallback: true };  }  throw error;}

Autentisering

Alla API-förfrågningar kräver autentisering med en API-nyckel som skickas i headern X-Api-Key.

Säkerhetsmeddelande: Exponera aldrig din API-nyckel i kod på klientsidan. Gör alltid API-anrop från din server.

curl -H "X-Api-Key: sk_live_your_api_key_here" \     https://api.scorika.com/v1/score

Felhantering

API:et använder standard HTTP-statuskoder och returnerar fel i ett konsekvent JSON-format.

Status	Beskrivning
`200`	Lyckat
`400`	Ogiltig förfrågan - Felaktiga parametrar
`401`	Obehörig - Ogiltig API-nyckel
`403`	Förbjudet - Saknar behörighet
`429`	Anropsgräns överskriden
`500`	Internt serverfel

Exempel på felsvar

400 Bad Request

{
  "error": {
    "code": "VALIDATION_ERROR",
    "message": "Invalid request parameters",
    "details": [
      {
        "field": "email",
        "code": "INVALID_FORMAT",
        "message": "Email must be a valid email address"
      }
    ],
    "request_id": "req_xyz789",
    "documentation_url": "https://docs.scorika.io/errors/VALIDATION_ERROR"
  }
}

POST /v1/score

Evaluate risk for a given set of inputs and return a risk score with decision.

Request Body

Parameter	Typ	Required	Description
`email`	string	No*	Email address to evaluate
`ip`	string	No*	IP address (IPv4 or IPv6)
`domain`	string	No*	Domain name to check
`url`	string	No*	Full URL to analyze

* At least one input parameter is required.

E-post-signal

E-post-signalen analyserar e-postadresser för olika riskindikatorer.

Orsakskoder

disposable_email

E-posten kommer från en känd leverantör av tillfällig e-post

free_provider

E-posten kommer från en gratisleverantör (Gmail, Yahoo, etc.)

valid_mx

Domänen har giltiga MX-poster

IP-signal

IP-signalen analyserar IP-adresser för VPN, proxy och andra riskindikatorer.

Orsakskoder

tor_exit_node

IP-adressen är en känd Tor exit node

vpn_detected

IP-adressen tillhör en känd VPN-leverantör

residential

IP-adressen verkar vara en hemanslutning

Domän-signal

Domän-signalen analyserar domännamn med avseende på ålder, rykte och andra indikatorer.

Orsakskoder

newly_registered

Domänen registrerades inom de senaste 30 dagarna

young_domain

Domänen är yngre än 6 månader

established_domain

Domänen är äldre än 1 år

SDKs & Developer Tools

Official SDKs, API collections, and developer tools to speed up your integration.

🐍

Python SDK

pip install scorika

Official Python client with async support, type hints, and retry logic.

Python 3.8+Kommer snart

📦

Node.js SDK

npm install @scorika/client

TypeScript-first SDK with full type definitions and ESM support.

Node 18+Kommer snart

💎

Ruby Gem

gem install scorika

Rails-friendly gem with ActiveSupport integration.

Ruby 3.0+Kommer snart

Developer Tools

📮

Postman Collection

Import ready-to-use requests into Postman

→

📋

OpenAPI Specification

Download the OpenAPI 3.0 spec for code generation

→

📖

Interactive API Reference

Try API calls directly in your browser

→

🧪

Mock Server

Test your integration without hitting production

https://mock.scorika.com/v1