sanctions.tr
All contentGuide

Sanctions API integration guide

Integration principles for secure key management, limits and failure scenarios.

An API integration brings screening into a product flow and requires explicit boundaries for credentials, limits and failure handling.

Store keys on the server

Do not place API keys in browser code or mobile packages. Use a secret manager or protected server environment and prevent keys from appearing in logs.

Reduce scope

Define required domain, IP, source and usage policies. Use separate keys by environment and document rotation in advance.

Handle failures safely

Apply controlled retries for timeouts, rate limits and temporary errors. Never convert an uncertain response into an automatic clear outcome.

Use the API documentation for current endpoints and examples.