How do I validate a license key with ValidonX?

Send a POST request to /api/v1/integration/licenses/{licenseKey}/validate with your X-API-Key header. The response includes valid (boolean), license status, expiry date, and entitlements as a flexible JSON key-value object.

ValidonX is a multi-tenant SaaS licensing platform that provides license key validation, device activation tracking, entitlement enforcement, and usage metering via a REST API. Software vendors use it to manage licensing for their products.

How do ValidonX entitlements work?

Entitlements are a flexible JSON key-value store on each license. You define whatever keys make sense for your product (e.g., {"plan": "pro", "domains": 5, "api.access": true}). They are returned in the license validation response and can also be checked via the /entitlements/check endpoint.

What programming languages does ValidonX support?

ValidonX provides a REST API that works with any language. Official SDK examples and copy-paste client classes are provided for PHP, JavaScript/Node.js, Python, and cURL. The API uses standard JSON over HTTPS.

How much does ValidonX cost?

ValidonX offers a free Starter tier (1 product, 100 license keys, 10,000 API calls/month), a Pro tier at $49/month (5 products, unlimited keys, 100,000 API calls/month), and custom Enterprise pricing with unlimited everything and dedicated database.

SDK Usage Examples

Copy-paste examples for the ValidonX PHP and JavaScript SDKs.

PHP SDK

Install

bash

composer require validonx/php-sdk

Validate a License Key

php

use ValidonX\Client;

$client = new Client('VXS-your-secret-api-key');

$result = $client->licenses()->validate('VALIDONX-XXXX-XXXX-XXXX-XXXX');

if ($result->valid) {
    echo "License is valid!";
    echo "Product: " . $result->product_name;
    echo "Plan: " . ($result->license->entitlements->plan ?? 'none');
    echo "Expires: " . $result->expires_at;
} else {
    echo "Invalid: " . $result->reason;
}

Create an Activation

php

$activation = $client->activations()->create([
    'license_key' => 'VALIDONX-XXXX-XXXX-XXXX-XXXX',
    'hardware_id' => hash('sha256', php_uname('n') . php_uname('m')),
    'device_name' => gethostname(),
    'metadata' => [
        'os' => PHP_OS,
        'php_version' => PHP_VERSION,
    ],
]);

echo "Activation ID: " . $activation->id;
echo "Status: " . $activation->status; // 'active'

Validate an Activation

php

$validation = $client->activations()->validate($activation->id);

if ($validation->valid) {
    echo "Activation is valid";
} else {
    echo "Activation invalid: " . $validation->reason;
    // Possible reasons: 'expired', 'revoked', 'device_mismatch'
}

Check Entitlements

php

$check = $client->entitlements()->check([
    'license_key' => 'VALIDONX-XXXX-XXXX-XXXX-XXXX',
    'entitlement_code' => 'api_access',
]);

if ($check->entitled) {
    echo "Feature is available";
    echo "Limit: " . $check->limit_value; // e.g., 1000
    echo "Used: " . $check->current_usage;
}

Record Usage

php

$client->usage()->record([
    'metric' => 'api_calls',
    'value' => 1,
    'metadata' => [
        'endpoint' => '/api/users',
    ],
]);

Error Handling

php

use ValidonX\Exceptions\ValidationException;
use ValidonX\Exceptions\RateLimitException;
use ValidonX\Exceptions\AuthenticationException;

try {
    $result = $client->licenses()->validate($licenseKey);
} catch (AuthenticationException $e) {
    // Invalid API key
    echo "Auth error: " . $e->getMessage();
} catch (RateLimitException $e) {
    // Too many requests
    echo "Rate limited. Retry after: " . $e->retryAfter . " seconds";
} catch (ValidationException $e) {
    // Invalid request
    echo "Validation error: " . $e->getMessage();
}

JavaScript / Node.js SDK

Install

bash

npm install @validonx/sdk

Validate a License Key

typescript

import { ValidonXClient } from '@validonx/sdk'

const client = new ValidonXClient({
  apiKey: 'VXS-your-secret-api-key',
})

const result = await client.licenses.validate('VALIDONX-XXXX-XXXX-XXXX-XXXX')

if (result.valid) {
  console.log('License is valid!')
  console.log('Product:', result.product_name)
  console.log('Plan:', result.license?.entitlements?.plan)
  console.log('Expires:', result.expires_at)
} else {
  console.log('Invalid:', result.reason)
}

Create an Activation

typescript

import { createHash } from 'crypto'
import { hostname } from 'os'

const activation = await client.activations.create({
  license_key: 'VALIDONX-XXXX-XXXX-XXXX-XXXX',
  hardware_id: createHash('sha256').update(hostname()).digest('hex'),
  device_name: hostname(),
  metadata: {
    platform: process.platform,
    node_version: process.version,
  },
})

console.log('Activation ID:', activation.id)

Validate an Activation

typescript

const validation = await client.activations.validate(activation.id)

if (validation.valid) {
  console.log('Activation is valid')
} else {
  console.log('Invalid:', validation.reason)
}

Check Entitlements

typescript

const check = await client.entitlements.check({
  license_key: 'VALIDONX-XXXX-XXXX-XXXX-XXXX',
  entitlement_code: 'api_access',
})

if (check.entitled) {
  console.log('Feature available')
  console.log('Limit:', check.limit_value)
  console.log('Used:', check.current_usage)
}

Record Usage

typescript

await client.usage.record({
  metric: 'api_calls',
  value: 1,
  metadata: {
    endpoint: '/api/users',
  },
})

Webhook Signature Verification

typescript

import { verifyWebhookSignature } from '@validonx/sdk'

// In your webhook handler (Express example)
app.post('/webhooks/validonx', (req, res) => {
  const signature = req.headers['x-validonx-signature']
  const isValid = verifyWebhookSignature(
    req.body,
    signature,
    'your-webhook-secret'
  )

  if (!isValid) {
    return res.status(401).json({ error: 'Invalid signature' })
  }

  const event = req.body
  switch (event.type) {
    case 'license.created':
      console.log('New license:', event.data.license_key)
      break
    case 'activation.created':
      console.log('New activation:', event.data.activation_id)
      break
  }

  res.json({ received: true })
})

Error Handling

typescript

import {
  AuthenticationError,
  RateLimitError,
  ValidationError,
} from '@validonx/sdk'

try {
  const result = await client.licenses.validate(licenseKey)
} catch (error) {
  if (error instanceof AuthenticationError) {
    console.error('Invalid API key')
  } else if (error instanceof RateLimitError) {
    console.error(`Rate limited. Retry after ${error.retryAfter}s`)
  } else if (error instanceof ValidationError) {
    console.error('Validation:', error.message)
  }
}

SDK Usage Examples ​

PHP SDK ​

Install ​

Validate a License Key ​

Create an Activation ​

Validate an Activation ​

Check Entitlements ​

Record Usage ​

Error Handling ​

JavaScript / Node.js SDK ​

Install ​

Validate a License Key ​

Create an Activation ​

Validate an Activation ​

Check Entitlements ​

Record Usage ​

Webhook Signature Verification ​

Error Handling ​

SDK Usage Examples

PHP SDK

Install

Validate a License Key

Create an Activation

Validate an Activation

Check Entitlements

Record Usage

Error Handling

JavaScript / Node.js SDK

Install

Validate a License Key

Create an Activation

Validate an Activation

Check Entitlements

Record Usage

Webhook Signature Verification

Error Handling