How do I validate a license key with ValidonX?

Send a POST request to /api/v1/integration/licenses/{licenseKey}/validate with your X-API-Key header. The response includes valid (boolean), license status, expiry date, and entitlements as a flexible JSON key-value object.

ValidonX is a multi-tenant SaaS licensing platform that provides license key validation, device activation tracking, entitlement enforcement, and usage metering via a REST API. Software vendors use it to manage licensing for their products.

How do ValidonX entitlements work?

Entitlements are a flexible JSON key-value store on each license. You define whatever keys make sense for your product (e.g., {"plan": "pro", "domains": 5, "api.access": true}). They are returned in the license validation response and can also be checked via the /entitlements/check endpoint.

What programming languages does ValidonX support?

ValidonX provides a REST API that works with any language. Official SDK examples and copy-paste client classes are provided for PHP, JavaScript/Node.js, Python, and cURL. The API uses standard JSON over HTTPS.

How much does ValidonX cost?

ValidonX offers a free Starter tier (1 product, 100 license keys, 10,000 API calls/month), a Pro tier at $49/month (5 products, unlimited keys, 100,000 API calls/month), and custom Enterprise pricing with unlimited everything and dedicated database.

Validate License

Validate a license key and retrieve its current status, expiry, and entitlements.

Endpoint

POST /api/v1/integration/licenses/{licenseKey}/validate

Headers

Header	Required	Value
`X-API-Key`	Yes	Your API key
`Content-Type`	Yes	`application/json`
`X-Request-ID`	Recommended	UUID for tracing

Path Parameters

Parameter	Type	Description
`licenseKey`	string	The license key to validate

Response (200 OK)

json

{
  "data": {
    "valid": true,
    "license": {
      "id": 42,
      "key": "VX-ACME-abc123def456",
      "type": "subscription",
      "status": "active",
      "expires_at": "2027-03-30T00:00:00.000000Z",
      "entitlements": {
        "plan": "pro"
      }
    }
  },
  "meta": {
    "request_id": "uuid",
    "api_version": "1"
  }
}

The valid field is true when the license exists, is active, and has not expired.

The entitlements field is a flexible key-value object containing the license's granted entitlements (e.g., {"plan": "pro"}, {"plan": "enterprise", "domains": 5}). Returns an empty object {} if no entitlements are set.

Error Responses

Code	HTTP	Description
`LICENSE.NOT_FOUND`	404	License key does not exist for this tenant
`LICENSE.REVOKED`	403	License has been revoked
`AUTH.INVALID_API_KEY`	401	Invalid or missing API key
`TENANT.STATUS.SUSPENDED`	403	Tenant is suspended
`RATE_LIMIT.EXCEEDED`	429	Rate limit exceeded

Notes

The license's last_used_at timestamp is updated on each validation
A license with status: "expired" returns valid: false but does not throw an error
The license must belong to the tenant associated with the API key

Validate License ​

Endpoint ​

Headers ​

Path Parameters ​

Response (200 OK) ​

Error Responses ​

Notes ​