zeta
Api

Endpoints

API endpoints for Zeta Registry.

API Overview

Zeta exposes HTTP endpoints for license validation and access management of protected components. All endpoints are designed to work securely with JWT-based authentication and Polar.sh license integration.

For a full list of required environment variables and their configuration, see the Environment Variables documentation.

Endpoint Details

POST /registry/api/validate-license

Validates a Polar.sh license key and, if valid, returns a JWT access token.

Request Body:

{
  "licenseKey": "string"
}

Successful Response:

{
  "valid": true,
  "token": "jwt-token-string"
}

Error Response:

{
  "valid": false,
  "error": "Invalid license key."
}
  • Method: POST only
  • Authentication: Not required for this endpoint
  • Logic:
    • Uses the validateLicenseKey function to verify the license with Polar.sh.
    • If the license is valid (status: "granted"), generates a JWT token using generateToken.
    • If invalid, returns an error message.
  • Environment Variables: Requires POLAR_ORG_ID, POLAR_ACCESS_TOKEN, and REGISTRY_TOKEN_SECRET. See Environment Variables for details.

Security Considerations

  • All critical endpoints (except license validation) require a valid JWT token, enforced by middleware.
  • The middleware ensures only users with a valid token can access protected resources under /registry.
  • For more on token management, see Tokens & Auth.

shadcn/ui

Integrate with shadcn/ui for UI components in Zeta Registry.

Tokens & Auth

Authentication and token management in Zeta Registry.

On this page