Saltar al contenido principal

Orbis Shield API

The Orbis Shield API lets you call ROUNDBOX threat‑intelligence and message‑inspection directly from your own systems — a custom SMS/WhatsApp gateway, a firewall or SIEM enrichment step, a reputation‑lookup service, or any backend that needs a fast verdict.

Base URL

https://shield.orbis.roundbox.dev/api/v1

All requests use TLS. Responses are JSON.

What you can call

ModuleEndpointPurpose
URL FilterGET /urlsearchReputation/category for a URL or domain
IP ReputationGET /ipsearchReputation for an IP or ASN
DNS ReputationGET /dnssearchReputation for a domain
Darkweb LookupGET /darkwebExposure for a domain, IP, or email
Antispam / AntiphishingPOST /antispamFull L1–L4 inspection of a message

Each endpoint requires an API key scoped to that module (see Authentication).

How it fits together

  1. Create a tenant API key in the Orbis Shield portal (Developer → API keys) and grant it the module scopes you need.
  2. Call the endpoints below with your X-Tenant-ID and X-API-Key.
  3. Optionally, register webhooks so Shield calls you when an inspection is flagged.

Rate limits & quota

Calls count against your tenant's monthly quota. When the quota is exhausted the API returns 429 Too Many Requests. Your current usage, cost per message, and remaining quota are visible in the portal under Billing.

Errors

Standard HTTP status codes:

StatusMeaning
200Success
400Bad request (missing/invalid parameter)
401Missing or invalid X-Tenant-ID / X-API-Key
403The key lacks the scope for this module
429Monthly quota exceeded

Error bodies are JSON: { "statusCode": 403, "message": "API key is missing the required scope: darkweb" }.