Admin API
Admin API
Server-to-server CRUD with scoped keys.
The Admin API is the surface a back-office integration talks to: ERP syncs,
inventory pipelines, bulk catalog tooling. Everything under
/api/v1/admin/* requires an admin key with the right scope.
Authentication
Authorization: Bearer sk_live_a1b2c3_AbCdEf...Each admin key carries an immutable set of scopes chosen at creation.
Calling an endpoint without the required scope returns 403 insufficient_scope with the scope name in the body.
See Authentication for the full credential model and the complete scope catalogue.
Base URL
https://api.sellvik.appSame canonical host as the storefront API. Admin routes are not CORS- enabled — browsers cannot call them. This is by design (CORS).
Endpoints
| Resource group | Required scope |
|---|---|
| Products | products:read / products:write |
| Variants | products:write |
| Categories | categories:read / categories:write |
| Inventory | inventory:write |
| Media | media:write |
| Webhooks management | webhooks:read / webhooks:write |
Rate limit
1000 requests per minute per key. See Rate limits.