API Reference
Complete reference for Tathor's REST API. Access business intelligence, competitor profiles, and analysis data programmatically.
Overview
The Tathor API is a RESTful API that provides programmatic access to business intelligence and competitor analysis features. All requests must be made over HTTPS to the base URL https://app.tathor.com/api/v1.
All responses are returned in JSON format. The API follows REST conventions, uses standard HTTP status codes, and requires authentication via Bearer tokens in the Authorization header.
Authentication
All API requests require authentication using a Bearer token. Include your API key in the Authorization header of every request.
Getting Your API Key
API keys can be generated from your account settings in the Tathor dashboard. Each key has full access to your account's resources.
Using Your API Key
Include your API key in the Authorization header using the Bearer authentication scheme:
Authorization: Bearer YOUR_API_KEYSecurity Note: Keep your API keys secure and never commit them to version control. Rotate keys regularly and revoke any keys that may have been compromised.
Endpoints
The Tathor API provides the following endpoints for managing analyses, profiles, and webhooks:
| Method | Endpoint | Description |
|---|---|---|
POST |
/api/v1/analyze |
Submit a business or website URL for analysis |
GET |
/api/v1/profiles |
Retrieve a paginated list of competitor profiles |
GET |
/api/v1/profiles/:id |
Retrieve a specific competitor profile by ID |
POST |
/api/v1/webhooks |
Register a new webhook endpoint |
GET |
/api/v1/webhooks |
List all registered webhook endpoints |
Analyze Endpoint
Submit a business or website URL for analysis. The endpoint returns immediately with a job ID, and analysis runs asynchronously. Use webhooks or poll the profiles endpoint to check completion status.
Endpoint
POST https://app.tathor.com/api/v1/analyzeRequest Body
| Parameter | Type | Required | Description |
|---|---|---|---|
url |
string | Yes | The full URL (including protocol) of the website to analyze. Must be a valid HTTP or HTTPS URL. |
analysis_type |
string | Yes | Type of analysis to perform. Options: business_intelligence (quick analysis), profile (detailed competitor profile), or full (comprehensive analysis). |
Example Request
const response = await fetch('https://app.tathor.com/api/v1/analyze', {
method: 'POST',
headers: {
'Content-Type': 'application/json',
'Authorization': 'Bearer YOUR_API_KEY'
},
body: JSON.stringify({
url: 'https://example.com',
analysis_type: 'business_intelligence'
})
});
const data = await response.json();
console.log(data);Response
Returns a 201 Created status code with the analysis job details:
{
"id": "analysis_abc123",
"status": "processing",
"url": "https://example.com",
"analysis_type": "business_intelligence",
"created_at": "2024-01-26T10:00:00Z",
"estimated_completion": "2024-01-26T10:10:00Z"
}| Field | Type | Description |
|---|---|---|
id |
string | Unique identifier for the analysis job |
status |
string | Current status: processing, completed, or failed |
estimated_completion |
string (ISO 8601) | Estimated completion time in UTC |
Profiles Endpoint
Retrieve competitor profiles generated from completed analyses. Profiles contain comprehensive business intelligence including customer insights, pain points, and competitive positioning.
List Profiles
GET https://app.tathor.com/api/v1/profilesQuery Parameters
| Parameter | Type | Required | Description |
|---|---|---|---|
page |
integer | No | Page number for pagination (default: 1) |
limit |
integer | No | Number of results per page (default: 20, max: 100) |
status |
string | No | Filter by status: completed, processing, or failed |
Example Request
GET https://app.tathor.com/api/v1/profiles?page=1&limit=20&status=completedExample Response
{
"data": [
{
"id": "profile_xyz789",
"business_name": "Example Corp",
"url": "https://example.com",
"status": "completed",
"created_at": "2024-01-26T10:00:00Z",
"updated_at": "2024-01-26T10:10:00Z"
}
],
"pagination": {
"page": 1,
"limit": 20,
"total": 45,
"total_pages": 3
}
}Get Profile by ID
GET https://app.tathor.com/api/v1/profiles/:idRetrieve detailed information for a specific profile, including all analysis data.
Example Response
{
"id": "profile_xyz789",
"business_name": "Example Corp",
"url": "https://example.com",
"status": "completed",
"data": {
"scorecard": {
"overall_score": 85,
"categories": { ... }
},
"pain_points": [
{
"title": "Customer Service Issues",
"severity": "high",
"frequency": 0.42
}
],
"solutions": [
{
"title": "24/7 Support",
"impact": "high",
"feasibility": "medium"
}
],
"revenue_impact": {
"estimated_annual": 2500000,
"currency": "USD"
}
},
"created_at": "2024-01-26T10:00:00Z",
"updated_at": "2024-01-26T10:10:00Z"
}Webhooks
Webhooks allow you to receive real-time notifications when analysis jobs complete or encounter errors. Configure webhook endpoints to automatically process events without polling.
Create Webhook
POST https://app.tathor.com/api/v1/webhooksRequest Body
| Parameter | Type | Required | Description |
|---|---|---|---|
url |
string | Yes | The HTTPS URL where webhook events will be sent |
events |
array | Yes | Array of event types to subscribe to: analysis.completed, analysis.failed |
secret |
string | Yes | Secret key used to verify webhook signatures. Keep this secure. |
Example Request
POST https://app.tathor.com/api/v1/webhooks
Content-Type: application/json
Authorization: Bearer YOUR_API_KEY
{
"url": "https://your-app.com/webhook",
"events": ["analysis.completed", "analysis.failed"],
"secret": "your_webhook_secret"
}Example Response
{
"id": "webhook_123",
"url": "https://your-app.com/webhook",
"events": ["analysis.completed", "analysis.failed"],
"created_at": "2024-01-26T10:00:00Z",
"active": true
}List Webhooks
GET https://app.tathor.com/api/v1/webhooksRetrieve all registered webhook endpoints for your account.
Webhook Payload
When an event occurs, Tathor sends a POST request to your webhook URL with the following payload structure:
{
"event": "analysis.completed",
"data": {
"id": "analysis_abc123",
"status": "completed",
"url": "https://example.com",
"profile_id": "profile_xyz789"
},
"timestamp": "2024-01-26T10:10:00Z",
"signature": "sha256=..."
}Security: Always verify webhook signatures using the secret you provided. The signature is a SHA-256 HMAC of the request body using your secret key, sent in the X-Tathor-Signature header.
Error Handling
The API uses standard HTTP status codes to indicate success or failure. Error responses include a JSON object with details about what went wrong.
HTTP Status Codes
| Code | Description |
|---|---|
200 |
OK - Request succeeded |
201 |
Created - Resource created successfully |
400 |
Bad Request - Invalid request parameters |
401 |
Unauthorized - Invalid or missing API key |
404 |
Not Found - Resource doesn't exist |
429 |
Too Many Requests - Rate limit exceeded |
500 |
Internal Server Error - Server error occurred |
Error Response Format
All error responses follow this structure:
{
"error": {
"code": "invalid_request",
"message": "The URL provided is invalid",
"details": {
"field": "url",
"reason": "Must be a valid HTTP or HTTPS URL"
}
}
}Rate Limits
API requests are rate-limited to ensure fair usage. Rate limits vary by plan tier. When exceeded, you'll receive a 429 status code with rate limit information in response headers:
X-RateLimit-Limit- Total requests allowed per windowX-RateLimit-Remaining- Requests remaining in current windowX-RateLimit-Reset- Unix timestamp when the limit resets