2026-02-24
- Confirmed API key-only authentication model (
Authorization: Bearer <API_KEY>).
- Clarified that Open API keys are company-scoped for granted scopes.
- Updated API/webhook admin UI guidance:
- create key via dialog
- key reveal via one-time modal with copy action
- simplified key form (prod-only, no rate-tier selection, optional expiry/IP allowlist)
- Introduced webhooks documentation for requisition events:
requisition_createdrequisition_approved
- Added webhook payload envelope, signature headers, verification flow, and retry/idempotency guidance.
- Updated requisition webhook semantics for multi-stage approval flows:
requisition_approved can fire on each approved stage
- Updated requisition webhook payloads to identifier-only references (
data.requisition.id).
- Added requisition endpoints:
GET /requisitionsGET /requisitions/{id}
- Added
read:requisitions API scope.
- Added
/playground interactive request testing page.
- Expanded endpoint reference format to include:
- Authorization requirements
- URL/query parameters
- Request body rules
- Multi-language request examples
- Response field definitions
- Response and error examples
- Added policy and governance documentation:
- Terms and Policies
- Terms and Conditions
- Developer Guidelines
- FAQ
- Admin Controls
2026-02-23
- Initial publication of Requidex Open API docs site.
- Added core pages for authentication, scopes, endpoints, querying, response envelope, rate limits, security, and versioning.