GoSuite API

Connect third-party tools to your GoSuite Pro account using API keys. Authenticate requests with a Bearer token in the Authorization header.

Getting started

Upgrade to the Pro plan
Go to Settings → API Keys in your dashboard
Generate a key with a descriptive name and copy it immediately
Pass the key as Authorization: Bearer gsk_live_… on API requests

Authentication

API keys use the format gsk_live_ followed by a secure random string. Keys are hashed with SHA-256 before storage — we never store the full key.

Available endpoints

Method	Endpoint	Description
GET	/api/pos/sales	List POS sales for your company
GET	/api/expenses/save	Expense records (session or API key)
GET	/api/projects	Contractor projects list
GET	/api/locations	Company locations (multi-location Pro)
GET	/api/loyalty/customers	Loyalty customer list

More endpoints will be added in future releases. Contact support for early partner access.

Code examples

cURL

curl -X GET "https://your-app.gosuite.app/api/pos/sales" \
  -H "Authorization: Bearer gsk_live_YOUR_KEY_HERE"

Node.js

const res = await fetch('https://your-app.gosuite.app/api/pos/sales', {
  headers: {
    Authorization: 'Bearer gsk_live_YOUR_KEY_HERE',
  },
});
const data = await res.json();

Python

import requests

headers = {"Authorization": "Bearer gsk_live_YOUR_KEY_HERE"}
r = requests.get("https://your-app.gosuite.app/api/pos/sales", headers=headers)
print(r.json())

Rate limits & security

Revoke compromised keys immediately from Settings → API Keys
Never expose keys in client-side code or public repositories
Use scoped keys with the minimum permissions needed
Keys are company-scoped — they only access your organization's data