wpistic-core/v1/health
Public
Service health check. No authentication.
curl https://www.wordpressistic.com/wp-json/wpistic-core/v1/health
Developers
Build on the WordPressistic platform — tools, licenses, memberships and webhooks over a clean JSON REST API.
https://www.wordpressistic.com/wp-json/
The WordPressistic platform exposes a JSON REST API. All endpoints live under the API base URL. Responses are JSON; errors follow the standard WordPress REST error shape (code, message, data.status).
wpistic-core/v1/health
Public
Service health check. No authentication.
curl https://www.wordpressistic.com/wp-json/wpistic-core/v1/health
wpistic-core/v1/me
Cookie + nonce
Current user profile, tier and entitlements.
curl -H 'X-WP-Nonce: {nonce}' https://www.wordpressistic.com/wp-json/wpistic-core/v1/me
Key-authenticated account API, served at api.wordpressistic.com. Create a key in Portal → API Keys and send it as an Authorization: Bearer header. Rate limited per key (120 req/min).
wpistic/v1/account
API key
Your account: name, email, verification, tier, plan.
curl -H 'Authorization: Bearer wpis_…' https://www.wordpressistic.com/wp-json/wpistic/v1/account
wpistic/v1/entitlements
API key
Resolved entitlements for your plan.
curl -H 'Authorization: Bearer wpis_…' https://www.wordpressistic.com/wp-json/wpistic/v1/entitlements
wpistic/v1/licenses
API key
Your licenses with status + activation counts.
curl -H 'Authorization: Bearer wpis_…' https://www.wordpressistic.com/wp-json/wpistic/v1/licenses
wpistic/v1/downloads
API key
Products you can download on your plan.
curl -H 'Authorization: Bearer wpis_…' https://www.wordpressistic.com/wp-json/wpistic/v1/downloads
Browser calls authenticate with a WordPress session cookie plus an X-WP-Nonce header. Server-to-server integrations use API key pairs — create them in Portal → API Keys and send them as request headers. Keys are shown once and stored hashed.
portal/api-keys/create
Cookie + nonce
Issue a new API key pair (logged-in).
curl -X POST -H 'X-WP-Nonce: {nonce}' https://www.wordpressistic.com/wp-json/portal/api-keys/create
portal/api-keys/revoke
Cookie + nonce
Revoke a key by its prefix.
curl -X POST -H 'X-WP-Nonce: {nonce}' -d 'prefix=lsi_pk_…' https://www.wordpressistic.com/wp-json/portal/api-keys/revoke
Run any registered tool programmatically. Anonymous calls share the public daily quota; authenticated calls use your plan limits. AI tools consume AI credits.
wpistic/v1/tools
Public
List all public tools with their metadata.
curl https://www.wordpressistic.com/wp-json/wpistic/v1/tools
wpistic/v1/tools/run
Optional auth
Run a tool. Body: slug + fields object.
curl -X POST -H 'Content-Type: application/json' -d '{"slug":"meta-tag-generator","fields":{"title":"My page"}}' https://www.wordpressistic.com/wp-json/wpistic/v1/tools/run
wpistic/v1/tools/usage
Cookie + nonce
Today’s usage snapshot for the current user.
curl -H 'X-WP-Nonce: {nonce}' https://www.wordpressistic.com/wp-json/wpistic/v1/tools/usage
License verification and activation for your products. Public endpoints are rate-limited per IP; management endpoints need an API key pair (x-lsi-public-key / x-lsi-secret-key headers).
wpistic-lsi/v1/license/verify
Public
Verify a license key.
curl -X POST -d 'license_key=XXXX-XXXX' https://www.wordpressistic.com/wp-json/wpistic-lsi/v1/license/verify
wpistic-lsi/v1/license/activate
Public
Activate a license for a domain.
curl -X POST -d 'license_key=XXXX-XXXX&domain=example.com' https://www.wordpressistic.com/wp-json/wpistic-lsi/v1/license/activate
wpistic-lsi/v1/license/deactivate
Public
Release an activation.
curl -X POST -d 'license_key=XXXX-XXXX&domain=example.com' https://www.wordpressistic.com/wp-json/wpistic-lsi/v1/license/deactivate
wpistic-lsi/v1/licenses
API key
List licenses (API key, read scope).
curl -H 'x-lsi-public-key: …' -H 'x-lsi-secret-key: …' https://www.wordpressistic.com/wp-json/wpistic-lsi/v1/licenses
Plans and membership records. Read endpoints for your own membership are available to logged-in members; management endpoints require admin capabilities.
memberistic/v1/plans
Admin
List available plans.
curl -u admin:app-password https://www.wordpressistic.com/wp-json/memberistic/v1/plans
wpistic-core/v1/me
Cookie + nonce
Your tier, plan and entitlements (member-safe).
curl -H 'X-WP-Nonce: {nonce}' https://www.wordpressistic.com/wp-json/wpistic-core/v1/me
Outbound webhooks fire on platform events (form submissions, bookings, licenses). Payloads are JSON, signed with an HMAC-SHA256 signature header you verify with your shared secret — compatible with n8n, Make and Zapier.
submission.created
HMAC signed
A form submission was captured (Formistic).
{"event":"submission.created","data":{"id":123,"email":"…"}}
booking.confirmed
HMAC signed
A booking was confirmed (Bookingistic).
{"event":"booking.confirmed","data":{"booking_id":45,"service":"…"}}
license.created
HMAC signed
A license was issued (Licenseistic).
{"event":"license.created","data":{"license_id":9,"product":"…"}}