Tealium API v3 - Authentication and Request Format (Early Access)
This article provides information needed to begin using the Tealium v3 API.
The previous Tealium v2 API is still available, but will eventually be deprecated.
Root URL
Each API has its own endpoint and supported parameters. The root URL for all API requests is:
https://platform.tealiumapis.com/v3
An API endpoint is documented with a specific HTTP method and path, for example:
GET /visitor
Some endpoints show placeholder variables ( {variable}) to indicate values that you supply. Most endpoints require the name of the your Tealium account and profile in the path of the call.
Example API endpoint path for iQ Profiles:
https://platform.tealiumapis.com/v3/tiq/accounts/{account}/{profile}
Request and response format
The API supports JavaScript Object Notation (JSON). API requests that use JSON require the following header setting:
Content-Type: application/json
Most responses are in JSON format. Documentation for each endpoint contains example cURL calls and responses.
Rate Limits
Tealium API endpoints serve different purposes and can vary in their rate limits. Check the specific API endpoint documentation for rate limit information. If you exceed the stated rate limit for any API endpoint, Tealium will send an HTTP 429 response indicating too many requests.
If your business needs require higher limits, contact your Tealium account manager.
Authentication
Authentication (login) requires an API key from Tealium iQ Tag Management. To learn more about Tealium API keys, see Managing and Generating API Keys.
The authentication call has two parameters: username and the API key. The API key is used in place of a password to log into the API. After a successful login to the API, the authentication call returns a JWT, referred to as a bearer token. The bearer token, which is valid for 30 minutes, is the value that must be used to authenticate subsequent API calls.
Do not generate a new bearer token for every call. Use the token until it expires. Each token expires within 30 minutes. Failure to use the token in this manner will result in authentication call throttling at Tealium’s discretion.
Region-specific host
The authentication response contains a token and host value.
{
"token":"eyJ0[...]kqkpj8vE"
"host": "us-east-1-platform.tealiumapis.com"
}
The host value must be used in subsequent API calls that are region-specific. For example, the visitor API endpoint would be:
https://us-east-1-platform.tealiumapis.com/v3/visitor/accounts/{account}/{profile}
cURL request
The following cURL request shows the variables required for the API key exchange for a JWT token. The URL, username, and API key are encoded.
curl -X POST \
https://platform.tealiumapis.com/v3/auth/accounts/{account}/profiles/{profile} \
-H 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'username={email}' \
--data-urlencode 'key={api_key}'
Example request
curl -X POST \
https://platform.tealiumapis.com/v3/auth/accounts/{account}/profiles/{profile} \
-H 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'username=tealium.user@yourdomain.com' \
--data-urlencode 'key=7O4Pjn8tuc0%5B3Nc2)%7DyXJW8EaCuDRA1U8Jn%23p)qc*O94(*ubIeEUz%25%5D%242~)WKlLB'
Example Response
* Trying 10.220.2.176...
* Connected to platform.tealiumapis.com (10.220.2.176) port 443 (#0)
* TLS 1.2 connection using TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
* Server certificate: *.tealiumiq.com
* Server certificate: DigiCert SHA2 Secure Server CA
* Server certificate: DigiCert Global Root CA
> POST /v3/auth/accounts/{account}/profiles/{profile} HTTP/1.1
> Host: platform.tealiumapis.com
> User-Agent: curl/7.43.0
> Accept: */*
> cache-control: no-cache
> content-type: application/x-www-form-urlencoded
> Content-Length: 127
>
* upload completely sent off: 127 out of 127 bytes
< HTTP/1.1 200 OK
< Date: Wed, 14 Feb 2018 19:04:22 GMT
< Content-Type: application/json
< Content-Length: 893
< Connection: keep-alive
< Cache-Control: no-cache,no-store,must-revalidate
< Pragma: no-cache
< Expires: 0
< X-XSS-Protection: 1;mode=block
< X-NodeId: i-0afb3e9b53ba15930
< X-Version: 1.0.130-SNAPSHOT
< Set-Cookie: rememberMe=deleteMe; Path=/urest_service; Max-Age=0; Expires=Tue, 13-Feb-2018 19:10:41 GMT
<
* Connection #0 to host platform.tealiumapis.com left intact
{
"token":"eyJ0[...]kqkpj8vE"
"host": "us-east-1-platform.tealiumapis.com"<br>
}
Status codes
The Tealium v3 APIs use standard HTTP response status codes to indicate the status of a request.
| Status Code | Description |
|---|---|
| 200 | OK |
| 400 | Bad request |
| 401 | Unauthorized |
| 404 | Not found |
| 429 | Too many requests |
| 50X | Internal server error |
This page was last updated: January 30, 2023