Reference
Table of Contents
Learn how to authenticate and use the Marketplace API to set up your integration server for the base URL.
When a customer uses your integration, the communication happens in both directions:
- Vercel calls the partner API
- The partner calls the Vercel API
This authentication uses the OpenID Connect Protocol (OIDC). Vercel sends a JSON web token (JWT) signed with Vercel’s private key and verifiable using Vercel’s public JSON Web Key Sets (JWKS) available here.
User Auth OIDC token claims schema:
account_idstringRequired audstringRequired The ID of the target integration. Example: "oac_9f4YG9JFjgKkRlxoaaGG0y05" installation_idstringRequired The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" issstringRequired One of: https://marketplace.vercel.comsubstringRequired Denotes the User who is making the change (matches /^account:[0-9a-fA-F]+:user:[0-9a-fA-F]+$/)user_avatar_urlstring The user's public avatar URL user_emailstring The user's email address. For this property to have a value, your Marketplace integration must be opted in. Please reach out to Vercel Support to request access. Without access, this property will be undefined. user_idstringRequired user_namestring The user's real name user_rolestringRequired One of: ADMIN|USER
This authentication uses the OpenID Connect Protocol (OIDC). Vercel sends a JSON web token (JWT) signed with Vercel’s private key and verifiable using Vercel’s public JSON Web Key Sets (JWKS) available here.
System Auth OIDC token claims schema:
account_idstringRequired audstringRequired The ID of the target integration. Example: "oac_9f4YG9JFjgKkRlxoaaGG0y05" installation_idstring or nullRequired The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" issstringRequired One of: https://marketplace.vercel.comsubstringRequired Denotes the Account (or Team) who is making the change (matches /^account:[0-9a-fA-F]+$/), possibly null
API related to Installation operatinos
put
/v1/installations/{installationId}Security: User Authentication
Description:Create or update an installation
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
Description:
The installation was created successfully
No content
get
/v1/installations/{installationId}Security: System Authentication
Description:Get an installation
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
Description:
The installation
billingPlanobject The billing plan for the installation. If not set, the installation is billed on resource level.
patch
/v1/installations/{installationId}Security: User Authentication
Description:Update an installation
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
Description:
The installation was updated successfully
No content
delete
/v1/installations/{installationId}Security: User Authentication
Description:Deletes the Installation. The final deletion is postponed for 12 hours to allow for sending of final invoices. You can request immediate deletion by specifying {finalized:true} in the response.
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
Description:
Installation deleted successfully
finalizedboolean If true, the installation will be removed immediately. Otherwise, the installation will stay in the "delete pending" state for 12 hours awaiting for finalizing invoice(s).
API related to Resource operations
post
/v1/installations/{installationId}/resourcesSecurity: User Authentication
Description:Provisions a Resource. This is a synchronous operation but the provisioning can be asynchronous as the Resource does not need to be immediately available however the secrets must be known ahead of time.
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
Description:
Return the newly provisioned resource
billingPlanobject The billing plan for the resource. If not set, the resource is billed on installation level. idstringRequired The partner-specific ID of the resource metadataobjectRequired User-inputted metadata based on the registered metadata schema. namestringRequired User-inputted name for the resource. notificationobject Resource's active notification. Example: { "level": "warn", "title": "Database is nearing maximum planned size" } productIdstringRequired The partner-specific ID/slug of the product. Example: "redis" secretsarrayRequired statusstringRequired One of: ready|pending|suspended|resumed|uninstalled|error
get
/v1/installations/{installationId}/resourcesSecurity: System Authentication
Description:Lists all Resources
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
Description:
Return a list of Resources for a given Installation
resourcesarrayRequired
get
/v1/installations/{installationId}/resources/{resourceId}Security: System Authentication
Description:Get a Resource
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
resourceId | Partner-provided resource ID | string |
Description:
Return the resource
billingPlanobject The billing plan for the resource. If not set, the resource is billed on installation level. idstringRequired The partner-specific ID of the resource metadataobjectRequired User-inputted metadata based on the registered metadata schema. namestringRequired User-inputted name for the resource. notificationobject Resource's active notification. Example: { "level": "warn", "title": "Database is nearing maximum planned size" } productIdstringRequired The partner-specific ID/slug of the product. Example: "redis" statusstringRequired One of: ready|pending|suspended|resumed|uninstalled|error
patch
/v1/installations/{installationId}/resources/{resourceId}Security: User Authentication
Description:Updates a resource
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
resourceId | Partner-provided resource ID | string |
Description:
Return the updated resource
billingPlanobject The billing plan for the resource. If not set, the resource is billed on installation level. idstringRequired The partner-specific ID of the resource metadataobjectRequired User-inputted metadata based on the registered metadata schema. namestringRequired User-inputted name for the resource. notificationobject Resource's active notification. Example: { "level": "warn", "title": "Database is nearing maximum planned size" } productIdstringRequired The partner-specific ID/slug of the product. Example: "redis" statusstringRequired One of: ready|pending|suspended|resumed|uninstalled|error
delete
/v1/installations/{installationId}/resources/{resourceId}Security: User Authentication
Description:Uninstalls and de-provisions a Resource
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
resourceId | Partner-provided resource ID | string |
Description:
Resource deleted successfully
No content
post
/v1/installations/{installationId}/resources/{resourceId}/replSecurity: User Authentication
Description:The REPL is a command-line interface on the Store Details page that allows customers to directly interact with their resource. This endpoint is used to run commands on a specific resource.
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
resourceId | Partner-provided resource ID | string |
Description:
Return result of running REPL command
array
API related to Billing operations
get
/v1/products/{productSlug}/plansSecurity: System Authentication
Description:
Vercel sends a request to the partner to return quotes for different billing plans for a specific Product.
Note: You can have this request triggered by Vercel before the integration is installed when the Product is created for the first time. In this case, OIDC will be incomplete and will not contain an account ID.
| Name | Description | Type |
|---|---|---|
productSlug | The partner-specific ID/slug of the product. Example: "redis" | string |
Description:
Return a list of billing plans
plansarrayRequired
get
/v1/installations/{installationId}/resources/{resourceId}/plansSecurity: System Authentication
Description:Returns the set of billing plans available to a specific Resource
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
resourceId | Partner-provided resource ID | string |
Description:
Return a list of billing plans for a resource
plansarrayRequired
get
/v1/installations/{installationId}/plansSecurity: System Authentication
Description:Returns the set of billing plans available to a specific Installation
| Name | Description | Type |
|---|---|---|
installationId | The ID of target installation. Example: "icfg_9bceb8ccT32d3U417ezb5c8p" | string |
Description:
Return a list of billing plans for an installation
plansarrayRequired
This authentication uses the Vercel API authentication bearer token.
- Authorization URL:
https://api.vercel.com/oauth/authorize - Token URL:
https://api.vercel.com/oauth/access_token
get
/v1/installations/{integrationConfigurationId}/accountSecurity: bearerToken
Description:Fetches the best account or user’s contact info
| Name | Description | Type |
|---|---|---|
integrationConfigurationId | None | string |
contactobject or nullRequired namestring urlstringRequired
get
/v1/installations/{integrationConfigurationId}/member/{memberId}Security: bearerToken
Description:Returns the member role and other information for a given member ID ("user_id" claim in the SSO OIDC token).
| Name | Description | Type |
|---|---|---|
integrationConfigurationId | None | string |
memberId | None | string |
idstringRequired rolestringRequired One of: ADMIN|USER
post
/v1/installations/{integrationConfigurationId}/eventsSecurity: bearerToken
Description:Partner notifies Vercel of any changes made to an Installation or a Resource. Vercel is expected to use
Use cases:
- The user renames a database in the partner’s application. The partner should dispatch a
list-resources and other read APIs to get the new state. resource.updated event should be dispatched when any state of a resource linked to Vercel is modified by the partner. Use cases:
- The user renames a database in the partner’s application. The partner should dispatch a
resource.updated event to notify Vercel to update the resource in Vercel’s datastores. | Name | Description | Type |
|---|---|---|
integrationConfigurationId | None | string |
No content
post
/v1/installations/{integrationConfigurationId}/billingSecurity: bearerToken
Description:Sends the billing and usage data. The partner should do this at least one a day and ideally once per hour.
| Name | Description | Type |
|---|---|---|
integrationConfigurationId | None | string |
No content
post
/v1/installations/{integrationConfigurationId}/billing/invoicesSecurity: bearerToken
Description:This endpoint allows the partner to submit an invoice to Vercel. The invoice is created in Vercel's billing system and sent to the customer. Depending on the type of billing plan, the invoice can be sent at a time of signup, at the start of the billing period, or at the end of the billing period.
There are several limitations to the invoice submission:
1. A resource can only be billed once per the billing period and the billing plan.
2. The billing plan used to bill the resource must have been active for this resource during the billing period.
3. The billing plan used must be a subscription plan.
4. The interim usage data must be sent hourly for all types of subscriptions. See Send subscription billing and usage data API on how to send interim billing and usage data.
There are several limitations to the invoice submission:
1. A resource can only be billed once per the billing period and the billing plan.
2. The billing plan used to bill the resource must have been active for this resource during the billing period.
3. The billing plan used must be a subscription plan.
4. The interim usage data must be sent hourly for all types of subscriptions. See Send subscription billing and usage data API on how to send interim billing and usage data.
| Name | Description | Type |
|---|---|---|
integrationConfigurationId | None | string |
invoiceIdstring testboolean validationErrorsarray
get
/v1/installations/{integrationConfigurationId}/billing/invoices/{invoiceId}Security: bearerToken
Description:Get Invoice details and status for a given invoice ID.
See Billing Events with Webhooks documentation on how to receive invoice events. This endpoint is used to retrieve the invoice details.
See Billing Events with Webhooks documentation on how to receive invoice events. This endpoint is used to retrieve the invoice details.
| Name | Description | Type |
|---|---|---|
integrationConfigurationId | None | string |
invoiceId | None | string |
createdstringRequired discountsarray externalIdstring invoiceDatestringRequired invoiceIdstringRequired itemsarrayRequired memostring periodobjectRequired refundReasonstring refundTotalstring statestringRequired One of: pending|scheduled|invoiced|paid|notpaid|refund_requested|refundedtestbooleanRequired totalstringRequired updatedstringRequired
post
/v1/installations/{integrationConfigurationId}/billing/invoices/{invoiceId}/actionsSecurity: bearerToken
Description:This endpoint allows the partner to request a refund for an invoice to Vercel. The invoice is created using the Submit Invoice API.
| Name | Description | Type |
|---|---|---|
integrationConfigurationId | None | string |
invoiceId | None | string |
No content
put
/v1/installations/{integrationConfigurationId}/products/{integrationProductIdOrSlug}/resources/{resourceId}/secretsSecurity: bearerToken
Description:This endpoint updates the secrets of a resource. If a resource has projects connected, the connected secrets are updated with the new secrets. The old secrets may still be used by existing connected projects because they are not automatically redeployed. Redeployment is a manual action and must be completed by the user. All new project connections will use the new secrets.
Use cases for this endpoint:
- Resetting the credentials of a database in the partner. If the user requests the credentials to be updated in the partner’s application, the partner post the new set of secrets to Vercel, the user should redeploy their application and the expire the old credentials.
Use cases for this endpoint:
- Resetting the credentials of a database in the partner. If the user requests the credentials to be updated in the partner’s application, the partner post the new set of secrets to Vercel, the user should redeploy their application and the expire the old credentials.
| Name | Description | Type |
|---|---|---|
integrationConfigurationId | None | string |
integrationProductIdOrSlug | None | string |
resourceId | None | string |
No content
post
/v1/integrations/sso/tokenDescription:Partner exchanges the OAuth authorization code for an OIDC token. A successful response from this endpoint means the partner can verify the identity of the requesting user during the Open in Partner flow. Partners should not persist the returned id_token in a database since the token will expire.
access_tokenRequired id_tokenstringRequired token_typeRequired
- Receive billing events with webhooks
You can receive the following events:
marketplace.invoice.created: the invoice was created and sent to the customermarketplace.invoice.paid: the invoice was paidmarketplace.invoice.notpaid: the invoice was not paid after a grace period- You can then take the appropriate action, such as suspending the resource
- 2024-09-06: "Delete Installation" API can optionally return
{finalized: true}to signal that the installation can be removed immediately. Otherwise, the installation will wait for up to 12hr for any pending billing data to be submitted. - 2024-08-27: Removed
BillingPlan.maxResourcesfield. - 2024-08-20: Added
AccountInfo.urlfield to the "Get Account Information" API. - 2024-08-16: "Get Member Information" API.
- 2024-08-16: Documentation for API error responses (e.g. 400, 403) added.
- 2024-08-15: Added "Get Installation" and "List Billing Plans for Installation" API for installation-level billing. Added
BillingPlan.scopeattribute that determines installation or resource level billing for a billing plan. - 2024-08-14: "Submit Invoice" and "Submit Billing Data" APIs no longer require
resourceIdfor each item. - 2024-08-14: "Submit Invoice" and "Submit Billing Data" APIs accept
discountsfields. - 2024-08-13:
Resource.billingPlanis no longer required when the integration has installation-level billing enabled. If installation-level billing is not enabled in the Integration Console and this property is missing, the response will be treated as an error. - 2024-08-09: Added the
user_emailto the User Authentication JWT claims. - 2024-07-24: Added
REPLendpoint. - 2024-07-09: Removed
BillingPlan.requiredPolicies?andProvisionResourceRequest.acceptedPoliciesfields until further notice. The only policies required/accepted for now are for theInstallIntegrationRequest. - 2024-07-01:
Resource.notificationfield for an optional active resource notification. - 2024-07-01:
BillingPlan.quotefield is replaced with more genericBillingPlan.detailsandBillingPlan.costfields. - 2024-07-01:
BillingPlan.paymentMethodRequiredfield as added to indicate free plans. - 2024-06-16: The "Refund Invoice" API.
- 2024-06-03: The "Submit Invoice" and "Get Invoice" APIs.
- 2024-06-03: The negative amount statement for the
BillingItemin the "Send invoice billing and usage data" endpoint is removed as not correct. - 2024-05-30: The Vercel API routes using the
/v1/integrations/marketplace/installationsnamespace were shortened to/v1/installations. The old, longer namespaced routes will continue to work as expected. - 2024-05-23:
BillingPlan.typevalue of "invoice" has been changed to "subscription". - 2024-05-21:
Resource.billingPlantype has been changed from string (for a plan ID) to aBillingPlanstructure with the complete plan information.billingPlan: stringfor a plan ID has been changed tobillingPlanId: stringfor consistency. - 2024-05-21:
BillingPlan.maxProductshas been renamed tomaxResources.
Last updated on September 13, 2024
Was this helpful?