Skip to content

Licence API

POST /licence/v1/validate

Returns a signed entitlement snapshot — the heart of Parmtech licensing.

Request

POST https://parmtech.au/licence/v1/validate
Content-Type: application/json

{ "licence_key": "PT-SSLGODPR-…-A9F2" }

Response

{
  "entitlement": {
    "licence": "…A9F2",
    "product": "ssl-god-pro",
    "plan": "agency",
    "status": "active",
    "features": { "multi_ca_failover": true, "mail_sni": true, "sites": 25 },
    "seats": { "used": 3, "limit": 25 },
    "expires_at": "2027-07-01T00:00:00+00:00",
    "grace_until": null,
    "issued_at": "2026-07-10T02:00:00+00:00",
    "ttl": 86400
  },
  "signature": "base64…",
  "algorithm": "ed25519",
  "public_key_id": "1a2b3c4d"
}

Verifying offline

The signature is Ed25519 over the exact JSON of entitlement. Verify with the Parmtech public key shipped in your product:

$valid = sodium_crypto_sign_verify_detached(
    base64_decode($response['signature']),
    json_encode($response['entitlement'], JSON_UNESCAPED_SLASHES),
    base64_decode($parmtechPublicKey),
);

Cache the snapshot and trust it until issued_at + ttl (respecting grace_until). This is why a Parmtech-licensed product keeps working through network outages — ours or yours.