Skip to main content
The ZBD Earn API allows developers to send in-game or app-based rewards to users securely. By default, rewards can be issued from both the client SDK and your backend server. For stronger security and better control, you can restrict reward sending so that only your backend can issue rewards. This setup uses the API version blocklist feature for your Rewards App.
Server-only reward sending is recommended when:
  • You perform additional gameplay or business validation before issuing rewards
  • Your app offers higher-value rewards or gift card redemptions
  • You want to minimize client-side abuse and enforce strict control

Rate Limiting

The server-side endpoints are rate-limited to 60 requests per second. If you exceed this limit, you will receive a 429 Too Many Requests response. Implement exponential backoff in your retry logic to handle rate limiting gracefully.

How It Works

1

Access Your Project's SDK Settings

Go to Dashboard → Projects → Select Your Project → SDK tab → Controls sub-tab.Your Rewards App settings will load automatically.
2

Create an API Key (Required)

Click “Create API Key” in the dashboard and save it securely.Required for server-side authentication. The key is shown only once.
3

Disable Client-Side Sending (Recommended)

Click “Disable Client Send” to block client-side reward sending.Ensures only your server can send rewards. Recommended for security.
4

Send Rewards from Your Server

Use your API key with the send rewards endpoint to issue rewards securely.
Next, let’s begin with managing your Rewards App via the dashboard, where you’ll create your API key and configure your settings.