Go to Rollout website ↗️DocumentationCRM ReferenceTMS Reference

Making API Requests

This guide explains how to make API requests to the Rollout Universal CRM API. We'll cover authentication, request headers, and basic CRUD operations using the /people endpoint as an example.

To see all the other endpoints, navigate to the API Reference page

AuthenticationCopied!

All API requests require two authentication components:

  1. A Bearer token in the Authorization header. This is the authToken we previously generated in the “Getting your API Key” section of this guide.

  2. A credential ID in the x-rollout-credential-id header, this is the Rollout generated credential ID for the user

Where to get the credential IDCopied!

There are 2 ways to get the credential ID for your user:

  1. Provide a callback function to the onCredentialAdded hook when rendering the Rollout Link authentication UI, in that callback function you can save the credential ID to your database and use it going forward.

  2. Query the Rollout API to get a given users credential:

    const response = await fetch('https://universal.rollout.com/api/credentials', {
  headers: {
    'Authorization': `Bearer ${authToken}`,
  },
});

const credentials = await response.json();
const credentialId = credentials[0]?.id; // Get the first credential

For the above query, the user that you would be fetching credentials for is identified as the sub claim when you generate the authToken, for more info see the Getting your API Key page

Making RequestsCopied!

Fetch People (GET)Copied! 

const response = await fetch("https://crm.universal.rollout.com/api/people", {
  headers: {
    Authorization: `Bearer ${authToken}`,
    "x-rollout-credential-id": credentialId,
    "Content-Type": "application/json"
  }
});

const data = await response.json();
if (!response.ok) {
  throw new Error(data.error || 'Failed to fetch people');
}

Create Person (POST)Copied! 

const response = await fetch("https://crm.universal.rollout.com/api/people", {
  method: "POST",
  headers: {
    Authorization: `Bearer ${authToken}`,
    "x-rollout-credential-id": credentialId,
    "Content-Type": "application/json"
  },
  body: JSON.stringify(personData)
});

const data = await response.json();
if (!response.ok) {
  throw new Error(data.error || 'Failed to create person');
}

Error HandlingCopied!

The API uses standard HTTP status codes:

  • 401: Unauthorized (invalid token)

  • 403: Forbidden (invalid credentials)

  • 404: Not found

  • 409: Conflict — This is commonly returned when the data for a given CRM is not yet ready, please allow 30-60 seconds for the data sync to start once you have authenticated

  • 500: Server error

Errors return JSON with an error message:

{ "error": "Error description" }

© 2025 Playbook Software Inc.