Skip to main content

Xbox Live API


Endpoints

29

Requests/hour

58

Version

2.0

The OpenXBL API is designed using REST. Every call is predictable and uses HTTP response codes to indicate API errors. We use built-in HTTP features like HTTP X-Authorization and Accept-Language headers which are understood by HTTP clients. OpenXBL supports cross-origin resource sharing (CORS) allowing you to interact with the API from a client-side application. JSON is returned by all API responses unless otherwise configured. The API supports JSON and XML responses.

PHP Wrapper

We have provided an easy to use wrapper on GitHub written in PHP. Simpily upload the file to your server and include it in your project. Immediatley tap into the power of Xbox Live. The wrapper supports HTTPS GET and POST methods.

RESTful

If you are not using PHP as your primary language - no problem!

The API base url is https://xbl.io/api/v2

Provide the X-Authorization request header with a value of one of your API keys

If using an app also provide X-Contract: 100

Example:


$ curl --header "X-Authorization: API_KEY" https://xbl.io/api/v2/account

Request Headers

These are acceptable request headers


// Your authorization key
X-Authorization: [API Key, APP Key]

// Format of response
Accept: [application/json, application/xml]

// Language
Accept-Language: [en-US, de-DE, etc]

Response Headers

In the header of every call includes your rate limit information which is useful to determine if you're about to exhaust your hourly limit.


HTTP/1.1 200 OK
Content-Type: application/json
X-RateLimit-Limit: 500
X-RateLimit-Remaining: 500