Skip to main content

Xbox Live API







Get started for free! Sign up here

Instantly get access with 500 requests per hour. Options are available to increase this limit.

The OpenXBL API is designed using REST. Every call is predictable and uses HTTP response codes to indicate API errors. We use built-in HTTP features like HTTP X-Authorization and Accept-Language headers which are understood by HTTP clients. OpenXBL supports cross-origin resource sharing (CORS) allowing you to interact with the API from a client-side application. JSON is returned by all API responses unless otherwise configured. The API supports JSON and XML responses.

PHP Wrapper

We have provided an easy to use wrapper on GitHub written in PHP. Simpily upload the file to your server and include it in your project. Immediatley tap into the power of Xbox Live. The wrapper supports HTTPS GET and POST methods.


If you are not using PHP as your primary language - no problem!

The API base url is

Provide the X-Authorization request header with a value of one of your API keys

If using an app also provide X-Contract: 100


$ curl --header "X-Authorization: API_KEY"

Request Headers

These are acceptable request headers

// Your (or your clients) authorization key

X-Authorization: [API Key, APP Key]

// Format of response

Accept: [application/json, application/xml]

// Language

Accept-Language: [en-US, de-DE, etc]

// Calls that come from your app

X-Contract: 100

Response Headers

In the header of every call includes your rate limit information which is useful to determine if you're about to exhaust your hourly limit.

HTTP/1.1 200 OK

Content-Type: application/json

X-RateLimit-Limit: 500

X-RateLimit-Spent: 32

X-RateLimit-Remaining: 468