Skip to content

Common issues and solutions when integrating with the Zimark REST API.

Authentication Errors

401 Unauthorized

Cause: Missing or invalid API key

Solutions:

  • Verify X-AUTH-KEY header is included in request
  • Check API key format starts with ZIM.
  • Confirm key hasn't been deleted in Backoffice
  • Ensure correct environment (staging vs production)

403 Forbidden

Cause: The request was authenticated but not allowed. Most commonly the API key has IP restrictions and the request came from a non-allowed IP.

Solutions:

  • Check the key's IP restrictions in Backoffice (AdministrationAPI Keys)
  • Confirm the request originates from an allowed IP address

API Request Errors

400 Bad Request

Cause: Invalid request format or missing required fields

Solutions:

  • Validate JSON syntax
  • Check required fields in API Reference
  • Verify date formats match ISO-8601
  • Ensure enum values are valid

404 Not Found

Cause: Invalid endpoint or resource doesn't exist

Solutions:

  • Verify base URL (production vs staging)
  • Check endpoint path in API Reference
  • Confirm resource ID exists

429 Too Many Requests

Cause: The request was rate-limited.

Solutions:

  • Back off and retry the request
  • Use exponential backoff between retries

Integration logs

All API requests are logged in the Zimark Backoffice. Use these integration logs to debug integration issues and verify request/response data.

Access logs:

  1. Navigate to the integration logs in Backoffice
  2. Filter by date, method, or response status code
  3. Click a request to view details (headers, body, response)

Integration logs

Single request view

Use logs to:

  • Verify requests reach Zimark
  • Debug authentication issues
  • Check exact request/response payloads
  • Identify webhook delivery problems

Still Having Issues?

Contact Zimark support with:

  • Request ID from integration logs
  • Error message and status code
  • Steps to reproduce