API Sandbox

Step 1: Generate a Sandbox Key

Generate a single-use API key to test the verification endpoint. The key expires after 15 minutes or after one use.

Rate Limits:

Maximum 3 keys per minute
Maximum 10 keys per hour

Step 2: Configure Security Rules

Configure the same rules available in production. Your sandbox key will use these settings when you test.

API Key Rules

Whitelisted Hosts Hosts that bypass blacklist checks

Blacklisted Hosts Hosts to block

Blocked Paths URL paths to block

Whitelisted IPs IPs that bypass IP blocklist

Blocked IPs IP addresses to block

Global Rules (Simulated) These apply when "Include Global Rules" is enabled

Global Blocked Hosts

Global Blocked IPs

Global Blocked Paths

Verification Modes

Include Global Rules Apply global blocklists in addition to API key rules

Default Allow Allow requests not matching any rule

Enable Geo-Blocking Block requests by country/ASN (~1-5ms latency)

Strict Host Mode Only allow whitelisted hosts

Strict IP Mode Only allow whitelisted IPs

Strict Country Mode Only allow whitelisted countries (blocks all others)

Geo-Blocking Available: Enable the "Enable Geo-Blocking" toggle above to configure country and network-based access controls.

Step 3: Test Verification

Enter test data to simulate an API verification request. This will consume your sandbox key and test against your configured rules.

URL to Verify Enter a full URL. Try: "https://malware-site.com/page" (blocked) or "https://example.com/admin" (path blocked)

Client IP Address Try: "1.2.3.4" (globally blocked when Include Global Rules is on)

API Response

Integration Examples

# Sandbox: Verify a request using your sandbox API key
curl -X POST "https://sandbox.sec.602.tech/api/security/verify" \
  -H "Content-Type: application/json" \
  -H "X-Api-Key: YOUR_API_KEY" \
  -d '{
    "hostname": "example.com",
    "path": "/api/data",
    "ipAddress": "192.168.1.100"
  }'

// Sandbox: Verify a request using fetch API
const response = await fetch('https://sandbox.sec.602.tech/api/security/verify', {
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'X-Api-Key': 'YOUR_API_KEY'
  },
  body: JSON.stringify({
    hostname: 'example.com',
    path: '/api/data',
    ipAddress: '192.168.1.100'
  })
});

const result = await response.json();
if (result.isAllowed) {
  // Request is allowed
} else {
  // Request is denied: result.reason
}

// Sandbox: Verify a request using HttpClient
using var client = new HttpClient();
client.DefaultRequestHeaders.Add("X-Api-Key", "YOUR_API_KEY");

var request = new {
    hostname = "example.com",
    path = "/api/data",
    ipAddress = "192.168.1.100"
};

var json = JsonSerializer.Serialize(request);
var content = new StringContent(json, Encoding.UTF8, "application/json");

var response = await client.PostAsync(
"https://sandbox.sec.602.tech/api/security/verify", 
content);

var result = await response.Content.ReadAsStringAsync();

' Sandbox: Verify a request using HttpClient
Using client As New HttpClient()
    client.DefaultRequestHeaders.Add("X-Api-Key", "YOUR_API_KEY")
    
    Dim request = New With {
        .hostname = "example.com",
        .path = "/api/data",
        .ipAddress = "192.168.1.100"
    }
    
    Dim json = JsonSerializer.Serialize(request)
    Dim content = New StringContent(json, Encoding.UTF8, "application/json")
    
    Dim response = Await client.PostAsync(
        "https://sandbox.sec.602.tech/api/security/verify", 
        content)
End Using

Step 1: Generate a Sandbox Key

Step 2: Configure Security Rules

API Key Rules

Global Rules (Simulated) These apply when "Include Global Rules" is enabled

Verification Modes

Geo-Blocking Configuration Simulated

Step 3: Test Verification

API Response

Integration Examples

How It Works

Sandbox Limitations

Resources