BlackWardAPI v1
API Reference
Protection API endpoints for license verification and heartbeat.
POST /api/protection/license/verify
Validates license key, IP binding, subscription status, and returns allowed features.
POST /api/protection/license/verify
Content-Type: application/json
{
"licenseKey": "BW-XXXX-XXXX",
"accountId": "customer_123",
"loginServerIp": "203.0.113.10",
"gameServerIp": "203.0.113.11",
"serverPort": 7777,
"chronicle": "High Five",
"protectionBuild": "1.0.0",
"clientHash": "...",
"hwidHash": "...",
"timestamp": 1710000000,
"nonce": "random-string",
"signature": "hmac-sha256"
}POST /api/protection/license/heartbeat
Reports server status, player count, and protection metrics. Keeps license active.
POST /api/protection/license/heartbeat
Content-Type: application/json
{
"licenseKey": "BW-XXXX-XXXX",
"accountId": "customer_123",
"serverIp": "203.0.113.11",
"onlinePlayers": 1200,
"protectionBuild": "1.0.0",
"uptime": 36000,
"detectedAttacks": 15,
"blockedBots": 42,
"timestamp": 1710000000,
"nonce": "random-string",
"signature": "hmac-sha256"
}Request Security
All requests require HMAC-SHA256 signature, unique nonce, and timestamp within 60 seconds.