Hotel Endpoints and Headers

Endpoints

BookingAPI

Environment Without credit card details With credit card details
Production https://api.hotelbeds.com/hotel-api/{version}/{operation} https://api-secure.hotelbeds.com/hotel-api/{version}/{operation}
Test https://api.test.hotelbeds.com/hotel-api/{version}/{operation} https://api-secure.test.hotelbeds.com/hotel-api/{version}/{operation}

Current version: 1.0 (1.2 for BookingConfirmation operation when booking WITHOUT credit card details)


ContentAPI

Environment
Production https://api.hotelbeds.com/hotel-content-api/{version}/{operation}
Test https://api.test.hotelbeds.com/hotel-content-api/{version}/{operation}

Current version: 1.0


Request Headers

Header name

Description

Api-Key

Your registered API key

X - Signature

SHA256 encoding signature

Content-Type

application/xml or application/json

Accept

application/xml or application/json

Accept- encoding

Gzip

Response Headers

Header name

Description

Example

Access-Control-Allow-Headers

Indicates which HTTP headers can be used when making the actual request.

x-requested-with, Content-Type

Access-Control-Allow-Methods

Indicates which HTTP methods can be used when making the actual request.

POST, GET, OPTIONS, DELETE

Access-Control-Allow-Origin

Specifies a URI that may access the resource. For requests without credentials, the server may specify ‘*’ as a wildcard, thereby allowing any origin to access the resource.

*

Access-Control-Max-Age

Indicates how long the results of a request can be cached in seconds.

3600

Connection

Options desired for the connection.

Keep-Alive

Content-Encoding

The type of encoding using in the data.

gzip

Content-Length

 

The length of the response body in octets (8-bit bytes)

1306

Content-Type

The mime type of this content.

application/json; charset=UTF-8

Date

The date and time that the message was sent.

Wed, 17 Feb 2016 11:50:10 GMT

Server

Name for the server.

Apache-Coyote/1.1

Vary

Tells downstream proxies how to match future request headers to decide whether the cached response can be used rather than requesting a fresh one from the origin server.

Accept-Encoding

X-Application-Context

Application name: environment: port

hotelapi:int:8383

X-Mashery-Responder

Server in charge of the x-signature validation.

prod-j-worker-eu-west-1c-58.mashery.com

X-PackageKey-QPS-Allotted

Quota Per Second limit for your current plan.

100

X-Plan-Qps-Current

Current amount of quota used.

1

X-PackageKey-Quota-Allotted

Quota limit per requests.

100

X-Plan-Quota-Current

Current amount of quota used.

1

X-Plan-Quota-Reset

Next date when the Current Quota will be reset to 0.

Thursday, February 18, 2016 12:00:00 AM GMT

 

Docs Navigation