WowCoach.gg
WowCoach.gg
BETADeveloper API

This portal is still in testing and may change before full release. Testers welcome!

Developer API Terms of Service

Last updated: February 2026

These terms govern your use of the WowCoach Developer API ("the API"). By creating an API key, registering an OAuth application, or making API requests, you agree to these terms.

1. Eligibility & Access Tiers

The WowCoach API provides two levels of access:

API Keys (Personal Access) — Any registered WowCoach user can create API keys for free (up to 5 per account). API keys provide programmatic access to your own data — reports, fights, player stats, coaching insights, and more. An active WowCoach subscription is required to access your data, as the subscription gates the data itself, not the key.

OAuth Applications (Third-Party Access) — Any registered user can register OAuth applications for free (up to 5 per account). OAuth enables your application to request access to other users' data on their behalf. Each user who authorizes your application must have an active WowCoach subscription. Your application may only access data for users who have explicitly granted consent through the OAuth authorization flow.

2. Authentication & Scopes

API requests are authenticated via the X-WowCoach-Api-Key header. For user-level data, combine your API key with an OAuth bearer token in the Authorization header.

Each API key and OAuth token is assigned a set of scopes that control which endpoints are accessible. When both an API key and OAuth token are present, the effective scope is the intersection of both — your application can only access data permitted by both the key and the authorizing user's token.

Certain scopes (e.g., read:guilds) require the authorizing user to hold a specific subscription tier.

3. Rate Limits

The following rate limits apply per API key:

  • 1,000 requests per hour
  • 10,000 requests per day
  • 100,000 requests per month
  • 10 requests per second (burst)
  • 100 raw event queries per day

Rate limit status is returned via X-RateLimit-Limit, X-RateLimit-Remaining, and X-RateLimit-Reset headers. Exceeding limits returns HTTP 429 with a Retry-After header.

4. No Commercial Use

Data obtained through the API may not be used for commercial purposes without prior written approval from WowCoach. This includes selling, licensing, or monetizing API data or derivative works. For commercial licensing inquiries, contact developers@wowcoach.gg.

5. Data Attribution

Any application, bot, or tool that displays data from the WowCoach API must include visible attribution:

Data provided by WowCoach

The attribution must include a clickable link to https://wowcoach.gg where technically feasible (e.g., Discord embed footers, web apps, documentation).

6. Acceptable Use

You agree not to:

  • Scrape or bulk-download data beyond reasonable API usage patterns
  • Use data to harass, shame, or target players
  • Reverse-engineer WowCoach internal systems or algorithms
  • Circumvent or attempt to bypass rate limits
  • Share API keys or client secrets with third parties or embed them in client-side code
  • Use the API to compete directly with WowCoach services
  • Access user data without explicit OAuth consent from the user

7. OAuth Application Requirements

If you register an OAuth application, you are responsible for:

  • Keeping your client secret confidential (it is shown only once at creation)
  • Using only registered redirect URIs for authorization flows
  • Requesting only the scopes your application actually needs
  • Clearly describing your application's purpose to users during authorization
  • Honoring token revocation — when a user revokes access, stop using their data immediately

8. Data Handling & Caching

Developers should respect the following cache guidelines to reduce unnecessary load:

  • API responses: Cache for up to 24 hours
  • Leaderboard data: Cache for up to 1 hour
  • Game data (encounters, zones, seasons): Cache for up to 7 days

Upon API key or OAuth app revocation, all cached data must be purged within 48 hours.

9. Privacy

Developers are responsible for complying with applicable privacy laws (GDPR, CCPA) when handling data obtained through the API. Player data is pseudonymous (character names and realm) and should not be correlated with real-world identities without explicit player consent.

When accessing user data via OAuth, you must provide a privacy policy to your users explaining how their WowCoach data will be used and stored.

10. Revocation

API keys and OAuth applications may be revoked for violation of these Terms of Service.

In cases of revocation for TOS violations, developers have a 7-day window to appeal by contacting developers@wowcoach.gg.

11. Liability

The WowCoach API is provided "as-is" without warranty of any kind. WowCoach does not guarantee uptime, accuracy, or availability, and no Service Level Agreement (SLA) is offered. Developers indemnify WowCoach against any claims arising from their use of the API.

12. Changes

WowCoach reserves the right to modify these terms. Material changes will be communicated with at least 30 days notice via email to the account associated with your API keys. Continued use of the API after the notice period constitutes acceptance of the updated terms.