Skip to main content
Public Portal

Build with Global Opportunities Hub

A secure public REST API for approved partners. Authenticate with an API key or OAuth, subscribe to webhooks for real-time events, and stay within generous rate limits.

Base URL

https://api.example.com/api/public/v1

Authentication

Send your API key in the Authorization header. Keys are prefixed with goh_ and shown only once at creation time. OAuth 2.0 with per-user consent is available for partner apps registered in the Developer Portal.

Authorization: Bearer goh_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Scopes

  • identity:read โ€” read the key owner's basic profile
  • jobs:read โ€” list published jobs
  • * โ€” full access (recommend narrow scopes instead)

Rate limits

120 requests / minute per API key. Every response includesX-RateLimit-Remaining and returns429 with aRetry-After header when exceeded.

Quickstart โ€” cURL

curl -H "Authorization: Bearer $GOH_KEY" \
  "https://api.example.com/api/public/v1/jobs?limit=5&remote=true"

SDK example โ€” JavaScript

const res = await fetch("https://api.example.com/api/public/v1/jobs?limit=5", {
  headers: { Authorization: `Bearer ${process.env.GOH_KEY}` },
});
const { data } = await res.json();
console.log(data);

SDK example โ€” Python

import os, requests
r = requests.get(
    "https://api.example.com/api/public/v1/jobs",
    params={"limit": 5, "remote": "true"},
    headers={"Authorization": f"Bearer {os.environ['GOH_KEY']}"},
    timeout=15,
)
r.raise_for_status()
print(r.json()["data"])

Webhooks

Subscribe to events like job.published, application.submitted, and payment.completed. Deliveries are signed with HMAC-SHA256 in theX-GOH-Signature header and retried with exponential backoff. Manage endpoints in the Developer Portal.

Errors

{ "error": { "code": "insufficient_scope", "message": "Requires scope \"jobs:read\"." } }

Use of this API is subject to the Partner Terms. Approved partners only โ€” request access from the Developer Portal.