You are viewing public documentation. The code samples below show placeholder credentials. Log in or register to see your real API key pre-filled in every example.

API Documentation

Complete guide to integrating SMESS WhatsApp API into your application

Queue-Based Delivery Auto-Retry Logic Real-time Processing
API Key SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Create and reveal keys from your client portal.

Log in to see yours
Quick Navigation

Quick Start Guide

1
Get Your API Key

Register or log in, then create a key at API Keys.

SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
2
Make Your First Request

Send messages via POST to /api/send using apikey, recipient and text.

3
Track Delivery

Check status, queue and history in the Messages and Queue pages.

4
Handle Responses

The API returns HTTP 202 on success with a queue_id. Errors include an error_code and HTTP status.

Authentication

All API requests require your API key. You can authenticate in three ways (in priority order):

Method How Notes
POST field apikey=SM-... Recommended for server-to-server integrations.
Header X-API-Key: SM-... Preferred for cleaner logs.
Bearer Authorization: Bearer SM-... Standard OAuth-style header. 
curl -X POST https://www.smess.io/api/send \
  -H "X-API-Key: SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" \
  -d "recipient=+233244123456" \
  -d "text=Hello World!"
Security Tip: Keep your API key secure and never expose it in client-side code. Always make API calls from a server. If a key is leaked, revoke it immediately from API Keys.

Send Message

POST https://www.smess.io/api/send

Messages are submitted to a queue and delivered by the background worker. The API returns HTTP 202 Accepted on success, not 200.

Core Parameters
Name Type Required Description
apikey string Yes Your API authentication key. Also accepted as X-API-Key or Authorization: Bearer header. Not api_key.
recipient string Yes Phone number with country code (e.g., +233244123456). Not phone.
text string Yes* Message text or media caption. Not message. *At least one content field is required.
priority string/int No otp / urgent / high / normal (default) / bulk / low
idempotency_key string No Unique key per send attempt. Replaying the same key within 5 minutes returns the original response without sending a duplicate. Recommended for OTPs.
Message Type Auto-Detection

The endpoint detects the message type from the parameters you provide. Include only the parameters for the type you want to send:

TypeRequired parameter(s)
Texttext
Imagefile (image URL)
Documentdocument (file URL) + optional filename
Videovideo
Audioaudio
Locationlatitude + longitude + optional label
Contact cardcontact_name + contact_phone
Buttonsbutton1 + button1id (up to 3)
Copy code (OTP)copycode + optional copytext
List menulist_title + list_button + list_sections (JSON)
Example Request
curl -X POST https://www.smess.io/api/send \
  -H "X-API-Key: SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" \
  -d "recipient=+233244123456" \
  -d "text=Hello from SMESS!"
Success Response (HTTP 202)
Success Response 
{
    "success": true,
    "message": "Message queued successfully. It will be sent by the queue worker.",
    "data": {
        "queue_id": 42,
        "recipient": "+233244123456",
        "message_type": "text",
        "priority": 5,
        "priority_label": "normal",
        "status": "queued",
        "timestamp": "2026-06-16 10:30:00",
        "remaining_quota": 999,
        "note": "Message will be sent by queue worker with rate limiting and spam prevention"
    }
}

Message Types

All message types use the same POST /api/send endpoint. The type is auto-detected from the parameters you send.

Document
curl -X POST https://www.smess.io/api/send \
  -H "X-API-Key: SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" \
  -d "recipient=+233244123456" \
  -d "document=https://example.com/invoice.pdf" \
  -d "filename=Invoice-2026.pdf" \
  -d "text=Here is your invoice."
Image
curl -X POST https://www.smess.io/api/send \
  -H "X-API-Key: SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" \
  -d "recipient=+233244123456" \
  -d "file=https://example.com/photo.jpg" \
  -d "text=Check this out!"
Buttons (up to 3)
curl -X POST https://www.smess.io/api/send \
  -H "X-API-Key: SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" \
  -d "recipient=+233244123456" \
  -d "text=Confirm your delivery?" \
  -d "button1=Yes" \
  -d "button1id=confirm" \
  -d "button2=No" \
  -d "button2id=cancel"
Copy Code (OTP)
curl -X POST https://www.smess.io/api/send \
  -H "X-API-Key: SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" \
  -d "recipient=+233244123456" \
  -d "text=Your verification code is:" \
  -d "copycode=482916" \
  -d "copytext=Tap to Copy" \
  -d "priority=otp" \
  -d "idempotency_key=otp-user-123-1782466132"
Location
curl -X POST https://www.smess.io/api/send \
  -H "X-API-Key: SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" \
  -d "recipient=+233244123456" \
  -d "latitude=5.6037" \
  -d "longitude=-0.1870" \
  -d "label=Accra Mall"
List Menu
curl -X POST https://www.smess.io/api/send \
  -H "X-API-Key: SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" \
  -d "recipient=+233244123456" \
  -d "text=Please select a department:" \
  -d "list_title=Contact Us" \
  -d "list_button=View Departments" \
  -d 'list_sections=[{"title":"Sales","rows":[{"title":"New Orders","description":"Place a new order","rowId":"sales_new"}]}]'

Track Messages

After queuing, track message status in the client portal or via the message detail API:

ResourceURLPurpose
Queue /my-queue Pending / processing / sent / failed messages
Message History /my-messages Delivered messages and delivery receipts
Note: Save the queue_id returned in the 202 response and use it to correlate with status updates in your dashboard or webhooks.

Error Handling

The API returns JSON error responses with an HTTP status code and an error_code when available:

400 Bad Request — missing or invalid parameters (e.g., wrong phone format)
401 Unauthorized — API key missing or invalid (INVALID_KEY)
402 Payment Required — quota exceeded (QUOTA_EXCEEDED) or subscription/trial expired
403 Forbidden — key inactive/revoked (KEY_INACTIVE) or account suspended
413 Payload Too Large — media file exceeds your plan limit
429 Too Many Requests — per-minute rate limit or per-recipient cooldown (OTP_COOLDOWN)
503 Service Unavailable — WhatsApp connection not ready (WHATSAPP_DISCONNECTED / NOT_ACTIVATED)
Error Response Example 
{
    "success": false,
    "error": "Invalid API key",
    "error_code": "INVALID_KEY",
    "code": 401
}

Rate Limits & Safeguards

Limits are per API key and depend on your plan:

LimitStarterGrowthEnterprise
API submissions / minute 60 300 1000
Document/media max size 25 MB 50 MB 100 MB
Per-recipient minimum gap 60 seconds (configurable 0–600s per key)
Per-recipient daily cap 50 messages / recipient / day
Bulk sending: For campaigns, use priority=bulk and submit via POST /api/bulk (Growth+). The queue worker spaces out delivery automatically.

Troubleshooting

Common mistakes that cause API errors:

HTTP 401 — "API key is required" / "Invalid API key"

The server did not receive a valid key. Common causes:

❌ Wrong (will fail)✅ Correct
api_key (with underscore)apikey
key or tokenapikey / X-API-Key / Authorization: Bearer
JSON body (Content-Type: application/json)application/x-www-form-urlencoded or multipart
Query string ?apikey=...POST field or header (query string is deprecated and logged)
HTTP 400 — Missing Parameters
❌ Wrong (will fail)✅ Correct
phone, number, torecipient
message, msg, bodytext
image, photofile (images) or document (any file)
✅ Correct Example
curl -X POST https://www.smess.io/api/send \
  -H "X-API-Key: SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" \
  -d "recipient=+233244123456" \
  -d "text=Hello, this works!"
❌ Incorrect Example (will return 401)
# WRONG - these parameter names are NOT accepted
curl -X POST https://www.smess.io/api/send \
  -H "Content-Type: application/json" \
  -d '{"api_key":"SM-XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","phone":"+233244123456","message":"This will fail"}'