Overview - Zapfy Docs

The Zapfy API is REST over HTTPS. You send messages and manage instances and webhooks through a single surface — the engine that connects to WhatsApp stays abstracted. Base URL

https://api.zapfy.io

Authentication

Everything via Authorization: Bearer <token>. There are two tokens, each with its own scope:

Account token

Prefix zpfy_acct_. Manages instances and webhooks (create, list, edit, delete).

Instance token

Prefix zpfy_inst_. Sends messages for a specific number.

# send a message (instance token)
curl -X POST https://api.zapfy.io/message/send-text \
  -H "Authorization: Bearer zpfy_inst_xxxxxxxxxxxx" \
  -H "Content-Type: application/json" \
  -d '{ "number": "5511999998888", "text": "Hi!" }'

Each endpoint shows which token to use in the Authorization selector of the playground on the right. Messages use the instance token; instances and webhooks, the account token.

Webhooks

Inbound events (message received, status, connection) arrive at the webhooks you register — one URL, many events. See Configuration and Events.

Send text

⌘I

​Authentication

Account token

Instance token

​Webhooks

Authentication

Webhooks