Get Started with the NextRoll API

The NextRoll API is divided into several services, each with its own focus. Every API uses a common base URL and the authentication method. API parameters and responses can vary with each service, however we try to use consistent terminology across services. If you have any questions, you can contact the API team.

For a high-level overview of the object structure, see Get to know NextRoll.

Register as a Developer

To make API calls, you’ll need to register as developer and create an application:

  1. Create a developer account

  2. Create an application

It is recommended that you create an application for production and one for testing. This allows you to have a separate OAuth 2.0 redirect URI for each of your development environments.

The default quota is 100 API requests per service per day. If you think you need your limit increased, send us a message.


Once you’ve registered your application, you’ll see both a consumer key and secret. You’ll only use the consumer key when making API calls using HTTP Basic Access Authentication. You’ll use both key and secret when authenticating with OAuth 2.0.

Base URL

The base URL for all API calls is:

HTTPS is the only supported protocol.


OAuth 2.0

All API calls are authenticated using OAuth 2.0. For information on how to use OAuth 2.0 see Get Started with OAuth 2.0.

HTTP Basic Access Authentication

Historically developers have been able to use HTTP Basic Access Authentication to make API calls. This method is deprecated and we recommend using OAuth 2.0.

When using HTTP Basic Access Authentication, use the same email address and password you use to sign into the dashboard. Please note to not use your Developer Site login in API calls as it is separate from a user account.

For all requests, you’ll need to pass your application’s Client ID in the apikey query parameter. The apikey parameter is always sent in the URL’s query string, regardless of the HTTP method used. The apikey parameter should not be included in the body of the request for POST, PUT, or PATCH calls.

Your First API Call

The Advertisable is commonly used object in user accounts. Since the Advertisable EID will be used for most API calls, it is recommended to retrieve the Advertisable EID as your first API call.

Using cURL:

curl --user \

Using the Requests library in Python:

adroll_auth = ('', 'great-password')
r = requests.get(

Using PHP:

// create curl resource
$ch = curl_init();

// set url
$url = "";
curl_setopt($ch, CURLOPT_URL, $url);

// return the transfer as a string
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

// Set credentials
$credentials = "";
curl_setopt($ch, CURLOPT_USERPWD, $credentials);

// $output contains the output string
$output = curl_exec($ch);

Using node-fetch library Node.JS:

const fetch = require("node-fetch");

const apiKey = "API_KEY";
const adroll_auth = "";
const endpoint = "" + apiKey;

fetch(endpoint, {
    headers: {
        "Content-Type": "application/json",
        Authorization: "Basic " + Buffer.from(adroll_auth).toString("base64"),
.then(async (res) => {
    const data = await res.json();
    if (res.ok) {
    } else {