ALL SYSTEMS OPERATIONAL API 99.99%
v4.2 · BUILD 20260527
DEVELOPER · API

The Northern Star API.
One interface across nine systems.

A single API for metadata correction, rights-chain validation, and workflow automation across the Northern Star Systems suite. Currently in private access for partners and enterprise customers.

Request access → See endpoint reference
— OVERVIEW

One API. Every system in the suite.

Authentication is identical across endpoints. Payloads are normalized to a single schema. Rate limits scale with your plan. Calls are made over HTTPS to api.northernstarsystems.com.

Versioned

All endpoints sit under /v1/. Breaking changes ship as /v2/ with at least 12 months overlap.

JSON only

Requests and responses are JSON. CSV/DDEX inputs are accepted via the /v1/ingest endpoint and normalized server-side.

Idempotent writes

POSTs accept an Idempotency-Key header. Same key returns the same result for 24 hours.

— AUTHENTICATION

Bearer tokens, scoped per system and environment.

Tokens are issued per system (HeyRoya, Kataloghub, VerseIQ, etc.) and per environment (sandbox or production). Rotate at any time from the dashboard or by emailing us.

# Every request carries a bearer token in the Authorization header. curl https://api.northernstarsystems.com/v1/corrections \ -H "Authorization: Bearer ns_live_•••••••••••••••••" \ -H "Content-Type: application/json" \ -H "Idempotency-Key: 8f3c-…" \ -d '{ "isrc": "USRC1-23-04571", "title": "Northbound" }'

Sandbox tokens are prefixed ns_test_, production tokens ns_live_. Sandbox writes never touch live catalog state. Token leaks should be reported to security@northernstarsystems.com.

— ENDPOINTS

Endpoint reference.

Five endpoint families cover correction, validation, queries, reports, and webhooks. Full reference docs ship with sandbox access.

Coming soon
POST/v1/corrections

Corrections

Submit a metadata payload. Receive a corrected version with a per-field diff and confidence score. High-confidence corrections apply automatically; edge cases return a review_required flag.

Coming soon
POST/v1/validate

Validation

Check metadata against ISRC, ISWC, IPI, and client-specific rulesets without mutating it. Returns a structured list of pass/fail rules with reasoning.

Coming soon
GET/v1/rights/*

Rights-chain queries

Look up writers, splits, territories, and registration status by ISRC or ISWC. Joins authoritative registries with your catalog state.

Coming soon
POST/v1/reports

Reports

Build a report from validated catalog data — leakage analysis, territory coverage, registration gaps. Sync (small) or async (large) execution.

Coming soon
POST/v1/webhooks

Webhooks

Subscribe to correction, validation, and report events. Signed payloads (X-NSS-Signature), exponential backoff retry, 30-day event replay.

Coming soon
POST/v1/ingest

Ingest

Stream large payloads (CSV, DDEX feeds, DSP exports) into the pipeline. Async by default with a job ID for polling or webhook delivery.

— LIMITS · SDKS

Rate limits and client libraries.

Standard limits below. Enterprise plans negotiate custom limits and dedicated infrastructure.

60

Sandbox

Requests per minute per token, across all endpoints. Use for development and CI.

600

Production

Requests per minute per token. Standard for SaaS plans. Burst headroom available.

Enterprise

Dedicated infrastructure, custom limits, SLA-backed throughput. Talk to us.

— OFFICIAL SDKS

Python

In development. pip install northern-star on private index for partners.

Node.js

In development. npm i @northern-star/sdk on private registry.

Go

In development. Generated from the OpenAPI spec; module path shared with sandbox access.

Building on Northern Star? Let's talk.

Sandbox access, integration support, and a live walkthrough of the endpoint families that match your workflow. We respond within one business day.

Request API access →