myuuid.shop

API documentation

The myuuid.shop API is a JSON-over-HTTPS service for issuing and verifying universally unique identifiers. All endpoints are versioned under /v1.

Authentication

Authenticated requests pass an API key via the Authorization header. Anonymous requests are rate-limited per source IP.

Authorization: Bearer mukey_live_xxxxxxxxxxxx

POST /v1/generate

Issue a new UUID. The returned identifier has been verified against our entire database of previously issued UUIDs.

curl -X POST https://api.myuuid.shop/v1/generate \
  -H "Authorization: Bearer ${MYUUID_KEY}"

{
  "uuid": "f47ac10b-58cc-4372-a567-0e02b2c3d479",
  "verified_unique": true,
  "checked_against": 4829471823,
  "verification_id": "ver_7K2mN9pQ",
  "issued_at": "2026-05-13T14:23:09.481Z",
  "tier": "verified"
}

GET /v1/verify/:uuid

Re-verify a UUID. Returns whether the identifier was issued by myuuid.shop and is recorded as unique in our database.

curl https://api.myuuid.shop/v1/verify/f47ac10b-58cc-4372-a567-0e02b2c3d479

{
  "uuid": "f47ac10b-58cc-4372-a567-0e02b2c3d479",
  "issued_by_us": true,
  "verified_unique": true,
  "issued_at": "2026-05-13T14:23:09.481Z",
  "verification_id": "ver_7K2mN9pQ"
}

POST /v1/namespace/derive Enterprise

Derive a deterministic UUID v5 in your reserved namespace, per RFC 4122 §4.3.

curl -X POST https://api.myuuid.shop/v1/namespace/derive \
  -H "Authorization: Bearer ${MYUUID_KEY}" \
  -H "Content-Type: application/json" \
  -d '{"name":"customer:42"}'

{
  "uuid": "a3d4e9d1-8c2f-5b1e-bd7a-7e5e0f3a9b21",
  "version": 5,
  "namespace": "00000000-0000-0000-0000-000000000abc",
  "name": "customer:42"
}

Rate limits

Daily quotas are enforced per API key. When exceeded, the API returns HTTP 429 with a daily_quota_exceeded error code. Anonymous requests are limited to 20 generations per day per source IP.

Errors

Errors are returned as JSON with an error code and human-readable message. Notable codes:

  • daily_quota_exceeded — your tier's daily UUID allocation is exhausted.
  • collision_storm — multiple verification collisions within a single request; the UUID Team has been paged.
  • malformed_uuid — the supplied identifier does not match RFC 4122 formatting.
  • enterprise_only — endpoint requires an Enterprise plan.