Widget Embed (Runtime)
Get embed config
Fetch the public configuration for a live widget by its embed token.
GET
This is an embed runtime endpoint. It is called by the embedded Vouchmark widget in the applicant’s browser, not by your backend. It uses the widget’s
token and does not take a Bearer token.live. If the widget is configured to require signed requests, it cannot be opened via direct link and this endpoint returns an error.
Authenticate with either a direct-link token or SDK credentials (widgetId, publicKey, env). All SDK values must match the same environment — see SDK environments.
Query parameters
Use one of the following parameter sets.Direct link
The widget’s embed link token (
embedLinkToken, starts with elt_). Required when not using SDK credentials.SDK (mobile / web embed)
Widget ID from the dashboard. Required with
publicKey and env.Publishable API key:
test_pk_… (sandbox) or live_pk_… (live).Widget environment:
sandbox or live. Must match the key prefix and the widget’s environment field.branding, flow, and modules sections — never security, risk, or notifications. Rate limited to 60 requests per minute.