API Terms of Use

Last updated: December 05, 2025

These API Terms of Use ("API Terms") govern your access to and use of the FlashPanel Application Programming Interface ("API"). By accessing or using the FlashPanel API, you agree to be bound by these API Terms, our general Terms of Service, and our Privacy Policy.

1. Purpose and Permitted Use

1.1 Intended Purpose

The FlashPanel API is provided to enable authorized users to:

• Integrate FlashPanel functionality into their personal workflows
• Automate server management tasks for their own infrastructure
• Build internal tools for their organization's exclusive use
• Create custom integrations that enhance their FlashPanel experience

1.2 Permitted Uses

You may use the FlashPanel API for:

• Personal automation: Scripts and tools for your own server management
• Internal business tools: Applications used exclusively within your organization
• Private integrations: Connecting FlashPanel with your internal systems
• Development and testing: Building and testing integrations in non-production environments

2. Prohibited Uses

2.1 Derivative Services and Products

You are strictly prohibited from using the FlashPanel API to:

• Create, operate, or offer any derivative service, product, or platform
• Build a competing server management service or similar SaaS product
• Develop any public-facing website, application, or service that replicates FlashPanel functionality
• Create white-label or rebranded versions of FlashPanel services

2.2 Reselling and Commercial Redistribution

The following activities are expressly prohibited:

• Reselling, sublicensing, or redistributing API access to third parties
• Charging end users for access to FlashPanel functionality obtained through the API
• Creating any form of API marketplace, proxy service, or intermediary platform
• Offering FlashPanel API capabilities as part of your commercial products or services

2.3 Multi-Tenant and Public Services

You may not use the FlashPanel API to:

• Build multi-tenant applications serving multiple unrelated customers
• Create public SaaS platforms or hosting control panels
• Operate shared infrastructure where multiple parties access FlashPanel through your API integration
• Provide API proxy services or API aggregation services
• Use the API as a backend for services offered to third parties

2.4 Technical Abuse

The following technical activities are prohibited:

• Circumventing rate limits or access controls
• Conducting load testing, stress testing, or benchmarking without prior written approval
• Automated scraping or mass data extraction
• Using the API in ways that degrade service quality for other users
• Reverse engineering, decompiling, or disassembling API components

3. Rate Limits and Usage Restrictions

3.1 Rate Limiting

FlashPanel implements rate limiting to ensure fair usage and service stability:

• API requests are subject to rate limits based on your subscription tier
• Rate limit information is provided in API response headers
• Exceeding rate limits will result in temporary request rejection (HTTP 429)
• Persistent rate limit violations may result in API access suspension

3.2 Usage Quotas

Your API usage may be subject to:

• Daily, weekly, or monthly request limits
• Concurrent connection limits
• Data transfer limits
• Resource-specific operation limits

3.3 Fair Use

All API access is subject to fair use principles. FlashPanel reserves the right to determine what constitutes excessive or unreasonable use and to take appropriate action.

4. Security Requirements

4.1 API Credentials

You are responsible for:

• Maintaining the confidentiality of your API keys and access tokens
• Implementing secure storage practices for credentials
• Never sharing API credentials publicly or embedding them in client-side code
• Rotating credentials periodically and immediately if compromise is suspected
• Reporting any suspected unauthorized use of your credentials to FlashPanel immediately

4.2 Secure Implementation

Your API integrations must:

• Use HTTPS for all API communications
• Validate SSL/TLS certificates
• Implement proper error handling without exposing sensitive information
• Follow security best practices for handling authentication tokens

5. FlashPanel's Rights

5.1 Monitoring and Enforcement

FlashPanel reserves the right to:

• Monitor API usage patterns and request volumes
• Log and analyze API requests for security and compliance purposes
• Investigate suspected violations of these API Terms
• Share usage data with law enforcement if required by law

5.2 Access Control

FlashPanel may, at its sole discretion and without prior notice:

• Modify, limit, or restrict API functionality
• Temporarily suspend API access during maintenance or emergencies
• Permanently revoke API access for violations of these terms
• Adjust rate limits and usage quotas
• Deprecate or discontinue specific API endpoints

5.3 Service Modifications

FlashPanel may modify the API at any time. We will make reasonable efforts to provide advance notice of significant changes through our documentation or communication channels.

6. User Responsibilities

6.1 Compliance

You are responsible for:

• Ensuring your use of the API complies with these API Terms and all applicable laws
• Obtaining any necessary consents from your end users for data processing
• Maintaining appropriate security measures for your integrations
• Keeping your contact information current with FlashPanel

6.2 Content and Data

You are solely responsible for:

• All data you transmit through the API
• The accuracy and legality of information submitted via the API
• Any actions taken through your API credentials
• Backing up your data and configurations

7. Indemnification

You agree to indemnify, defend, and hold harmless FlashPanel, its affiliates, officers, directors, employees, and agents from and against any and all claims, damages, losses, liabilities, costs, and expenses (including reasonable attorneys' fees) arising out of or related to:

• Your use of the FlashPanel API
• Your violation of these API Terms
• Your violation of any applicable law or third-party rights
• Any applications, products, or services you develop using the API
• Any claims brought by your users or customers related to your API integration

8. Disclaimer of Warranties

THE FLASHPANEL API IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE. FLASHPANEL SPECIFICALLY DISCLAIMS ALL IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, AND NON-INFRINGEMENT.

FlashPanel does not warrant that:

• The API will be uninterrupted, timely, secure, or error-free
• The results obtained from the API will be accurate or reliable
• The API will meet your specific requirements
• Any errors in the API will be corrected

9. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, FLASHPANEL SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR ANY LOSS OF PROFITS OR REVENUES, WHETHER INCURRED DIRECTLY OR INDIRECTLY, OR ANY LOSS OF DATA, USE, GOODWILL, OR OTHER INTANGIBLE LOSSES, RESULTING FROM:

• Your use or inability to use the API
• Any unauthorized access to or alteration of your data
• Any third-party conduct related to the API
• Any interruption or cessation of API services

10. Modifications to API Terms

FlashPanel reserves the right to modify these API Terms at any time. Changes will be effective upon posting to our website. Material changes will be communicated through:

• Email notification to registered API users
• Prominent notice on the FlashPanel dashboard
• Updates to our documentation

Your continued use of the API after changes constitutes acceptance of the modified terms.

11. Termination

11.1 Termination by You

You may terminate your API access at any time by deleting your API credentials and discontinuing use of the API.

11.2 Termination by FlashPanel

FlashPanel may terminate or suspend your API access immediately, without prior notice or liability, for any reason, including but not limited to:

• Violation of these API Terms
• Violation of our general Terms of Service
• Suspected fraudulent, abusive, or illegal activity
• Non-payment of applicable fees
• Extended period of inactivity
• Discontinuation of the API service

11.3 Effect of Termination

Upon termination:

• All rights granted to you under these API Terms will immediately cease
• You must immediately stop using the API
• You must delete all API credentials in your possession
• Provisions that by their nature should survive termination will survive

12. Contact Information

For questions about these API Terms or to report API-related issues, please contact us through our official support channels listed at flashpanel.io.

---

API Anti-Abuse Policy

Last updated: December 05, 2025

This Anti-Abuse Policy outlines prohibited behaviors and the enforcement procedures FlashPanel employs to maintain the integrity, security, and availability of our API services for all users.

1. Definition of Abuse

API abuse includes any use of the FlashPanel API that violates our API Terms of Use, degrades service quality, threatens system security, or unfairly impacts other users. FlashPanel reserves sole discretion in determining what constitutes abusive behavior.

2. Prohibited Behaviors

2.1 Commercial Exploitation

The following commercial activities are strictly prohibited:

• Derivative Service Creation: Building any service, product, or platform that leverages the FlashPanel API to offer functionality to third parties
• API Reselling: Selling, licensing, or providing API access to any third party
• SaaS Development: Creating multi-tenant software-as-a-service applications using the API
• Public Website/Application: Building publicly accessible websites or applications powered by the API
• White-labeling: Rebranding or reselling FlashPanel functionality under a different name
• Marketplace Creation: Operating platforms where others can access FlashPanel features

2.2 Technical Abuse

The following technical activities are prohibited:

• Rate Limit Circumvention: Deliberately attempting to bypass or exceed rate limits through multiple accounts, distributed requests, or technical exploits
• Load Testing: Conducting load tests, stress tests, or performance benchmarks without explicit written authorization
• Automated Flooding: Sending continuous automated requests that consume excessive resources
• Quality of Service Attacks: Using the API in ways that intentionally or negligently degrade service for other users
• Spam Requests: Sending repetitive, unnecessary, or malformed requests
• Bot Networks: Using botnets, distributed systems, or automated tools to generate API traffic
• IP Rotation: Using rotating proxies, VPNs, or IP address manipulation to evade detection or restrictions

2.3 Security Violations

The following security-related activities are prohibited:

• Credential Sharing: Sharing API keys, tokens, or credentials with unauthorized parties
• Unauthorized Access: Attempting to access resources, endpoints, or data you are not authorized to access
• Vulnerability Exploitation: Exploiting security vulnerabilities in the API or related systems
• Data Harvesting: Mass collection or scraping of data through the API
• Reverse Engineering: Attempting to reverse engineer, decompile, or extract source code from the API

2.4 Anomalous Behavior

The following patterns may be flagged as suspicious:

• Requests from unusual geographic locations inconsistent with your account
• Sudden dramatic increases in API usage
• Requests from known malicious IP ranges
• Patterns consistent with automated bot activity
• Multiple failed authentication attempts
• Unusual request timing patterns (e.g., perfectly regular intervals)

3. Monitoring and Detection

3.1 FlashPanel's Monitoring Rights

FlashPanel actively monitors API usage to detect and prevent abuse. Our monitoring includes:

• Real-time request rate analysis
• Usage pattern anomaly detection
• Geographic and IP address analysis
• Request content and behavior analysis
• Authentication failure monitoring

3.2 Log Collection

FlashPanel collects and retains API logs including:

• Timestamps of all API requests
• Request endpoints and parameters
• Source IP addresses
• User agent strings
• Response codes and error messages
• Request volume and patterns

These logs may be retained for security, compliance, and enforcement purposes.

4. Enforcement Procedures

4.1 Graduated Response

FlashPanel employs a graduated enforcement approach for most violations:

Level 1: Friendly Warning

• Trigger: First-time minor violations or unintentional policy breaches
• Action: Email notification explaining the violation and requesting corrective action
• Timeline: User has 48 hours to acknowledge and address the issue
• Impact: No service disruption

Level 2: Formal Warning

• Trigger: Repeated minor violations, failure to respond to Level 1 warning, or moderate policy breaches
• Action: Formal written notice documenting the violation and required remediation steps
• Timeline: User has 24 hours to respond and 72 hours to fully remediate
• Impact: Violation recorded on account; may affect future enforcement decisions

Level 3: Temporary API Suspension (Soft Ban)

• Trigger: Failure to comply with Level 2 warning, serious policy violations, or pattern of repeated violations
• Action: API access suspended for 7-30 days
• Timeline: User must submit remediation plan for review before access is restored
• Impact: All API requests rejected during suspension period

Level 4: Permanent API Revocation

• Trigger: Severe violations, failure to remediate after suspension, or repeated serious offenses
• Action: Permanent revocation of API access privileges
• Timeline: Immediate and permanent
• Impact: API credentials invalidated; user prohibited from obtaining new API access

Level 5: Account Termination

• Trigger: Extremely severe violations including fraud, security attacks, illegal activity, or actions causing significant harm to FlashPanel or other users
• Action: Complete termination of FlashPanel account and all associated services
• Timeline: Immediate
• Impact: All services terminated; may involve legal action; user permanently banned from platform

4.2 Immediate Action Cases

FlashPanel reserves the right to skip graduated enforcement and take immediate action (Level 3 or higher) for:

• Security threats or active attacks
• Clear and intentional commercial exploitation
• Fraudulent activity
• Illegal use of the API
• Actions causing immediate harm to other users or systems

5. Rate Limit Adjustments

FlashPanel may adjust your rate limits at any time based on:

• Your usage patterns and history
• Your subscription tier
• Overall system load and capacity
• Compliance history with these policies

Rate limit reductions may be applied as a preventive measure even without a formal violation finding.

6. Appeals Process

If you believe an enforcement action was taken in error:

• Contact FlashPanel support within 7 days of the action
• Provide detailed explanation and any relevant evidence
• FlashPanel will review the appeal within 5 business days
• Decisions on appeals are final

7. Reporting Abuse

If you become aware of API abuse by another party, please report it to FlashPanel through our official support channels. We appreciate the community's help in maintaining a fair and secure platform.

---

API Frequently Asked Questions

Last updated: December 05, 2025

This FAQ provides clear, simple answers to common questions about the FlashPanel API and its permitted uses.

General Questions

What is the FlashPanel API used for?

The FlashPanel API allows you to programmatically interact with your FlashPanel account. You can automate server management tasks, create custom integrations with your existing tools, and build internal applications that help you work more efficiently with your servers.

Who can use the API?

The API is available to FlashPanel users with active subscriptions. API access and rate limits may vary depending on your subscription tier.

Where can I find the API documentation?

Complete API documentation is available in your FlashPanel dashboard under the API section. It includes endpoint references, code examples, and best practices.

Permitted Use Questions

Can I use the API for my personal projects?

Yes! Personal automation and projects are exactly what the API is designed for. You can build scripts, tools, and integrations that help you manage your servers more efficiently.

Can I use the API for internal company tools?

Yes! Building internal tools for your organization is permitted. For example, you can create dashboards for your DevOps team, integrate FlashPanel with your internal systems, or automate deployment workflows for your company's projects.

Can my company's employees use tools I build with the API?

Yes! Internal tools used by your organization's employees are permitted, as long as:

• The tool is for internal use only (not offered to external customers)
• It manages servers that belong to your organization
• It's not offered as a commercial service to others

Prohibited Use Questions

Why can't I create a derivative service using the API?

The FlashPanel API is provided to enhance your own use of our platform, not to enable others to compete with us or bypass our platform entirely. Creating derivative services would:

• Undermine the sustainability of FlashPanel
• Create support and security issues we cannot control
• Violate the trust relationship between FlashPanel and its users

If you're interested in building commercial products, see our partnership options below.

Why can't I build a SaaS product using the API?

The API license is for personal and internal use. Building a SaaS product means you would be:

• Reselling FlashPanel's functionality to others
• Creating a competing service
• Serving multiple unrelated customers through our infrastructure

This is not permitted under the standard API terms. If you have a legitimate business need for this type of use, please contact us about commercial licensing.

Why can't I resell API access?

Your API credentials are for your use only. Reselling or sharing API access creates security risks, makes it impossible for us to provide proper support, and violates the trust-based relationship we have with our users.

Can I build a public website powered by the FlashPanel API?

No. Public websites, applications, or services that offer FlashPanel functionality to the general public are not permitted. The API is for your private, internal use only.

Technical Questions

What are the API rate limits?

Rate limits vary by subscription tier and endpoint. Current limits are displayed in your dashboard and included in API response headers. If you need higher limits for legitimate use cases, contact our support team.

Can I do load testing on the API?

Not without permission. Load testing, stress testing, or benchmarking requires explicit written approval from FlashPanel. Unauthorized testing may result in your API access being suspended.

What happens if I accidentally exceed rate limits?

Occasional rate limit hits are normal and won't cause problems. Your requests will temporarily receive 429 responses, and you should implement backoff logic to handle this gracefully. Persistent or intentional rate limit abuse may result in enforcement action.

Violation and Enforcement Questions

What happens if I accidentally violate the API terms?

We understand that violations are sometimes unintentional. Our enforcement process is graduated:

1. First, we'll reach out: You'll receive a friendly notification explaining the issue
2. You'll have time to fix it: We provide a reasonable timeframe to address the violation
3. We'll work with you: Our team is available to help you find compliant alternatives

Immediate suspension only occurs for severe or clearly intentional violations. We prefer education and correction over punishment.

What if I'm not sure if my use case is allowed?

Ask us! If you're uncertain whether your planned use is permitted, please contact our support team before building. We're happy to provide guidance and would rather help you stay compliant than deal with violations after the fact.

I received a warning. What should I do?

1. Read it carefully: Understand exactly what the violation was
2. Respond promptly: Acknowledge that you received the warning
3. Take corrective action: Stop the violating behavior and fix any issues
4. Ask for help: If you need guidance on how to comply, our support team can help

Can I appeal an enforcement decision?

Yes. If you believe an action was taken in error, you can submit an appeal through our support channels within 7 days. Provide a clear explanation and any evidence supporting your case.

Commercial and Partnership Questions

I want to build a commercial product. What are my options?

If you have a legitimate business need that requires commercial API use, we offer partnership and licensing options. Please contact us at our official support channels to discuss:

• Commercial API licensing
• Reseller partnerships
• White-label arrangements
• Custom enterprise agreements

Do you have a partner program?

Yes! We work with select partners on authorized integrations and reseller arrangements. Contact our business team to learn about partnership opportunities.

Can I get higher rate limits for my business?

Higher rate limits may be available for legitimate business needs. Contact our support team with details about your use case, and we'll work with you to find an appropriate solution.

---

Still Have Questions?

If your question wasn't answered here, please reach out through our official support channels. We're here to help you use the FlashPanel API successfully and compliantly.

flashpanel.io