Base URL
Authentication
Most endpoints require authentication via scoped API tokens with HMAC-SHA256 request signing:| Method | Headers | Use case |
|---|---|---|
| Scoped API Token (HMAC) | lmts-api-key, lmts-timestamp, lmts-signature | All integrations — traders, bots, partners, delegated signing |
Public endpoints like market browsing and orderbook data do not require authentication. All authenticated requests use scoped API tokens with HMAC signing (legacy static API-key headers are deprecated and no longer issued).
Endpoint Groups
Authentication
Derive and manage scoped API tokens for authentication.
API Tokens
Scoped API token management for partner integrations — derive, list, and revoke HMAC-authenticated tokens.
Markets
Browse active markets, search, get details and feed events.
Trading
Create and cancel orders, batch order status, orderbook, historical prices, and user orders.
Partner Accounts
Create and manage sub-accounts for partner integrations.
Portfolio
Positions, trades, PnL chart, history, points, and allowance.
Public Portfolio
Public user positions, traded volume, and PnL data.
Key Concepts
| Concept | Description |
|---|---|
| Venue system | Each CLOB market has a venue with exchange and adapter addresses. Fetch via GET /markets/:slug. See Venue System. |
| EIP-712 signing | Orders are signed using the venue’s exchange address as verifyingContract. See EIP-712 Signing. |
| Order types | GTC (Good Till Cancelled) stays on the orderbook. FOK (Fill or Kill) executes immediately or cancels. |
| Token IDs | Each market returns YES and NO token IDs in tokens (tokens.yes / tokens.no). Use these as tokenId in orders. |
| USDC decimals | USDC on Base has 6 decimals. Amounts are scaled by 1e6. |
| Receive window | Optional timestamp + recvWindow on POST /orders reject stale signed orders with HTTP 425. Opt-in (default disabled). See Receive Window. |
WebSocket API
For real-time orderbook and position updates, see the WebSocket Events reference. URL:wss://ws.limitless.exchange | Namespace: /markets