# SpitShake

## Docs

- [Create API token](https://docs.spitshake.io/api-reference/access-tokens/create-api-token.md): Generate a new API token. The raw token value is only returned once. Requires Pro plan.
- [List API tokens](https://docs.spitshake.io/api-reference/access-tokens/list-api-tokens.md)
- [Revoke API token](https://docs.spitshake.io/api-reference/access-tokens/revoke-api-token.md)
- [AI chat for template editing](https://docs.spitshake.io/api-reference/ai/ai-chat-for-template-editing.md): Chat with AI to modify template fields. AI can add, update, delete, and move fields.
- [AI-powered field detection](https://docs.spitshake.io/api-reference/ai/ai-powered-field-detection.md): Automatically detect and create form fields from a document using AI.
- [AI-powered key assignment](https://docs.spitshake.io/api-reference/ai/ai-powered-key-assignment.md): Use AI to match field keys from text or image to template fields
- [AI smart setup](https://docs.spitshake.io/api-reference/ai/ai-smart-setup.md): Combined analysis — detects page rotations AND extracts form fields in a single call. **Scans all documents** in the template, not just the first.
- [Analyze document with AI](https://docs.spitshake.io/api-reference/ai/analyze-document-with-ai.md): Run AI analysis on a template document to detect rotations or extract fields
- [Check AI configuration](https://docs.spitshake.io/api-reference/ai/check-ai-configuration.md)
- [List audit events](https://docs.spitshake.io/api-reference/audit-events/list-audit-events.md): View account audit log. Requires Pro plan with audit_logs feature.
- [Accept BAA](https://docs.spitshake.io/api-reference/baa/accept-baa.md): Accept the current version of the Business Associate Agreement. Records the accepting user, IP address, and user agent. Requires admin role. Fails if already accepted for the current version.
- [Get BAA status](https://docs.spitshake.io/api-reference/baa/get-baa-status.md): Returns whether the Business Associate Agreement has been accepted for the current account, including version and acceptance details.
- [Revoke BAA](https://docs.spitshake.io/api-reference/baa/revoke-baa.md): Revoke the current BAA acceptance. Requires admin role.
- [Add custom domain](https://docs.spitshake.io/api-reference/custom-domains/add-custom-domain.md): Register a new custom domain. After creation, add the provided DNS TXT record to your domain, then call the verify endpoint. Once DNS is verified, SSL will be automatically provisioned via Cloudflare.
- [Check domain status](https://docs.spitshake.io/api-reference/custom-domains/check-domain-status.md): Check the current verification and SSL provisioning status
- [Get custom domain](https://docs.spitshake.io/api-reference/custom-domains/get-custom-domain.md)
- [List custom domains](https://docs.spitshake.io/api-reference/custom-domains/list-custom-domains.md): List all custom domains configured for the account
- [Remove custom domain](https://docs.spitshake.io/api-reference/custom-domains/remove-custom-domain.md): Remove a custom domain. The Cloudflare hostname will be cleaned up asynchronously.
- [Set as primary domain](https://docs.spitshake.io/api-reference/custom-domains/set-as-primary-domain.md): Set this domain as the primary signing domain. Signing URLs will use this domain. Domain must be active.
- [Verify domain DNS](https://docs.spitshake.io/api-reference/custom-domains/verify-domain-dns.md): Trigger DNS verification for the domain. Checks for the expected TXT record at `_docutrust-verification.{domain}`. On success, SSL provisioning begins automatically via Cloudflare.
- [Complete embedded submission](https://docs.spitshake.io/api-reference/embed/complete-embedded-submission.md)
- [Generate embed token](https://docs.spitshake.io/api-reference/embed/generate-embed-token.md): Generate a JWT token for embedding a signing form or template builder in your application
- [Get embedded submission](https://docs.spitshake.io/api-reference/embed/get-embedded-submission.md): Retrieve submission data for rendering in an embedded form
- [Get embedded template](https://docs.spitshake.io/api-reference/embed/get-embedded-template.md): Retrieve template data for rendering in an embedded builder
- [Submit field value](https://docs.spitshake.io/api-reference/embed/submit-field-value.md): Save a single field value from an embedded form with field-type coercion
- [Update embedded template](https://docs.spitshake.io/api-reference/embed/update-embedded-template.md)
- [Full health check](https://docs.spitshake.io/api-reference/health/full-health-check.md): Checks database, Redis, and storage connectivity. No auth required.
- [Simple health check](https://docs.spitshake.io/api-reference/health/simple-health-check.md): Returns healthy status if the application is running. No auth required.
- [Get KBA config](https://docs.spitshake.io/api-reference/kba/get-kba-config.md)
- [Initiate KBA session](https://docs.spitshake.io/api-reference/kba/initiate-kba-session.md): Start a Knowledge-Based Authentication session by providing identity information. Returns verification questions.
- [Update KBA config](https://docs.spitshake.io/api-reference/kba/update-kba-config.md)
- [Verify KBA answers](https://docs.spitshake.io/api-reference/kba/verify-kba-answers.md)
- [Begin MFA setup](https://docs.spitshake.io/api-reference/mfa/begin-mfa-setup.md): Generates a TOTP secret and QR code for authenticator app enrollment. Returns the secret, a QR code SVG, and the provisioning URI. Fails if MFA is already enabled.
- [Confirm MFA setup](https://docs.spitshake.io/api-reference/mfa/confirm-mfa-setup.md): Verifies the first OTP code to confirm MFA enrollment. On success, enables MFA and returns one-time backup codes. Requires setup to be called first.
- [Disable MFA](https://docs.spitshake.io/api-reference/mfa/disable-mfa.md): Disables MFA for the current user. Requires current password confirmation. Cannot be disabled when account-level MFA enforcement is active. Invalidates all existing sessions.
- [Get MFA status](https://docs.spitshake.io/api-reference/mfa/get-mfa-status.md): Returns whether MFA is enabled and the number of remaining backup codes.
- [API Overview](https://docs.spitshake.io/api-reference/overview.md): Authentication, conventions, rate limits, and error handling for the DocuTrust API.
- [Confirm payment](https://docs.spitshake.io/api-reference/payments/confirm-payment.md)
- [Create payment intent](https://docs.spitshake.io/api-reference/payments/create-payment-intent.md): Create a Stripe payment intent for a submission payment field. No auth required (called from signing form).
- [Create subscription](https://docs.spitshake.io/api-reference/payments/create-subscription.md): Create a Stripe subscription for recurring billing. Requires a valid price ID from your Stripe account. Optionally pass submitter email and metadata.
- [Get payment configuration](https://docs.spitshake.io/api-reference/payments/get-payment-configuration.md)
- [Update payment configuration](https://docs.spitshake.io/api-reference/payments/update-payment-configuration.md)
- [List available plans](https://docs.spitshake.io/api-reference/plans/list-available-plans.md): Public endpoint - no authentication required
- [List security events](https://docs.spitshake.io/api-reference/security-events/list-security-events.md): Returns security-related audit events for the account. Includes login attempts, MFA events, IP blocks, breach detections, and API token activity. Requires admin role. Uses page-based pagination.
- [Security events summary](https://docs.spitshake.io/api-reference/security-events/security-events-summary.md): Returns a 24-hour summary of security event counts by category. Requires admin role.
- [Create saved field](https://docs.spitshake.io/api-reference/settings/create-saved-field.md): Create a new saved field preset. Saved fields store reusable field configurations that can be applied to template fields.
- [Delete account](https://docs.spitshake.io/api-reference/settings/delete-account.md): Permanently delete the account and all associated data including templates, submissions, users, and files. Requires admin role and password confirmation. This action cannot be undone.
- [Delete saved field](https://docs.spitshake.io/api-reference/settings/delete-saved-field.md): Remove a saved field preset from the account.
- [Generate self-signed certificate](https://docs.spitshake.io/api-reference/settings/generate-self-signed-certificate.md)
- [Get account settings](https://docs.spitshake.io/api-reference/settings/get-account-settings.md)
- [Get digital certificate info](https://docs.spitshake.io/api-reference/settings/get-digital-certificate-info.md)
- [Get email provider settings](https://docs.spitshake.io/api-reference/settings/get-email-provider-settings.md)
- [Get signature level configuration](https://docs.spitshake.io/api-reference/settings/get-signature-level-configuration.md): Retrieve the current eIDAS signature level setting and available levels. Supports Simple (SES), Advanced (AES), and Qualified (QES) electronic signatures.
- [Get SMTP settings](https://docs.spitshake.io/api-reference/settings/get-smtp-settings.md)
- [Get SSO configuration](https://docs.spitshake.io/api-reference/settings/get-sso-configuration.md): Retrieve SAML SSO settings for the account
- [Get storage settings](https://docs.spitshake.io/api-reference/settings/get-storage-settings.md)
- [Get white-label configuration](https://docs.spitshake.io/api-reference/settings/get-white-label.md): Returns the tenant's SpitShake white-label configuration: the display name rendered in the signing header, legal name stamped on PDF audit footers, post-signature markdown copy, and whether an identity-handoff secret is configured (the secret itself is never returned).
- [Import PKCS12 certificate](https://docs.spitshake.io/api-reference/settings/import-pkcs12-certificate.md)
- [List email events](https://docs.spitshake.io/api-reference/settings/list-email-events.md): View email delivery events (sent, delivered, opened, clicked, bounced, etc.)
- [List saved fields](https://docs.spitshake.io/api-reference/settings/list-saved-fields.md): Retrieve all saved field presets for the account. Saved fields can be reused across templates for consistent field configuration.
- [Rotate the identity-handoff shared secret](https://docs.spitshake.io/api-reference/settings/rotate-identity-handoff-secret.md): Rotates the shared secret used by the tenant to sign identity-handoff JWTs for the SpitShake Identity Engine. The new secret is returned **exactly once** in the response — it is never retrievable again.
- [Test email provider](https://docs.spitshake.io/api-reference/settings/test-email-provider.md)
- [Test SMTP configuration](https://docs.spitshake.io/api-reference/settings/test-smtp-configuration.md)
- [Toggle test mode](https://docs.spitshake.io/api-reference/settings/toggle-test-mode.md): Enable or disable test mode. Test mode suppresses emails and bypasses billing limits.
- [Update account info](https://docs.spitshake.io/api-reference/settings/update-account-info.md)
- [Update email provider settings](https://docs.spitshake.io/api-reference/settings/update-email-provider-settings.md)
- [Update settings](https://docs.spitshake.io/api-reference/settings/update-settings.md)
- [Update signature level configuration](https://docs.spitshake.io/api-reference/settings/update-signature-level-configuration.md): Set the eIDAS signature level and optionally configure a QES/AES provider. Provider credentials are stored encrypted.
- [Update SMTP settings](https://docs.spitshake.io/api-reference/settings/update-smtp-settings.md)
- [Update SSO configuration](https://docs.spitshake.io/api-reference/settings/update-sso-configuration.md): Update SAML IdP settings for the account
- [Update storage settings](https://docs.spitshake.io/api-reference/settings/update-storage-settings.md)
- [Update white-label configuration](https://docs.spitshake.io/api-reference/settings/update-white-label.md): Updates any of the tenant-configurable white-label fields. Unknown top-level keys are silently dropped (strong-params whitelist). Writes an `account.white_label_updated` audit event visible via `GET /api/security_events`.
- [Archive submission](https://docs.spitshake.io/api-reference/submissions/archive-submission.md)
- [Bulk action on submissions](https://docs.spitshake.io/api-reference/submissions/bulk-action.md): Perform bulk archive or resend operations on multiple submissions.
- [Bulk create submissions](https://docs.spitshake.io/api-reference/submissions/bulk-create-submissions.md): Import submitters from a CSV or XLSX file. Large imports (100+) are processed in the background.
- [Create one-off submission from DOCX](https://docs.spitshake.io/api-reference/submissions/create-one-off-submission-from-docx.md)
- [Create one-off submission from HTML](https://docs.spitshake.io/api-reference/submissions/create-one-off-submission-from-html.md)
- [Create one-off submission from PDF](https://docs.spitshake.io/api-reference/submissions/create-one-off-submission-from-pdf.md): Create a submission directly from a PDF file without creating a reusable template first
- [Create submission](https://docs.spitshake.io/api-reference/submissions/create-submission.md): Send a template to one or more submitters for signing.
- [Create submissions from email list](https://docs.spitshake.io/api-reference/submissions/create-submissions-from-email-list.md): Create one submission per email address from a comma-separated list. Each email gets its own submission with a single submitter assigned to the first role defined in the template. Returns an array of submitter objects with embed URLs for each created submission.
- [Download submission documents](https://docs.spitshake.io/api-reference/submissions/download-submission-documents.md)
- [Export submissions as CSV](https://docs.spitshake.io/api-reference/submissions/export-submissions.md): Export submissions matching the given filters as a CSV file.
- [Get submission](https://docs.spitshake.io/api-reference/submissions/get-submission.md)
- [Get a submission document](https://docs.spitshake.io/api-reference/submissions/get-submission-document.md): Download an individual document from a submission.
- [List submission documents](https://docs.spitshake.io/api-reference/submissions/list-submission-documents.md)
- [List submissions](https://docs.spitshake.io/api-reference/submissions/list-submissions.md)
- [Preview bulk import data](https://docs.spitshake.io/api-reference/submissions/preview-bulk-import-data.md)
- [Send a draft submission](https://docs.spitshake.io/api-reference/submissions/send-draft.md): Transitions a draft to pending, dispatching invitation emails to all submitters. Requires `submissions:send` or `submissions:write` scope.
- [Send signing reminders](https://docs.spitshake.io/api-reference/submissions/send-reminder.md): Requires `submissions:remind` or `submissions:write` scope.
- [Update a submission](https://docs.spitshake.io/api-reference/submissions/update-submission.md): Update submission metadata, expiration, or preferences.
- [Get submitter](https://docs.spitshake.io/api-reference/submitters/get-submitter.md)
- [List submitters](https://docs.spitshake.io/api-reference/submitters/list-submitters.md)
- [Resend invitation](https://docs.spitshake.io/api-reference/submitters/resend-invitation.md)
- [Update submitter](https://docs.spitshake.io/api-reference/submitters/update-submitter.md): Update submitter details, set field values, send invitations, or mark as completed
- [Create billing portal session](https://docs.spitshake.io/api-reference/subscriptions/create-billing-portal-session.md): Generate a Stripe Customer Portal URL to manage subscription
- [Create checkout session](https://docs.spitshake.io/api-reference/subscriptions/create-checkout-session.md): Generate a Stripe Checkout URL to upgrade or change plan
- [Get current subscription](https://docs.spitshake.io/api-reference/subscriptions/get-current-subscription.md): Returns current plan, subscription details, and usage summary
- [Add member to team](https://docs.spitshake.io/api-reference/teams/add-member-to-team.md)
- [Create team](https://docs.spitshake.io/api-reference/teams/create-team.md)
- [Delete team](https://docs.spitshake.io/api-reference/teams/delete-team.md)
- [Get team](https://docs.spitshake.io/api-reference/teams/get-team.md): Returns team details including members and template access
- [List teams](https://docs.spitshake.io/api-reference/teams/list-teams.md)
- [Remove member from team](https://docs.spitshake.io/api-reference/teams/remove-member-from-team.md)
- [Update team](https://docs.spitshake.io/api-reference/teams/update-team.md)
- [Update template access](https://docs.spitshake.io/api-reference/teams/update-template-access.md): Set or remove a team's permission on a specific template
- [Archive template](https://docs.spitshake.io/api-reference/templates/archive-template.md)
- [Clone template](https://docs.spitshake.io/api-reference/templates/clone-template.md)
- [Create template from DOCX](https://docs.spitshake.io/api-reference/templates/create-template-from-docx.md): Upload a DOCX file with field tags. Tags are automatically detected and converted to form fields.
- [Create template from HTML](https://docs.spitshake.io/api-reference/templates/create-template-from-html.md)
- [Create template from PDF](https://docs.spitshake.io/api-reference/templates/create-template-from-pdf.md)
- [Download template document PDF](https://docs.spitshake.io/api-reference/templates/download-template-document-pdf.md)
- [Download template PDF bundle](https://docs.spitshake.io/api-reference/templates/download-template-pdf.md): Download all documents for a template as a single PDF file.
- [Get template](https://docs.spitshake.io/api-reference/templates/get-template.md)
- [List Template Versions](https://docs.spitshake.io/api-reference/templates/list-template-versions.md): List version snapshots for a template. Snapshots are created automatically before every update, enabling rollback if a PUT accidentally overwrites the schema.
- [List templates](https://docs.spitshake.io/api-reference/templates/list-templates.md)
- [Manage template documents](https://docs.spitshake.io/api-reference/templates/manage-template-documents.md): Add, remove, replace, or reorder documents in a template
- [Merge templates](https://docs.spitshake.io/api-reference/templates/merge-templates.md): Combine multiple templates into a single template
- [Remap template fields to submitters](https://docs.spitshake.io/api-reference/templates/remap-template-submitters.md): Safely remap `submitter_uuid` for specific fields without replacing the entire template schema. Supports `dry_run` mode for previewing validation and change count before writing.
- [Restore Template Version](https://docs.spitshake.io/api-reference/templates/restore-template-version.md): Restore a template's schema and submitters from a previous version snapshot. Creates a pre-restore snapshot first so you can undo the restore if needed.
- [Update template](https://docs.spitshake.io/api-reference/templates/update-template.md): Update template name, folder, submitters, preferences, or schema (field definitions).
- [Validate template field assignments](https://docs.spitshake.io/api-reference/templates/validate-template-assignments.md): Validates current or proposed field-to-submitter assignments without persisting any changes. Use this to catch automapping mistakes before sending documents.
- [Generate template thumbnail](https://docs.spitshake.io/api-reference/thumbnails/generate-template-thumbnail.md): Generates page thumbnails from the template's most recent PDF document. Handles encrypted documents transparently. Returns the list of generated thumbnails.
- [Get template thumbnail](https://docs.spitshake.io/api-reference/thumbnails/get-template-thumbnail.md): Returns the first-page PNG thumbnail for a template. Returns 404 if no thumbnail has been generated yet.
- [Archive user](https://docs.spitshake.io/api-reference/users/archive-user.md)
- [Get current user](https://docs.spitshake.io/api-reference/users/get-current-user.md): Returns the authenticated user's details including account info
- [Get user](https://docs.spitshake.io/api-reference/users/get-user.md)
- [Invite user](https://docs.spitshake.io/api-reference/users/invite-user.md): Create a new user and send an invitation email. Requires admin role.
- [List users](https://docs.spitshake.io/api-reference/users/list-users.md): List all users in the account. Requires admin role.
- [Resend user invitation](https://docs.spitshake.io/api-reference/users/resend-user-invitation.md)
- [Restore archived user](https://docs.spitshake.io/api-reference/users/restore-archived-user.md)
- [Update current user](https://docs.spitshake.io/api-reference/users/update-current-user.md)
- [Update user](https://docs.spitshake.io/api-reference/users/update-user.md)
- [Check OTP status](https://docs.spitshake.io/api-reference/verification/check-otp-status.md)
- [Get SMS verification config](https://docs.spitshake.io/api-reference/verification/get-sms-verification-config.md)
- [Send SMS OTP](https://docs.spitshake.io/api-reference/verification/send-sms-otp.md): Send a one-time password to a phone number for verification. No auth required (called from signing form).
- [Update SMS verification config](https://docs.spitshake.io/api-reference/verification/update-sms-verification-config.md)
- [Verify SMS OTP](https://docs.spitshake.io/api-reference/verification/verify-sms-otp.md)
- [Create webhook](https://docs.spitshake.io/api-reference/webhooks/create-webhook.md): Register a new webhook endpoint. Requires Pro plan.
- [Delete webhook](https://docs.spitshake.io/api-reference/webhooks/delete-webhook.md)
- [Get webhook](https://docs.spitshake.io/api-reference/webhooks/get-webhook.md)
- [List webhook deliveries](https://docs.spitshake.io/api-reference/webhooks/list-webhook-deliveries.md): Retrieve recent delivery attempts for a specific webhook endpoint. Shows delivery status, response codes, and timestamps.
- [List webhooks](https://docs.spitshake.io/api-reference/webhooks/list-webhooks.md)
- [Redeliver a webhook delivery](https://docs.spitshake.io/api-reference/webhooks/redeliver-webhook-delivery.md): Retry a specific webhook delivery attempt.
- [Regenerate webhook secret](https://docs.spitshake.io/api-reference/webhooks/regenerate-webhook-secret.md)
- [Send test webhook](https://docs.spitshake.io/api-reference/webhooks/send-test-webhook.md)
- [Update webhook](https://docs.spitshake.io/api-reference/webhooks/update-webhook.md)
- [JWT Tokens](https://docs.spitshake.io/embed/jwt-tokens.md): Generate and validate JWT tokens for secure embedding of signing forms and template builders in your application.
- [Embedding Overview](https://docs.spitshake.io/embed/overview.md): Embed signing forms and template builders directly into your application using web components, the JavaScript SDK, or iframes.
- [JavaScript SDK](https://docs.spitshake.io/embed/sdk.md): Programmatically mount signing forms and template builders, handle events, and control the DocuTrust embed lifecycle using the JavaScript SDK.
- [Signing Form](https://docs.spitshake.io/embed/signing-form.md): Embed a document signing form into your application using the docuseal-form web component with pre-fill, event handling, and redirect support.
- [Template Builder](https://docs.spitshake.io/embed/template-builder.md): Embed the DocuTrust template builder into your application using the docuseal-builder web component for document upload, field placement, and role configuration.
- [AI Document Analysis](https://docs.spitshake.io/features/ai-analysis.md): Leverage Google Gemini to automatically detect fields, extract data, and interactively configure templates via chat.
- [Bulk Import](https://docs.spitshake.io/features/bulk-import.md): Create hundreds of submissions at once by uploading a CSV file with submitter data.
- [Cover Page](https://docs.spitshake.io/features/cover-page.md): Generate a branded, data-driven cover page that is prepended to the signing package — personalized per submission.
- [Custom Domains](https://docs.spitshake.io/features/custom-domains.md): White-label your signing experience by serving DocuTrust from your own domain with automatic SSL.
- [Signer Delegation](https://docs.spitshake.io/features/delegation.md): Allow signers to delegate their signing responsibility to another person.
- [Digital Signatures & Certificates](https://docs.spitshake.io/features/digital-signing.md): Manage X.509 certificates for PAdES-compatible digital signatures with RFC 3161 timestamping.
- [DOCX Template Variables](https://docs.spitshake.io/features/docx-variables.md): Use [[variable]] syntax for dynamic content and conditional blocks in DOCX templates.
- [Email 2FA Verification](https://docs.spitshake.io/features/email-2fa.md): Require email verification before signers can access the signing form.
- [ESIGN Consent Disclosure](https://docs.spitshake.io/features/esign-consent.md): Configure the ESIGN Act consumer consent modal shown to signers before they sign.
- [Formula Fields](https://docs.spitshake.io/features/formulas.md): Create computed fields with arithmetic expressions and cross-field references.
- [Identity-Bound Signing](https://docs.spitshake.io/features/identity-bound-signing.md): Bind a tenant-verified identity to one-click document execution via the SpitShake Identity Engine.
- [Knowledge-Based Authentication](https://docs.spitshake.io/features/kba.md): Verify signer identity with knowledge-based authentication (KBA) questions powered by LexisNexis or Experian.
- [MCP Server](https://docs.spitshake.io/features/mcp-server.md): Let AI agents manage documents and signatures via Model Context Protocol.
- [Payment Collection](https://docs.spitshake.io/features/payments.md): Collect payments from signers during the signing flow using Stripe integration.
- [Quick Sign](https://docs.spitshake.io/features/quick-sign.md): Streamline the signing experience with pre-filled fields, auto-generated signatures, and one-click completion.
- [Reusable Saved Fields](https://docs.spitshake.io/features/saved-fields.md): Save field configurations for reuse across templates.
- [SDK Libraries](https://docs.spitshake.io/features/sdks.md): Official client libraries for React, Vue, React Native, and TypeScript/JavaScript.
- [SMS Verification](https://docs.spitshake.io/features/sms-verification.md): Add SMS-based one-time password verification to your signing flows using Twilio.
- [Teams](https://docs.spitshake.io/features/teams.md): Organize users into teams with role-based access to templates and submissions.
- [Witness Signatures](https://docs.spitshake.io/features/witness.md): Allow signers to invite a witness after completing their signature.
- [Zapier Integration](https://docs.spitshake.io/features/zapier.md): Connect DocuTrust to 6,000+ apps with Zapier triggers and actions.
- [AI Field Detection Pipeline](https://docs.spitshake.io/guides/ai-field-detection-pipeline.md): How DocuTrust's v2 AI field detection works end-to-end — staged pipeline, confidence scores, canonical keys, and what to expect in API responses.
- [Authentication](https://docs.spitshake.io/guides/authentication.md): Authenticate with the DocuTrust API using API tokens, session cookies, or JWT bearer tokens.
- [Errors & Rate Limits](https://docs.spitshake.io/guides/errors.md): Understand API error responses, HTTP status codes, rate limiting, and best practices for resilient integrations.
- [Pagination](https://docs.spitshake.io/guides/pagination.md): Navigate through large result sets efficiently with cursor-based and page-based pagination.
- [Template & Submission Preferences](https://docs.spitshake.io/guides/preferences.md): Complete reference for all preference keys that control signing behavior, branding, disclosure, and pre-fill at the template, submission, and account level.
- [Submissions](https://docs.spitshake.io/guides/submissions.md): Create and manage document submissions, pre-fill fields, track signing status, and download completed documents.
- [Submitters](https://docs.spitshake.io/guides/submitters.md): Manage individual signers within submissions, track their status lifecycle, and handle invitations.
- [Templates](https://docs.spitshake.io/guides/templates.md): Create and manage document templates with field schemas, submitter roles, and multiple document formats.
- [Test Mode](https://docs.spitshake.io/guides/test-mode.md): Safely develop and test your integration without affecting live documents or consuming plan quotas.
- [Webhooks](https://docs.spitshake.io/guides/webhooks.md): Receive real-time HTTP callbacks when events occur in your DocuTrust account.
- [Introduction](https://docs.spitshake.io/introduction.md): SpitShake is an API-first document signing platform for sending, tracking, and completing legally binding e-signatures.
- [Acceptable Use Policy](https://docs.spitshake.io/legal/acceptable-use.md): How SpitShake may and may not be used.
- [Business Associate Agreement (BAA)](https://docs.spitshake.io/legal/baa.md): HIPAA Business Associate Agreement between a Covered Entity and IVERIFI, LLC d/b/a SpitShake.
- [Cookie Policy](https://docs.spitshake.io/legal/cookies.md): How SpitShake uses cookies and similar technologies — and how to control them.
- [Data Processing Addendum](https://docs.spitshake.io/legal/dpa.md): GDPR Article 28 and UK GDPR processor terms between a Tenant (controller) and IVERIFI, LLC (processor).
- [Consent to Electronic Records & Signatures](https://docs.spitshake.io/legal/esignature-disclosure.md): What you agree to before signing a document electronically on SpitShake — the ESIGN Act § 101(c) consumer disclosure.
- [Identity-Bound Signing Notice](https://docs.spitshake.io/legal/identity-bound-disclaimer.md): How SpitShake handles identity verification when the sending organization has verified your identity through a third-party service.
- [Privacy Policy](https://docs.spitshake.io/legal/privacy.md): How IVERIFI, LLC d/b/a SpitShake collects, uses, shares, and protects personal information.
- [Subprocessors](https://docs.spitshake.io/legal/subprocessors.md): Third parties that process personal information on SpitShake's behalf.
- [Terms of Service](https://docs.spitshake.io/legal/terms.md): Master agreement between IVERIFI, LLC d/b/a SpitShake and the Tenant organization using the service.
- [Quickstart](https://docs.spitshake.io/quickstart.md): Send your first document for signing in under 5 minutes using the SpitShake API.
- [Changelog](https://docs.spitshake.io/resources/changelog.md): Recent features, improvements, and updates to the DocuTrust platform.
- [FAQ](https://docs.spitshake.io/resources/faq.md): Frequently asked questions about DocuTrust's features, security, and integrations.
- [Glossary](https://docs.spitshake.io/resources/glossary.md): Definitions of key terms and concepts used throughout the DocuTrust platform and documentation.
- [Audit Trails](https://docs.spitshake.io/security/audit-trails.md): Query immutable, chain-hashed audit logs for document lifecycle events and security monitoring.
- [Business Associate Agreement](https://docs.spitshake.io/security/baa.md): Accept and manage the HIPAA Business Associate Agreement for handling Protected Health Information.
- [Compliance](https://docs.spitshake.io/security/compliance.md): DocuTrust's compliance with ESIGN, eIDAS, UETA, HIPAA, SOC 2, and GDPR standards.
- [Encryption](https://docs.spitshake.io/security/encryption.md): How DocuTrust encrypts documents, PII fields, and manages encryption keys.
- [Multi-Factor Authentication](https://docs.spitshake.io/security/mfa.md): Set up and enforce TOTP-based multi-factor authentication for your DocuTrust account.
- [Security Overview](https://docs.spitshake.io/security/overview.md): DocuTrust's multi-layered security architecture protects your documents and data at every stage.

## OpenAPI Specs

- [openapi](https://docs.spitshake.io/openapi.yaml)