Platform API now allows unauthenticated requests for Add-on metadata

Change effective on 22 April 2014

The Heroku Platform API has a number of endpoints for fetching metadata about add-ons available in the marketplace, such as plan names and prices. Because these endpoints only serve publicly available information, we’ve decided to open them to unauthenticated requests. This means GET requests to these endpoints no longer require an API key, allowing you to fetch information about our available add-ons directly from your browser using Ajax requests.

Affected endpoints

  • GET /addon-services
  • GET /addon-services/{addon}
  • GET /addon-services/{addon}/plans
  • GET /addon-services/{addon}/plans/{plan}

Ajax example

var url = ''
var xhr = new XMLHttpRequest()'GET', url, true)
xhr.setRequestHeader('Accept', 'application/vnd.heroku+json; version=3')
xhr.onload = function() { console.log(xhr) }
xhr.onerror = function(err) { console.error(err) }

For more example usage and details about these endpoints, see the Platform API reference.