REST API · v1
PQ PDF Developer API
All 83 PDF tools — merge, split, OCR, scan, eSign, convert, redact, edit — available programmatically over HTTPS with API-key authentication, IP whitelisting, and per-key rate limits.
Overview
The PQ PDF API is a REST gateway that proxies authenticated requests to the same processing engine that powers pqpdf.com. Every tool available in the web UI is available via the API.
Base URL
https://api.pqpdf.com
Client ── POST /v1/{operation} ──▶ api.pqpdf.com (TLS 1.3)
│
① Validate operation name
② Check X-API-Key header
③ Verify client IP against whitelist
④ Check hourly rate limit
⑤ Proxy multipart to api.php
⑥ Log usage async (non-blocking)
│
200 PDF / JSON response ◀────────────┘
Request format: All operations use
multipart/form-data POST.
JSON responses are returned for metadata/info operations; binary PDF/image data for file-producing operations.
The Content-Type and Content-Disposition response headers indicate the output type.
HTTP/3 required.
api.pqpdf.com is HTTP/3-only. HTTP/2 and HTTP/1.1 requests receive 426 Upgrade Required.
Use --http3-only with curl, curl_cffi with http_version=3 in Python, or CURL_HTTP_VERSION_3 in PHP.
The proxy strips h2 from its TCP ALPN advertisement for this host — clients that negotiate h2 are downgraded to h1.1 and immediately rejected.
Authentication
Every request (except GET /v1/health and GET /v1/operations) requires
an API key passed in the X-API-Key request header. Keys are shown only once at
creation time — store them securely.
| Header | Value | Required |
|---|---|---|
X-API-Key |
Your API key — format pqpdf_<48 hex chars> |
Yes |
X-Session-Id |
Any opaque string (UUID recommended) — required for stateful operations to bind PHP session cookies | Stateful ops only |
IP whitelisting: Keys can have zero or more IP/CIDR ranges attached.
When a key has any IP entries, requests from non-whitelisted IPs are rejected with
403.
Keys with no IP entries accept requests from any IP.
Keep keys secret. Keys are stored as SHA-256 hashes — if lost, revoke and generate a new one.
Never include keys in client-side code or public repositories.
Rate Limits
Limits are tracked per API key, per calendar hour (UTC). Polling and pagination operations are exempt to avoid counter inflation.
| Limit | Default | Override |
|---|---|---|
| Requests / hour | 100 |
Set per key at creation time via rate_limit_per_hour |
| Requests / day | 500 |
Set per key at creation time via rate_limit_per_day |
Exempt from rate counting:
edit-ping, edit-page, pdf-scan-poll,
esign-status, esign-preview
When a rate limit is exceeded the API returns
429 Too Many Requests with a JSON error body.
Processing at scale? On-premise deployment removes all per-key rate limits and lifts the 50 MB file size cap — built for high-volume document pipelines, CI/CD workflows, and regulated environments where you own the infrastructure.
Explore Enterprise →
Error Codes
All error responses include a JSON body: {"success": false, "error": "message"}
200
Success — body is the operation result (PDF binary or JSON)
400
Bad Request — unknown operation name, or invalid parameter value
401
Unauthorized — missing or invalid
X-API-Key, or key is disabled403
Forbidden — client IP not in the key's whitelist
404
Not Found — key ID or IP entry not found (key management routes)
422
Unprocessable — operation-level error from api.php (wrong file type, corrupted PDF, etc.)
426
Upgrade Required — request used HTTP/1.1 or HTTP/2; retry with HTTP/3 (
Upgrade: h3 header indicates the required protocol)429
Too Many Requests — hourly rate limit exceeded for this key
500
Internal Server Error — proxy or processing failure
Request Format
All operation requests are POST to /v1/{operation}
using multipart/form-data. Upload the PDF as the file field
and any operation parameters as additional text fields.
curl --http3-only -X POST https://api.pqpdf.com/v1/compress \ -H "X-API-Key: pqpdf_your_key_here" \ -F "file=@document.pdf" \ -F "quality=ebook" \ -o compressed.pdf
from curl_cffi.requests import Session
with Session(http_version=3) as client:
resp = client.post(
"https://api.pqpdf.com/v1/compress",
headers={"X-API-Key": "pqpdf_your_key_here"},
files={"file": open("document.pdf", "rb")},
data={"quality": "ebook"},
)
with open("compressed.pdf", "wb") as f:
f.write(resp.content)
// Node 18+ — undici fetch (HTTP/3 via QUIC, Alt-Svc negotiation)
import { fetch, Agent } from "undici";
import fs from "fs";
const dispatcher = new Agent({ allowH2: true });
const form = new FormData();
form.append("file", new Blob([fs.readFileSync("document.pdf")]));
form.append("quality", "ebook");
const resp = await fetch("https://api.pqpdf.com/v1/compress", {
method: "POST",
headers: { "X-API-Key": "pqpdf_your_key_here" },
body: form,
dispatcher,
});
fs.writeFileSync("compressed.pdf", Buffer.from(await resp.arrayBuffer()));
$ch = curl_init("https://api.pqpdf.com/v1/compress");
curl_setopt_array($ch, [
CURLOPT_POST => true,
CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_3,
CURLOPT_HTTPHEADER => ["X-API-Key: pqpdf_your_key_here"],
CURLOPT_POSTFIELDS => [
"file" => new CURLFile("document.pdf"),
"quality" => "ebook",
],
CURLOPT_RETURNTRANSFER => true,
]);
file_put_contents("compressed.pdf", curl_exec($ch));
curl_close($ch);
Key Management
Create and manage API keys and their IP whitelists. All routes require a valid X-API-Key and operate on that key's owner account.
GET
/v1/keys
List all keys for your account
Returns all API keys associated with the authenticated user's account.
Response
{
"success": true,
"keys": [
{
"id": "uuid",
"label": "primary",
"key_prefix": "pqpdf_02ef5e22",
"is_active": true,
"created_at": "2026-04-09T17:31:45Z",
"last_used_at": "2026-04-09T19:00:00Z",
"rate_limit_per_hour": 100,
"rate_limit_per_day": 500,
"ip_count": 2
}
]
}
POST
/v1/keys
Create a new API key
Generates a new API key. The full key is returned only once — store it securely.
Body: JSON (
Content-Type: application/json)| Field | Type | Required | Description |
|---|---|---|---|
label | string | No | Human-readable label. Defaults to "default" |
rate_limit_per_hour | integer | No | Override default hourly limit for this key |
rate_limit_per_day | integer | No | Override default daily limit for this key |
Response
{
"success": true,
"message": "Save this key — it will not be shown again.",
"key": {
"id": "uuid",
"label": "production",
"key_prefix": "pqpdf_a1b2c3d4",
"api_key": "pqpdf_a1b2c3d4...",
"rate_limit_per_hour": 200,
"rate_limit_per_day": 1000
}
}
DELETE
/v1/keys/{key_id}
Revoke a key by UUID
Permanently disables a key. You cannot revoke the key that is making the request.
Response
{ "success": true, "revoked": "uuid" }IP Whitelist
Attach IP addresses or CIDR ranges to a key. When any entries exist, requests from IPs not matching any entry are rejected with 403.
GET
/v1/keys/{key_id}/ips
List whitelisted IPs for a key
{
"success": true,
"ips": [
{ "id": "uuid", "cidr": "203.0.113.0/24", "label": "office", "created_at": "..." }
]
}
POST
/v1/keys/{key_id}/ips
Add an IP or CIDR range
| Field | Type | Required | Description |
|---|---|---|---|
cidr | string | Yes | IPv4/IPv6 address or CIDR range, e.g. 203.0.113.5 or 10.0.0.0/8 |
label | string | No | Human-readable label for this entry |
{ "success": true, "ip": { "id": "uuid", "cidr": "203.0.113.5", "label": "my-server" } }
DELETE
/v1/keys/{key_id}/ips/{ip_id}
Remove an IP entry
{ "success": true, "removed": "uuid" }Usage Stats
GET
/v1/usage
Last 30 days, grouped by operation
{
"success": true,
"current_key_id": "uuid",
"usage_this_hour": 12,
"rate_limit_per_hour": 100,
"last_30_days": [
{ "operation": "compress", "total": 48, "avg_ms": 210.5, "total_bytes": 9437184 },
{ "operation": "get-info", "total": 24, "avg_ms": 85.2, "total_bytes": 12288 }
]
}List Operations
GET
/v1/operations
All supported operations — no auth required
Returns the full list of allowed operation names and which require a session ID.
{
"success": true,
"operations": ["merge", "split", "compress", ...],
"stateful_operations": ["edit-init", "edit-page", "esign-create", ...],
"note": "For stateful operations, include X-Session-Id header with a UUID."
}Core PDF Tools
All operations: POST /v1/{operation} with X-API-Key header and
multipart/form-data body. Fields marked file are binary uploads;
all others are text fields.
Merge & Split
merge
Combine multiple PDFs into one
→ PDF
split
Split PDF by page ranges into a ZIP
→ ZIP
split_chunk
Split into fixed-size chunks (ZIP)
→ ZIP
extract-pages
Extract specific pages to a new PDF
→ PDF
delete-pages
Remove pages from a PDF
→ PDF
reorder
Reorder pages by index array
→ PDF
Optimise & Transform
compress
Reduce file size with Ghostscript
→ PDF
rotate
Rotate all or specified pages
→ PDF
flatten
Flatten form fields / annotations
→ PDF
grayscale
Convert to grayscale
→ PDF
repair
Attempt to repair a corrupted PDF
→ PDF
pdfa
Convert to PDF/A archival format
→ PDF
Watermark, Security & Info
watermark
Add text or image watermark
→ PDF
sign
Apply a visual signature stamp
→ PDF
protect
Password-protect a PDF
→ PDF
unlock
Remove password (requires password)
→ PDF
get-info
Metadata, page count, encryption info
→ JSON
extract-text
Extract all text content
→ TXT
to-images
Render pages to images (ZIP)
→ ZIP
workflow
Chain multiple operations in one call
→ PDF
compress — Parameters
| Field | Type | Required | Values / Default | Description |
|---|---|---|---|---|
file | file | Yes | — | PDF to compress |
quality | string | No | screen | ebook | printer | prepress | default — default ebook | Ghostscript PDFSETTINGS level (screen=72dpi, ebook=150dpi, printer=300dpi, prepress=300dpi+colour preservation) |
custom_dpi | integer | No | 50–600 | Override image DPI instead of using a quality preset |
strip_metadata | string | No | 1 | Remove all metadata from the output PDF |
linearize | string | No | 1 | Linearize (fast web view) via qpdf — enables progressive browser rendering |
merge — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file[] | file[] | Yes | Two or more PDF files (send as repeated file[] fields) |
split — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to split |
mode | string | No | all (one PDF per page) | interval (every N pages) | custom (split after specified pages) — default all |
interval | integer | No | Pages per chunk when mode=interval |
ranges | string | No | Comma-separated page ranges for mode=custom, e.g. 1-3,4,5-7 |
rotate — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to rotate |
angle | number | Yes | Rotation angle. Multiples of 90° are lossless; other values trigger rasterization. |
scope | string | No | all | odd | even | custom — default all |
pages | string | No | Page range when scope=custom, e.g. 1,3-5 |
grayscale — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to convert |
mode | string | No | grayscale (8-bit gray) | bw (1-bit binary) — default grayscale |
repair — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to repair |
linearize | string | No | 1 to linearize for fast web view after repair |
remove_invalid | string | No | 1 to strip invalid objects |
pdfa — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to convert |
level | string | No | 1b | 2b | 3b — default 2b |
to-images — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to render |
format | string | No | png | jpeg — default png |
dpi | integer | No | 72 | 96 | 150 | 300 — default 150 |
pages | string | No | Page range, e.g. 1-3,5. Omit for all pages. |
extract-text — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to extract text from |
layout | string | No | 1 to preserve spatial layout in the output (uses pdftotext -layout flag) |
protect — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to protect |
user_password | string | No* | Password required to open the PDF. At least one password required. |
owner_password | string | No* | Owner/permissions password. Auto-generated if only user_password is given. |
no_print | string | No | 1 to disable printing |
no_copy | string | No | 1 to disable text copying |
no_edit | string | No | 1 to disable editing |
unlock — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Encrypted PDF |
password | string | Yes | Owner or user password (RC4-40/128, AES-128/256 all supported) |
workflow — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Input PDF |
steps | string (JSON) | Yes | JSON array of step objects: [{"op":"compress","quality":"ebook"},{"op":"watermark","text":"DRAFT"}] |
Available workflow operations: rotate, compress, watermark, protect, unlock, grayscale, flatten, repair, extract-pages, delete-pages, reorder, pdfa, sign, redact, split-every. Each step object uses the same parameter names as the standalone operation.
flatten — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to flatten. Burns all form fields and annotations permanently into page content. |
get-info — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to inspect. Returns version, page count, dimensions, encryption status, metadata (title, author, subject, keywords, creator, producer), file size, linearization flag. |
extract-pages — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Source PDF |
pages | string | Yes | Pages to keep, e.g. 1,3-5,8 |
delete-pages — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Source PDF. At least one page must remain after deletion. |
pages | string | Yes | Pages to remove, e.g. 2,4-6 |
reorder — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Source PDF |
order | string | Yes | New page order as comma-separated 1-based indices, e.g. 3,1,2,5,4 |
split_chunk — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to chunk |
chunk | integer | Yes | Pages per output chunk |
sign — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to sign |
sig_type | string | Yes | draw | type | image — visual signature mode |
sig_image | file | No* | PNG/JPEG signature image. Required when sig_type=image. |
sig_text | string | No* | Typed name. Required when sig_type=type. |
sig_data | string | No* | Base64-encoded PNG of drawn signature. Required when sig_type=draw. |
h_position | string | No | left | center | right — default center |
v_position | string | No | top | middle | bottom — default bottom |
size | integer | No | Signature size in pt, 40–300 — default 120 |
page | integer | No | Page to sign (1-based). Default: last page. |
crypto | string | No | 1 to embed an RSA-2048/SHA-256 digital certificate alongside the visual signature |
cert | file | No | PKCS#12 (.p12/.pfx) certificate bundle. If omitted with crypto=1, a self-signed cert is auto-generated. |
cert_pass | string | No | Passphrase for the uploaded certificate bundle |
signer_name | string | No | Signer name embedded in the certificate fields |
reason | string | No | Signature reason field |
location | string | No | Signature location field |
watermark — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to watermark |
text | string | No* | Watermark text. Required unless wm_file provided. |
wm_file | file | No* | Image watermark (PNG/JPEG/SVG). Required unless text provided. |
opacity | float | No | 0.0–1.0, default 0.3 |
position | string | No | center | diagonal | top-left | top-right | bottom-left | bottom-right |
color | string | No | Hex color e.g. #ff0000 (text watermarks) |
font_size | integer | No | Font size in pt |
pages | string | No | Page range. Omit for all pages. |
Conversion
Convert between PDF and Office formats, images, HTML, and Markdown.
word-to-pdf
DOCX / DOC / ODT / RTF → PDF
→ PDFexcel-to-pdf
XLSX / XLS / ODS → PDF
→ PDFppt-to-pdf
PPTX / PPT / ODP → PDF
→ PDFimage-to-pdf
PNG / JPG / WEBP / TIFF → PDF
→ PDFhtml-to-pdf
HTML file or URL → PDF
→ PDFpdf-to-excel
Extract tables to XLSX
→ XLSXpdf-to-ppt
Pages → PPTX slides
→ PPTXpdf-to-html
PDF → HTML with layout
→ ZIPpdf-to-md
PDF → Markdown text
→ MDconvert
Generic format conversion
→ variesredact
Permanently redact text/regions
→ PDFcompare
Visual diff of two PDFs
→ JSON/PDFexcel-get-sheets
List sheet names in XLSX
→ JSONppt-get-slides
List slide titles in PPTX
→ JSONword-to-pdf — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | DOCX, DOC, ODT, or RTF file to convert to PDF |
ppt-to-pdf — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PPTX, PPT, or ODP file to convert to PDF |
pdf-to-excel — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to extract tables from. Output is an XLSX file. |
pdf-to-ppt — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to convert — each page becomes a PPTX slide. |
pdf-to-html — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to convert to HTML. Output is a ZIP archive containing HTML + assets. |
pdf-to-md — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to convert to Markdown text. |
convert — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Source file in any supported input format |
output_format | string | Yes | Target format: pdf | docx | xlsx | pptx | html | md | txt | png | jpg |
excel-get-sheets — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | XLSX or XLS file. Returns a JSON array of sheet names. |
ppt-get-slides — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PPTX or PPT file. Returns a JSON array of slide titles. |
html-to-pdf — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | No* | HTML file to convert. Required unless url provided. |
url | string | No* | URL to fetch and convert to PDF. Required unless file provided. |
page_size | string | No | A4 | Letter | Legal etc. |
orientation | string | No | portrait | landscape |
redact — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to redact |
terms | string | No* | Comma-separated text patterns to find and redact. Required unless regex or regions provided. |
regex | string | No* | Regex pattern to redact. At least one of terms, regex, or regions required. |
regions | string (JSON) | No* | JSON array of bounding-box regions: [{"page":1,"x":50,"y":100,"w":200,"h":30}] |
case_sensitive | string | No | 1 for case-sensitive text matching |
whole_word | string | No | 1 to match whole words only |
pages | string | No | Page range to search, e.g. 1-3,5. Omit for all pages. |
color | string | No | Redaction fill colour: black | white — default black |
compare — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Original PDF |
file2 | file | Yes | Revised PDF to compare against |
dpi | integer | No | Render resolution for pixel comparison: 72–300 — default 150 |
sensitivity | integer | No | Pixel-difference threshold 1–50 — default 10. Lower = stricter. |
Response header X-Pdf-Compare-Stats contains compared, different, and identical page counts. Output is a PDF with page-by-page diff images (red = removed, green = added, grey = unchanged).
image-to-pdf — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file[] | file[] | Yes | 1–50 images (JPG, PNG, TIFF, WebP, BMP, GIF) |
page_size | string | No | A4 | Letter | original — default A4 |
orientation | string | No | portrait | landscape | auto — default auto |
excel-to-pdf — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | XLSX, XLS, ODS, or CSV file |
page_size | string | No | A4 | Letter | content (fit-to-data) — default A4 |
orientation | string | No | portrait | landscape | auto — default auto |
skip_empty_sheets | string | No | 1 to omit empty worksheets from the output |
OCR
POST
/v1/ocr
OCR a scanned PDF or image with Tesseract
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF or image (PNG/JPEG/TIFF) |
lang | string | No | Tesseract language code(s), e.g. eng, eng+fra. Default eng |
output | string | No | pdf (searchable PDF) | txt | hocr. Default pdf |
dpi | integer | No | Render DPI before OCR, default 300 |
pages | string | No | Page range to OCR. Omit for all. |
PDF Editor Stateful
The editor operates on a live in-memory PDF session. Start with edit-init,
make changes with subsequent calls sharing the same X-Session-Id, then
call edit-apply to render and download the final PDF.
Session binding: Include
X-Session-Id: <your-uuid> on every editor call.
The session is kept alive for 30 minutes after the last request. Poll with edit-ping to prevent expiry.
edit-init
Upload PDF, get page thumbnails + token
→ JSONedit-page
Get rendered page image
→ PNGedit-apply
Apply queued edits, download PDF
→ PDFedit-search
Search text in open document
→ JSONedit-doc-op
Queue a document operation (add text, image, shape…)
→ JSONedit-qr-generate
Insert a QR code onto a page
→ JSONedit-new-pdf
Start a new blank document in session
→ JSONedit-ping
Heartbeat — keeps session alive
→ JSONedit-get-vectors
Extract vector paths from a page
→ JSONedit-active-content-inspect
Detect active content (JS, forms)
→ JSONedit-active-content-remove
Strip all active content
→ JSONedit-attachment-list
List embedded file attachments
→ JSONedit-attachment-add
Embed a file attachment
→ JSONedit-attachment-get
Download an embedded attachment
→ fileedit-attachment-del
Remove an embedded attachment
→ JSONedit-layer-list
List optional content layers
→ JSONedit-layer-set
Toggle layer visibility
→ JSONedit-layer-del
Delete an optional content layer
→ JSONedit-init — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to open in the editor session |
password | string | No | User password if the PDF is encrypted |
edit-doc-op — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
op_type | string | Yes | add_text | add_image | add_shape | delete_element | move_element | resize_element | add_link |
page | integer | Yes | 1-based page number |
data | string (JSON) | Yes | Operation-specific payload (coordinates, text content, styles, etc.) as JSON string |
edit-page — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
page | integer | Yes | 1-based page number to render |
dpi | integer | No | Render resolution — default 150 |
edit-search — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
query | string | Yes | Text string to search for in the open document |
edit-qr-generate — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
data | string | Yes | Text or URL to encode in the QR code |
page | integer | Yes | 1-based page number to place the QR code on |
x | number | Yes | Horizontal position in points from left edge |
y | number | Yes | Vertical position in points from top edge |
size | integer | No | QR code size in points — default 100 |
edit-new-pdf — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token — resets the session to a new blank document |
page_size | string | No | A4 | Letter | Legal etc. — default A4 |
edit-get-vectors — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
page | integer | Yes | 1-based page number to extract vector paths from |
edit-active-content-inspect — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
edit-active-content-remove — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
edit-attachment-add — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
file | file | Yes | File to embed as an attachment inside the PDF |
name | string | No | Display name for the attachment. Defaults to the uploaded filename. |
edit-attachment-get — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
name | string | Yes | Name of the embedded attachment to download |
edit-attachment-del — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
name | string | Yes | Name of the embedded attachment to remove |
edit-layer-set — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
layer | string | Yes | Layer name as returned by edit-layer-list |
visible | string | Yes | 1 to show the layer, 0 to hide it |
edit-layer-del — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Session token from edit-init |
layer | string | Yes | Layer name to permanently delete |
PDF Forensics Scanner
Deep forensic analysis — 44 detection engines, YARA rules, sandbox emulation, ML scoring, and AI-generated forensic summary. Large files are scanned asynchronously.
pdf-scan
Synchronous scan (small files)
→ JSONpdf-scan-start
Start async scan, get token
statefulpdf-scan-poll
Poll async scan result by token
statefulpdf-sanitize
Strip all active content (JS, macros…)
→ PDFpdf-scan-feedback
Submit label feedback for ML training
→ JSONpdf-scan — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to scan |
password | string | No | Password for encrypted PDFs |
pdf-scan-start — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to scan asynchronously |
password | string | No | Password for encrypted PDFs |
pdf-scan-start — Response
{ "started": true, "token": "pdftool_abc123..." }pdf-scan-poll — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Token from pdf-scan-start |
pdf-scan-poll — Response (pending)
{ "ready": false, "progress": "Extracting embedded objects..." }pdf-scan-poll — Response (complete)
{
"ready": true,
"risk_score": 82,
"risk_level": "high-risk",
"ai_forensic_summary": {
"threat_verdict": "SUSPICIOUS",
"confidence": "MEDIUM",
"executive_summary": "PDF contains obfuscated JavaScript with network callbacks.",
"key_findings": [
{ "signal": "JavaScript eval() with base64 payload", "severity": "HIGH", "mitre_id": "T1059.007" }
],
"recommended_actions": ["Do not open this file", "Submit to sandbox for dynamic analysis"]
}
}pdf-sanitize — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to sanitize. All JavaScript, macros, embedded executables, and active content are stripped from the output. |
pdf-scan-feedback — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Scan token from pdf-scan-start / pdf-scan-poll |
label | string | Yes | benign | malicious — correct classification for ML training |
The synchronous pdf-scan operation accepts files up to 10 MB; larger files must use the async pdf-scan-start / pdf-scan-poll flow (up to 50 MB).
On-premise removes the cap entirely →
Office Forensics
Deep forensic scanning and surgical sanitization for Office documents (.docx, .xlsx, .pptx, .doc, .xls, .ppt, .xlsm, .docm, .pptm, .rtf, .msg, .eml and more). Eight dedicated engines cover macros, XLM, OLE objects, metadata, IOCs, and container structure — with an AI-generated forensic summary. Sanitize endpoints return a cleaned file; the scanner uses an async job queue.
Different URL scheme. Office endpoints use dedicated routes
(
/v1/office-scan, /v1/office-sanitize/*) rather than the generic
/v1/{operation} pattern used by PDF tools. Authentication, IP whitelisting,
and rate limits are identical.
POST /v1/office-scan
Submit document — returns job_id instantly
→ JSONGET /v1/office-scan/:job_id
Poll scan status / fetch full report
→ JSONPOST /v1/office-sanitize/pdf
Convert to static PDF — destroys all active content
→ PDFPOST /v1/office-sanitize/macro
Strip VBA & XLM macros, preserve content
→ FilePOST /v1/office-sanitize/meta
Remove all document metadata
→ FilePOST /v1/office-sanitize/ooxml
Convert legacy OLE2 (.doc/.xls/.ppt) to OOXML
→ FilePOST /v1/office-scan — Submit
Submit an Office document for forensic analysis. Returns immediately; poll for results.
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Office document to scan (.docx, .xlsx, .pptx, .doc, .xls, .ppt, .xlsm, .docm, .pptm, .rtf, .msg, .eml, .one, .vsdx…) |
engines | string | No | Comma-separated engine list (default: all 20). Values: container, crypto, metadata, relationships, embedded, macros, xlm, ole, ioc, clamav, yara, threat_intel, libreoffice, sandbox, entropy, opc, schema, fonts, signatures, nlp, correlation, ai |
Response
{ "job_id": "b42f57f8-449e-4a3f-97dc-baec65ac03a2", "status": "queued" }GET /v1/office-scan/:job_id — Poll
Poll scan status. Rate-exempt — polling does not consume your hourly quota.
Returns scanning while in progress; full JSON report on completion.
Response — in progress
{ "status": "scanning" }Response — complete
{
"status": "complete",
"result": {
"file_info": { "filename": "report.docx", "size_bytes": 38000, "format": "DOCX" },
"risk_assessment": {
"level": "CRITICAL",
"total_score": 95,
"findings_count": 8
},
"all_findings": [
{ "engine": "macros", "severity": "critical", "finding": "VBA AutoOpen macro detected", "mitre": "T1137" },
{ "engine": "ioc", "severity": "high", "finding": "Suspicious URL: http://evil.example/payload" }
],
"ai_forensic_summary": {
"threat_verdict": "MALICIOUS",
"confidence": "HIGH",
"executive_summary": "Document contains an AutoOpen macro that downloads a remote payload.",
"recommended_actions": ["Do not open", "Submit to sandbox"]
}
}
}
Risk level thresholds (score cap 999) — the
risk_assessment.level field is determined as follows:
CRITICAL— anycritical-severity finding, or total score ≥ 150HIGH— 2+high-severity findings, or total score ≥ 75MEDIUM— total score ≥ 35LOW— total score ≥ 8CLEAN— total score < 8
POST /v1/office-sanitize/pdf — Convert to static PDF
Render via LibreOffice to a flat PDF. Destroys all macros, VBA, XLM, OLE objects, and active
content with certainty. The safest sanitization option. Returns application/pdf.
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Office document to convert |
POST /v1/office-sanitize/macro — Strip macros
Surgically remove all VBA and XLM macros while preserving document content, formatting, and structure. Returns the sanitized document in the same format as the input.
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Office document to sanitize |
POST /v1/office-sanitize/meta — Strip metadata
Remove all document metadata: author, revision history, last-saved-by, company name, and custom properties. Returns the sanitized document in the same format as the input.
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Office document to sanitize |
POST /v1/office-sanitize/ooxml — Convert OLE2 → OOXML
Upgrade legacy .doc / .xls / .ppt (OLE2 binary format)
to modern .docx / .xlsx / .pptx (OOXML). Eliminates
the OLE2 exploit surface while preserving document content.
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Legacy OLE2 Office document (.doc, .xls, .ppt) |
All sanitize endpoints return the cleaned file as a binary download with a
Content-Disposition: attachment; filename=…_sanitized.* header.
The content-type header reflects the output format
(application/pdf for the pdf mode; application/octet-stream otherwise).
curl Example — scan & poll
# Submit
curl --http3-only https://api.pqpdf.com/v1/office-scan \
-H "X-API-Key: YOUR_KEY" \
-F "file=@report.docx"
# → {"job_id":"b42f57f8...","status":"queued"}
# Poll (no rate-limit cost)
curl --http3-only https://api.pqpdf.com/v1/office-scan/b42f57f8-449e-4a3f-97dc-baec65ac03a2 \
-H "X-API-Key: YOUR_KEY"curl Example — sanitize (PDF conversion)
curl --http3-only https://api.pqpdf.com/v1/office-sanitize/pdf \ -H "X-API-Key: YOUR_KEY" \ -F "file=@report.docx" \ -o report_safe.pdf
File Fingerprint Comparator
Submit two PDF or Office documents for independent scanning, then diff their structural
fingerprints across 25+ security features — VBA macros, IOC extraction,
OLE structure, YARA matches, ClamAV verdict, encryption, JavaScript, XFA, URL/IP counts,
threat intelligence, risk scores, and more. Returns a similarity percentage, variant verdict
(IDENTICAL / NEAR_IDENTICAL / SIMILAR /
PARTIALLY_SIMILAR / DIFFERENT), and a differences-first
field-level comparison table. Use it for malware variant detection, suspicious attachment
triage, and document integrity verification.
Three-step workflow. Submit each file independently with
POST /v1/file-compare/scan (one call per file), poll both
GET /v1/file-compare/scan/{job_id} until status = complete,
then call GET /v1/file-compare/diff with the two job IDs.
Both scan polls are rate-exempt.
POST /v1/file-compare/scan
Submit a file — returns job_id instantly
→ JSONGET /v1/file-compare/scan/:job_id
Poll scan status — rate-exempt
→ JSONGET /v1/file-compare/diff
Diff two completed scans — rate-exempt
→ JSONPOST /v1/file-compare/scan — Submit a file
Submit one PDF or Office document for forensic fingerprint scanning. Call this twice — once per file — to get two job IDs for the diff step.
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF or Office document (.pdf, .docx, .xlsx, .pptx, .doc, .xls, .ppt, .xlsm, .docm, .pptm, .xlsb, .rtf, .one, .vsdx, .vsdm, .msg, .eml, .ics, .mdb, .accdb). Max 10 MB. |
Response
{ "job_id": "b42f57f8-449e-4a3f-97dc-baec65ac03a2", "status": "queued" }
PDF files return a
job_id prefixed pdf__
(e.g. pdf__pdftool_a1b2c3...). Office files return a plain UUID.
Both formats are accepted by the poll and diff endpoints.
GET /v1/file-compare/scan/:job_id — Poll status
Poll the scan status of a submitted file. Rate-exempt — polling does not
consume your hourly quota. Call until status = complete before requesting the diff.
Response — in progress
{ "status": "scanning" }Response — complete
{ "status": "complete" }Response — error
{ "status": "error", "error": "Scan failed: unsupported file type" }GET /v1/file-compare/diff — Compute fingerprint diff
Compute the structural fingerprint diff between two completed scans. Both job IDs must be
in complete status. Rate-exempt.
| Query param | Type | Required | Description |
|---|---|---|---|
job_a | string | Yes | job_id returned by the scan for File A |
job_b | string | Yes | job_id returned by the scan for File B |
Response
{
"similarity_pct": 87.4,
"verdict": "SIMILAR",
"file_a": { "filename": "invoice_v1.docx", "format": "DOCX", "risk_score": 12 },
"file_b": { "filename": "invoice_v2.docx", "format": "DOCX", "risk_score": 45 },
"diff": [
{
"group": "Macro",
"feature": "has_macros",
"file_a": false,
"file_b": true,
"match": false
},
{
"group": "IOC",
"feature": "url_count",
"file_a": 0,
"file_b": 3,
"match": false
}
],
"matching": [
{ "group": "Container", "feature": "container_type", "value": "OOXML", "match": true }
]
}curl Example — full workflow
# Step 1 — submit File A
curl --http3-only -X POST https://api.pqpdf.com/v1/file-compare/scan \
-H "X-API-Key: YOUR_KEY" \
-F "file=@invoice_v1.docx"
# → {"job_id":"b42f57f8-449e-4a3f-97dc-baec65ac03a2","status":"queued"}
# Step 2 — submit File B
curl --http3-only -X POST https://api.pqpdf.com/v1/file-compare/scan \
-H "X-API-Key: YOUR_KEY" \
-F "file=@invoice_v2.docx"
# → {"job_id":"c91a3d12-8f4e-4b5a-ae01-d7bc22fe1098","status":"queued"}
# Step 3 — poll until both are complete
curl --http3-only "https://api.pqpdf.com/v1/file-compare/scan/b42f57f8-449e-4a3f-97dc-baec65ac03a2" \
-H "X-API-Key: YOUR_KEY"
# → {"status":"complete"}
# Step 4 — compute diff
curl --http3-only "https://api.pqpdf.com/v1/file-compare/diff?job_a=b42f57f8-449e-4a3f-97dc-baec65ac03a2&job_b=c91a3d12-8f4e-4b5a-ae01-d7bc22fe1098" \
-H "X-API-Key: YOUR_KEY"Form Fill Stateful
Fill PDF form fields programmatically. Initialize the session, then apply field values.
fill-init
Load PDF, get form field list
→ JSONfill-apply
Apply field values, download filled PDF
→ PDFfill-init — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF with fillable form fields |
fill-init — Response
{
"success": true,
"token": "pdftool_abc123",
"fields": [
{ "name": "first_name", "type": "text", "value": "" },
{ "name": "agree", "type": "checkbox", "value": "Off" }
]
}fill-apply — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Token from fill-init |
fields | string (JSON) | Yes | JSON object mapping field names to values, e.g. {"first_name":"Alice","agree":"On"} |
flatten | string | No | 1 to flatten fields after filling (makes them non-editable) |
Outline / Bookmarks Stateful
outline-init
Load PDF, return bookmark tree
→ JSONoutline-apply
Write modified bookmark tree, download PDF
→ PDFoutline-init — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to load. Returns the current bookmark tree as a nested JSON array. |
password | string | No | Password for encrypted PDFs |
outline-apply — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Token from outline-init |
outline | string (JSON) | Yes | Modified bookmark tree (same structure as returned by outline-init) |
eSign Workflow Stateful
Create multi-party signature workflows. Up to 10 signers (sequential or parallel). The requester can lock signing field controls, assign multiple Sign Here / Initial Here boxes per signer per page, and enforce PAdES-B cryptographic signatures. Each signer gets a unique secure link — no account needed. Track progress with esign-status; download the completed PDF with esign-download.
esign-create
Upload document, create envelope
→ JSONesign-add-signer
Add a signer to the envelope
→ JSONesign-remove-signer
Remove a signer from the envelope
→ JSONesign-sign
Apply a signer's signature
→ JSONesign-status
Get envelope and signer status
→ JSONesign-preview
Render preview page
→ PNGesign-download
Download completed signed PDF
→ PDFesign-resume
Resume a partially signed envelope
→ JSONesign-cancel
Cancel and void an envelope
→ JSONesign-create — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF document to be signed (max 50 MB) |
signers | JSON string | Yes | Array of signer objects, max 10: [{"name":"Alice","email":"alice@example.com"},{"name":"Bob","email":""}] |
order | string | No | sequential (default) or parallel |
require_crypto | 1 | No | Require a PAdES-B cryptographic signature from every signer |
signer_placements | JSON string | No | Lock Sign Here / Initial Here boxes per signer per page. Object keyed by signer index (0-based): {"0":[{"page":1,"pos_x_pct":0.6,"pos_y_pct":0.8,"type":"sign"},{"page":2,"pos_x_pct":0.1,"pos_y_pct":0.9,"type":"initial"}]}. type: "sign" (120 pt) or "initial" (70 pt). Signer's page shows clickable Sign Here / Initial Here boxes — signer clicks each to confirm; counter tracks progress; Submit unlocks when all boxes confirmed. Position params in esign-sign are ignored. |
field_rules | JSON string | No | Lock or pre-select any signer control. Each key: {"mode":"free"|"preselect"|"required","value":"..."}. Keys: sig_method (draw/type/upload), date (on/off), time (on/off), page (last/first/all), ink_color (black/navy/blue/dark-gray), stroke_width (thin/medium/thick), crypto (on/off — replaces require_crypto), cert_source (auto/own). Example: {"sig_method":{"mode":"required","value":"draw"},"ink_color":{"mode":"required","value":"black"},"crypto":{"mode":"required","value":"on"}} |
esign-add-signer — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Envelope token from esign-create |
email | string | Yes | Signer's email address |
name | string | No | Signer's display name |
order | integer | No | Signing order (1 = first). Omit for parallel signing. |
esign-remove-signer — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Envelope token from esign-create |
email | string | Yes | Email address of the signer to remove |
esign-sign — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
workflow_token | string | Yes | Workflow token from esign-create |
signer_token | string | Yes | This signer's unique token (from their sign URL) |
sig_type | string | Yes | draw | type | image | none |
sig_data | string | No* | Data URL of drawn signature (for draw) |
sig_image | string | No* | Data URL of uploaded signature image (for image) |
sig_text | string | No* | Name to render as typed signature (for type) |
pos_x | string | No | left | center | right | custom — ignored when workflow has signer_placements for this signer |
pos_y | string | No | top | middle | bottom | custom — ignored when workflow has signer_placements |
pos_x_pct | float | No | Horizontal position 0.0–1.0 (when pos_x=custom) |
pos_y_pct | float | No | Vertical position 0.0–1.0 (when pos_y=custom) |
page | string | No | all | first | last | custom — ignored when workflow has signer_placements |
page_number | int | No | 1-based page number (when page=custom) |
sig_size | int | No | Signature width in points 40–300 — ignored when workflow has signer_placements (Sign Here = 120 pt, Initial Here = 70 pt per area) |
sig_date | string | No | Date string to embed, e.g. "April 11, 2026" |
sig_ink_color | string | No | Ink colour for text-mode signatures: #1a1a2e (black, default), #1a237e (navy), #1565c0 (blue), #555555 (dark-grey). Ignored when field_rules.ink_color is required. |
esign-status — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Envelope token from esign-create |
esign-preview — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Envelope token from esign-create |
page | integer | No | 1-based page number to render — default 1 |
esign-download — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Envelope token — only succeeds when all signers have signed (status = complete) |
esign-resume — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Envelope token for the partially signed workflow to resume |
esign-cancel — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
token | string | Yes | Envelope token to void. Cancellation is permanent and cannot be undone. |
Layout
nup
N-up imposition (2, 4, 6, 9 pages per sheet)
→ PDFdeskew
Auto-deskew scanned pages
→ PDFnup — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to impose |
layout | string | Yes | 2 | 4 | 6 | 8 | 9 | booklet — pages per output sheet |
page_size | string | No | A4 | A3 | Letter — default A4 |
orientation | string | No | portrait | landscape — default portrait |
deskew — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Scanned PDF to correct |
mode | string | No | both | crop | deskew — default both |
corners | string (JSON) | No | Per-page corner overrides: [{"page":1,"tl":[x,y],"tr":[x,y],"br":[x,y],"bl":[x,y]}]. Client-detected corners for perspective correction. |
Inspection
a11y
Accessibility / PDF/UA compliance check
→ JSONfont-inspect
List embedded fonts, encoding, subsets
→ JSONcolor-inspect
Colour space analysis (CMYK, spot colours)
→ JSONa11y — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to check. Returns weighted pass-rate, letter grade (A–F), and per-check WCAG 2.1 criterion with impact level. |
font-inspect — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to inspect. Returns font name, type (Type1 / TrueType / CIDFont / OpenType), embedded status, and subset flag per font. |
color-inspect — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to inspect. Returns colour space analysis per page — RGB, CMYK, spot colours, ICC profiles. |
Standards
pdfx
Convert to PDF/X (print production)
→ PDFtable-json
Extract tables as structured JSON
→ JSONpades
Apply PAdES digital signature (PKI)
→ PDFpdfx — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to convert to PDF/X |
standard | string | No | X-1a | X-3 | X-4 — default X-3 |
render_intent | integer | No | 0 (Perceptual) | 1 (RelativeColorimetric) | 2 (Saturation) | 3 (AbsoluteColorimetric) — default 1 |
table-json — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF containing tables to extract. Returns a JSON array of tables with row/cell data. Returns an error if no tables are detected. |
pades — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to sign |
cert | file | Yes | Signing certificate (PEM or P12/PFX) |
key | file | No | Private key (PEM) — not required for P12 bundles |
passphrase | string | No | Certificate passphrase if encrypted |
reason | string | No | Signature reason field |
location | string | No | Signature location field |
AI-Powered Tools
Self-hosted AI analysis — no OpenAI, no external calls. Runs on the local Qwen 2.5 model.
pdf-ai-docinfo
AI-generated document summary and topic extraction
→ JSONpdf-ai-redact-suggest
AI-suggested redaction targets (PII, sensitive terms)
→ JSONpdf-ai-compare-explain
AI-narrated diff between two PDF versions
→ JSONpdf-ai-docinfo — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to analyse. Returns AI-generated forensic report: classification, confidence, executive_summary, key_findings, recommended_action, mitre_techniques, false_positive_risk. |
pdf-ai-redact-suggest — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | PDF to analyse. Returns AI-suggested redaction targets — names, SSNs, account numbers, and other PII/sensitive patterns found in the document text. |
pdf-ai-compare-explain — Parameters
| Field | Type | Required | Description |
|---|---|---|---|
file | file | Yes | Original PDF |
file2 | file | Yes | Revised PDF to compare against |
Camera Scan
POST
/v1/camera-scan
Convert mobile camera photos to a clean PDF
| Field | Type | Required | Description |
|---|---|---|---|
file[] | file[] | Yes | 1–30 JPEG/PNG photos of physical documents |
enhancement | string | No | auto | colour | bw | grayscale — default auto. Applied via CLAHE adaptive contrast. |
ocr | string | No | 1 to run Tesseract OCR and embed an invisible text layer in the output PDF |
deskew | string | No | 1 to apply OpenCV perspective correction per page |
corners | string (JSON) | No | Per-image corner coordinates for manual perspective correction: [{"tl":[x,y],"tr":[x,y],"br":[x,y],"bl":[x,y]}] |
Guide: Stateful Sessions
Editor, form fill, outline, eSign, and async scan operations maintain server-side PHP session state.
You must pass a consistent X-Session-Id header across all calls in the same workflow.
Session TTL: 30 minutes of inactivity. Call
edit-ping (exempt from rate limits) to keep editor sessions alive during user pauses.
Example: PDF Editor Workflow
SESSION="$(uuidgen)"
KEY="pqpdf_your_key_here"
# 1. Open PDF in editor
curl --http3-only -X POST https://api.pqpdf.com/v1/edit-init \
-H "X-API-Key: $KEY" -H "X-Session-Id: $SESSION" \
-F "file=@document.pdf"
# → { "token": "pdftool_abc123", "page_count": 5, ... }
# 2. Add text to page 1
curl --http3-only -X POST https://api.pqpdf.com/v1/edit-doc-op \
-H "X-API-Key: $KEY" -H "X-Session-Id: $SESSION" \
-F "token=pdftool_abc123" \
-F 'op_type=add_text' \
-F 'page=1' \
-F 'data={"x":100,"y":200,"text":"APPROVED","font_size":24,"color":"#ff0000"}'
# 3. Download edited PDF
curl --http3-only -X POST https://api.pqpdf.com/v1/edit-apply \
-H "X-API-Key: $KEY" -H "X-Session-Id: $SESSION" \
-F "token=pdftool_abc123" \
-o edited.pdf
import uuid
from curl_cffi.requests import Session
SESSION = str(uuid.uuid4())
KEY = "pqpdf_your_key_here"
HEADERS = {"X-API-Key": KEY, "X-Session-Id": SESSION}
BASE = "https://api.pqpdf.com/v1"
with Session(http_version=3) as client:
# 1. Open PDF
init = client.post(f"{BASE}/edit-init", headers=HEADERS,
files={"file": open("document.pdf", "rb")}).json()
token = init["token"]
# 2. Queue text annotation
client.post(f"{BASE}/edit-doc-op", headers=HEADERS, data={
"token": token,
"op_type": "add_text",
"page": 1,
"data": '{"x":100,"y":200,"text":"APPROVED","font_size":24,"color":"#ff0000"}',
})
# 3. Download result
resp = client.post(f"{BASE}/edit-apply", headers=HEADERS,
data={"token": token})
with open("edited.pdf", "wb") as f:
f.write(resp.content)
Code Examples
Async PDF Security Scan
KEY="pqpdf_your_key_here"
SESSION="$(uuidgen)"
# Start async scan
TOKEN=$(curl -s --http3-only -X POST https://api.pqpdf.com/v1/pdf-scan-start \
-H "X-API-Key: $KEY" -H "X-Session-Id: $SESSION" \
-F "file=@suspect.pdf" | python3 -c "import sys,json; print(json.load(sys.stdin)['token'])")
# Poll until ready
while true; do
RESULT=$(curl -s --http3-only -X POST https://api.pqpdf.com/v1/pdf-scan-poll \
-H "X-API-Key: $KEY" -H "X-Session-Id: $SESSION" \
-F "token=$TOKEN")
READY=$(echo "$RESULT" | python3 -c "import sys,json; print(json.load(sys.stdin).get('ready','false'))")
[ "$READY" = "True" ] && echo "$RESULT" && break
sleep 3
done
import uuid, time
from curl_cffi.requests import Session
KEY = "pqpdf_your_key_here"
SESSION = str(uuid.uuid4())
HEADERS = {"X-API-Key": KEY, "X-Session-Id": SESSION}
BASE = "https://api.pqpdf.com/v1"
with Session(http_version=3) as client:
# Start
resp = client.post(f"{BASE}/pdf-scan-start", headers=HEADERS,
files={"file": open("suspect.pdf", "rb")}).json()
token = resp["token"]
# Poll
while True:
result = client.post(f"{BASE}/pdf-scan-poll", headers=HEADERS,
data={"token": token}).json()
if result.get("ready"):
print(result["risk_level"], result["ai_forensic_summary"]["threat_verdict"])
break
time.sleep(3)
Key Management
KEY="pqpdf_your_key_here"
# Create a new key
curl -s --http3-only -X POST https://api.pqpdf.com/v1/keys \
-H "X-API-Key: $KEY" \
-H "Content-Type: application/json" \
-d '{"label":"ci-pipeline","rate_limit_per_hour":500}'
# Add an IP to the new key
NEW_KEY_ID="<uuid from above>"
curl -s --http3-only -X POST https://api.pqpdf.com/v1/keys/$NEW_KEY_ID/ips \
-H "X-API-Key: $KEY" \
-H "Content-Type: application/json" \
-d '{"cidr":"10.0.0.0/8","label":"internal-network"}'
from curl_cffi.requests import Session
KEY = "pqpdf_your_key_here"
HEADERS = {"X-API-Key": KEY}
BASE = "https://api.pqpdf.com/v1"
with Session(http_version=3) as client:
# Create key
new = client.post(f"{BASE}/keys", headers=HEADERS, json={
"label": "ci-pipeline", "rate_limit_per_hour": 500
}).json()
key_id = new["key"]["id"]
print("New key:", new["key"]["api_key"]) # save this!
# Whitelist IP
client.post(f"{BASE}/keys/{key_id}/ips", headers=HEADERS, json={
"cidr": "10.0.0.0/8", "label": "internal-network"
})
On-Premise & Enterprise
Deploy the full API stack inside your own infrastructure. All the same operations, no rate limits, no file size caps, no external calls — your data never leaves your perimeter.
Unlimited requests & file size
Air-gapped / private network deployment
PHI / PII pipeline safe — zero data egress
Custom key quotas & IP policies
One-time setup, annual support
Unlimited users & servers
Common deployment contexts
Legal & eDiscovery
High-volume redaction, bates stamping, and chain-of-custody PDF pipelines behind the firewall.
Healthcare & PHI
HIPAA-aligned processing — OCR, form fill, and forensic scan with zero patient data leaving your network.
Financial Services
Statement parsing, contract conversion, and secure watermarking inside your SOC 2 boundary.
Government & Public Sector
Air-gapped API deployment on sovereign infrastructure — classified doc handling with no cloud dependency.
High-Volume / Large Files
Remove the 50 MB cap and rate limits for batch ingestion pipelines processing thousands of PDFs per hour.
Other Use Case
Describe your pipeline and we will scope a deployment that fits your architecture and compliance needs.
Get in Touch →
No commitment. We will scope your deployment and provide a fixed quote.