Our suite of APIs offers seamless integration with Avios-driven loyalty programmes, allowing you to quickly and easily:
*These APIs are only available to redemption partners. For a full list of our available APIs, please visit our API documentation portal.
Our API documentation portal has all of our detailed API documentation and provides sample API requests and responses. It’s an interactive, easy-to-use website, allowing you to quickly find the information you need.
In order to use Avios APIs, you must sign up and be registered as an Avios partner. To get started, simply sign up on developer.avios.com, contact your Avios representative or email us at email@example.com. Our partner on-boarding team will work with you to identify which APIs you’ll need, register you as an Avios partner and give you a secure API key.
We have a staging environment available to test any new API integrations. Our partner on-boarding team will help you conduct testing to ensure everything is working smoothly. When you’re ready to deploy to production, our team will also help you validate that the go-live has been successful.
Our API platform is your gateway to Avios: the loyalty partner of choice in travel. We help you create deeper and more profitable engagement with your customers. Our suite of APIs offers a seamless integration experience, allowing you to quickly and easily:
The full set of capabilities for British Airways and Iberia loyalty programmes will be rolled out during 2019. Please get in touch with us for current availability and roadmap.
The Debit API currently works for the loyalty programmes of our airline partners – Vueling Club, Flybe and AerClub. It is currently being worked on for the British Airways Executive Club.
The Debit API can only be used by airline partners at the moment.
In order to use Avios APIs, you must sign up and be registered as an Avios partner. To get started, simply contact your Avios representative or email us at firstname.lastname@example.org. Our partner on-boarding team will work with you to identify which APIs you’ll need, register you as an Avios partner and give you a secure API key.
Yes, the usage of our APIs is free. Nonetheless in order to credit or debit Avios a commercial arrangement needs to be in place. Please contact us at email@example.com for details and commercial terms.
We do not offer bespoke API products.
We use Mashery's API Gateway and OAuth to secure our APIs. Our APIs are built using the highest level of security supplied by Mashery. You’ll be given your own security key for access, and our entire platform is built to the highest level of security standards. All API requests and responses are sent over HTTPs.
This FAQ guide and our detailed API documentation are useful resources for troubleshooting. When additional support is required, our team can answer your questions and help you resolve any issues. Simply get in touch with your Avios representative.
Sign up for a developer account at developer.avios.com, contact your Avios representative or email us at firstname.lastname@example.org. We’ll help you get your API key, register your application and get started using our APIs.
For security reasons, limits are placed on the number of API requests that partners can make using their API key. These limits are tailored to your needs and can be reviewed as your API usage changes.
You can use our APIs to identify British Airways customers but not Iberia customers.
In order to go to production you need to have completed testing in our staging environment. You also need to have agreed to our platform terms and conditions in addition to meeting our compliance terms and conditions.
|API||Application Program Interface: a set of routines, protocols and tools for building software applications. The API specifies how software components should interact and APIs are used when programming graphical user interface (GUI) components.|
|APID||Avios Partner Identification|
|ATRP||Avios Travel Rewards Programme.|
|Avios||The Avios reward programme.|
|BAEC||British Airways Executive Club.|
|PUNTO||Vueling’s Loyalty Programme|
|BAEC OCD||BAEC gateway|
|ISO||International Standards Organisation|
|JSON||Java Script Object Notation: An open standard format that uses human- readable text to transmit data objects consisting of attribute–value pairs. It is the primary data format used for asynchronous browser/server communication (AJAJ), largely replacing XML (used by AJAX).|
|Mashery||A cloud hosted component of the API handling process. This function adds or modifies certain API parameters when a call is received and prior to processing by the called Avios application.|
|On-boarding||The process of signing-up a partner commercially and getting them up to speed with Avios.|
|URI and URL||A Uniform Resource Locator (URL), commonly informally termed a web address is a reference to a web resource that specifies its location on a computer network and a mechanism for retrieving it. A URL is a specific type of Uniform Resource Identifier (URI) although many people use the two terms interchangeably. A URL implies the means to access an indicated resource, which is not true of every URI. URLs are most commonly used to reference web pages (http), but are also used for file transfer (ftp), email (mailto), database access (JDBC) and many other applications.|
|SOAP||Simple Object Access Protocol: a protocol specification for exchanging structured information in the implementation of web services in computer networks. It uses the XML Information Set for its message format, and relies on other application layer protocols, most notably Hypertext Transfer Protocol (HTTP) or Simple Mail Transfer Protocol (SMTP), for message negotiation and transmission|
|XML||Extensible Markup Language: a mark-up language that defines a set of rules for encoding documents in a format which is both human-readable and machine-readable.|
|JWT||JSON Web Token (JWT) is an open standard (RFC 7519) that defines a compact and self-contained way for securely transmitting information between parties as a JSON object. This information can be verified and trusted because it is digitally signed. JWTs can be signed using a secret (with the HMAC algorithm) or a public/private key pair using RSA.|
|UUID||A Universally Unique Identifier (UUID) URN Namespace, rfc4122|