# Headless

<figure><img src="/files/5woJ2fRlNiNjaQVYDQ6j" alt=""><figcaption></figcaption></figure>

Available on our Business plan and above:

* [**Member API**](https://api-headless.circle.so/?urls.primaryName=Member%20APIs): A server-side API with endpoints for building your own member-side experiences in your app or website. [See endpoints](https://api-headless.circle.so/?urls.primaryName=Member%20APIs)\
  \
  Unlike the admin API, requests are member-authenticated via the member-specific JWT tokens you'll generate with the [Auth API](https://api-headless.circle.so/).\
  \
  This means every API request is made on behalf of a signed in member on your website or app, allowing you to write your own client-side code for integrating posts, comments, events, notifications, and more into your website or app.<br>
* [**Auth API**](https://api.circle.so/apis/headless/quick-start)**:** A server-side API to authenticate your website or app’s signed in members with the Member API using a JWT token. [See endpoints](https://api-headless.circle.so/)

{% hint style="info" %}
Please note:\
\- The `access_token` persists across sessions, allowing users to possess multiple tokens concurrently.\
\- We do not revoke the`access_token` automatically\
\- Our system automatically revokes the `refresh_token` after one month for enhanced security\
\- If you need selective token revocation, our API offers endpoints dedicated to both `access_token` and `refresh_token` revocation
{% endhint %}

### Security

1. Keep your application token secure by making server-side calls for the Auth API. **Do not expose your admin API token or your application token in your client-side code.**
2. Implement token management for the Member API using JWT access and refresh tokens on the client-side.

For the full list of API endpoints, please visit [https://api-headless.circle.so/.](https://api-headless.circle.so/)

### Feedback

* If you have general questions or want to share your creations with the developer community, please check out our [Developer community space](https://community.circle.so/c/developers/).&#x20;
* If you have API feedback for our engineering team, [please use this form](https://circleco.typeform.com/to/xFEpyITZ#email=xxxxx\&visitor=xxxxx) to reach out to us.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://api.circle.so/apis/headless.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.