Requirements
- Backend service capable of HTTPS POST calls
- Access to site-level API key from dashboard
- Stable event IDs for retry-safe delivery
Security Requirements
- Never expose
X-API-Keyin frontend/browser code - Store API key in environment secret manager
- Rotate/revoke keys through dashboard API tab