The Kova REST API lets you integrate employee data, leave management, and more into your existing tools.
Base URL
https://kovahr.com/api/v1
Authentication
All requests require a Bearer token:
Authorization: Bearer sk_live_your_api_key_here
Generate API keys in **Settings → API Keys** (Pro plan required). Each key is scoped to your organization and respects RBAC permissions.
Rate Limits
|------|-------|
When rate-limited, the API returns HTTP 429 with a `Retry-After` header.
Response Format
All responses use JSON:
{
"data": [...],
"pagination": {
"page": 1,
"per_page": 20,
"total": 45
}
}
Error Handling
Errors return a structured JSON body:
{
"error": "not_found",
"message": "Employee not found",
"status": 404
}
Webhooks
Subscribe to events (employee.created, leave.approved, etc.) in **Settings → Webhooks**. All webhook payloads are signed with HMAC-SHA256 for verification.