Developers

Documentation Mercado Libre

Check out all the necessary information about APIs Mercado Libre.

Last update 28/04/2023

Application and permissions

With this API you can access full details about your application, simply include the app_id in the API request. In addition, get information about grants, users and revoke grants of users.

Applications details

Request:

curl -X GET -H 'Authorization: Bearer $ACCESS_TOKEN' http://api.mercadolibre.com/applications/$APP_ID

Example:

curl -X GET -H 'Authorization: Bearer $ACCESS_TOKEN' http://api.mercadolibre.com/applications/5685250730848580

Response:

{
   "id": 5685250730848580,
   "site_id": "CBT",
   "name": "TestAuth",
   "description": "Auth test",
   "thumbnail": "https://http2.mlstatic.com/storage/platsec-applications-dev-mngr/prod-applications-fe/1679436423519_1198410922.png",
   "catalog_product_id": null,
   "item_id": null,
   "price": null,
   "currency_id": null,
   "short_name": "Auth",
   "url": "http://globalselling.mercadolibre.com/devcenter/auth",
   "callback_url": "https://dle.rae.es/",
   "sandbox_mode": true,
   "project_id": null,
   "active": true,
   "max_requests_per_hour": 18000,
   "scopes": [
       "write",
       "read",
       "offline_access"
   ],
   "notifications_callback_url": "https://dle.rae.es/",
   "notifications_topics": [
       "items",
       "marketplace_items",
       "marketplace_questions"
   ],
   "domains": [],
   "certification_status": "not_certified",
   "token_type": "",
   "use_pkce": false,
   "date_created": "2023-03-21T18:07:03.000-04:00",
   "blocked": false,
   "blocked_date": "",
   "blocked_reason": "",
   "disabled": false,
   "disabled_date": ""
}

Applications authorized by user

To access all the applications authorized by a user, just send a GET request as a user_id and access token. In addition, you can see Permissions granted to Applications.

Request:

curl -H 'Authorization: Bearer $ACCESS_TOKEN' -X GET https://api.mercadolibre.com/users/$USER_ID/applications

Example:

curl -H 'Authorization: Bearer $ACCESS_TOKEN' -X GET https://api.mercadolibre.com/users/481241763/applications

The response would be an array of applications with the following format:

[
    {
        "user_id": 481241763,
        "app_id": 7982740196824807,
        "date_created": "2019-10-18T16:30:44.000-04:00",
        "scopes": [
            "offline_access",
            "read",
            "write"
        ]
    },
    {
        "user_id": 481241763,
        "app_id": 1503799861804470,
        "date_created": "2020-02-05T13:00:48.000-04:00",
        "scopes": [
            "offline_access",
            "read",
            "write"
        ]
    }
]

Users granted permissions to app

Request:

curl -H 'Authorization: Bearer $ACCESS_TOKEN' -X GET https://api.mercadolibre.com/applications/$APP_ID/grants

Example:

curl -H 'Authorization: Bearer $ACCESS_TOKEN' -X GET https://api.mercadolibre.com/applications/1503799861804470/grants

Response:

{
  "grants": [
    {
      "user_id": 481241763,
      "app_id": 1503799861804470,
      "date_created": "2020-02-05T13:00:48.000-04:00",
      "scopes": [
        "offline_access",
        "read",
        "write"
      ]
    }
  ],
  "paging": {
    "total": 1,
    "limit": 50,
    "offset": 0
  }
}

Fields description

user_id: user identifier.
app_id: application identifier.
date_created: date the authorization was created
scopes: permissions given to the application: read, write and offline_access.

Revoke user authorization

Request:

curl -H 'Authorization: Bearer $ACCESS_TOKEN' -X DELETE https://api.mercadolibre.com/users/$USER_ID/applications/$APP_ID

Response:

{
    "user_id":"998877",
    "app_id":"1234567891011",
    "msg":"Autorización eliminada"
}

Next: Design considerations.