# Epicollect5 API ## Epicollect5 API Epicollect5 is currently a **read-only** API. Only **GET** requests are exposed to third-party clients/apps. Adding/editing resources can be done only via the Epicollect5 official applications (Android, iOS, web). Only secure **HTTPS** requests are allowed. ## Server Responses: * 200 `OK` The request was successful. * 400 `Bad Request` The request could not be understood or was missing required parameters. * 404 `Not Found` The resource was not found. * 500 `Internal Server Error` Something unexpected happened ## Status Code Responses When an error occurs, you will receive a status code in the response. Error objects are returned in the standard [JSON API format](http://jsonapi.org/examples/#error-objects) and consist of: * code - the EC5 code * title - a title for the EC5 code (in English) * source - the source of the response A full list of the available status codes can be found [here](https://five.epicollect.net/json/ec5-status-codes/en.json). ## Rate Limiting We currently limit access to the API to * 60 requests per minute for projects (JSON structure). * 60 requests per minute for entries. * 30 requests per minute for media files. * 1000 entries per request max. * 10 auth tokens per hour. {% hint style="warning" %} Every day, hundreds of developers make requests to the Epicollect5 API. To help manage the sheer volume of these requests, limits are placed on the number of requests that can be made. These limits help us provide a reliable and scalable API that our developer community relies on. \ **We reserve the right to lower these limits at any time if systems become overloaded.** {% endhint %} {% hint style="danger" %} To ensure consistent performance for all users, we recommend that applications operate well below the published rate limits (for example, **targeting no more than \~50% of the maximum allowed rate**). Applications that consistently operate at or near the limits, or that repeatedly request large datasets without filtering, **may experience throttling or temporary restrictions**, especially during periods of high system load. Where possible, we strongly encourage the use of incremental data access patterns (e.g. using `uploaded_at` or `created_at` filters) rather than repeated full dataset requests. {% endhint %} ## Google Apps Scripts Integration Google Apps Script is a popular way to sync Epicollect5 data into Google Sheets. To avoid hitting limits, follow the best practices below. #### Best practices for automated exports **✅ Always use a date filter** The most important optimisation. Instead of fetching your entire dataset on every run, only fetch entries uploaded since your last sync: ``` /api/export/entries/{project-slug} ?form_ref={your-form-ref} &per_page=250 &filter_by=uploaded_at &filter_from=2026-03-15T00:00:00.000Z ``` In your script, store the timestamp of the last successful sync and use it as `filter_from` on the next run. This way, each run fetches only new entries — typically a handful of rows — rather than your entire dataset.\ `uploaded_at` **tracks both the creation of new entries and edits to existing entries.** **✅ Use per\_page=250** Using smaller page sizes like `per_page=100` means 5× more requests for the same data. Always use `per_page=250` unless you have a specific reason not to. **✅ Add a delay between requests in your script** Even a small delay between paginated requests spreads the load and keeps you well within the rate limit. In Google Apps Script: ```javascript function exportData() { const baseUrl = 'https://five.epicollect.net/api/export/entries/your-project'; const formRef = 'your-form-ref'; const props = PropertiesService.getScriptProperties(); // 1. Check Hourly Request Budget (Limit: 10 per hour) const now = new Date().getTime(); let usage = JSON.parse(props.getProperty('hourly_usage') || '{"count": 0, "reset": 0}'); // Reset usage if an hour has passed if (now > usage.reset) { usage = { count: 0, reset: now + (60 * 60 * 1000) }; } const lastSync = props.getProperty('last_sync_date') || '2020-01-01T00:00:00Z'; let page = 1; let allData = []; while (usage.count < 10) { // Strict 10 requests per hour limit // 2. Updated per_page to 500 const url = `${baseUrl}?form_ref=${formRef}&per_page=250&page=${page}` + `&filter_by=created_at&filter_from=${lastSync}&sort_order=ASC`; const response = UrlFetchApp.fetch(url, { headers: { 'Authorization': 'Bearer ' + getToken() }, muteHttpExceptions: true // Allows us to handle 429 errors gracefully }); const code = response.getResponseCode(); if (code === 429) { console.warn('Rate limit reached on server. Stopping for now.'); break; } const json = JSON.parse(response.getContentText()); const entries = json.data.data; if (!entries || entries.length === 0) break; allData = allData.concat(entries); // Track last successfully fetched timestamp to prevent redundant repeats const newestEntryTime = entries[entries.length - 1].created_at; props.setProperty('last_sync_date', newestEntryTime); usage.count++; page++; // Save current usage state props.setProperty('hourly_usage', JSON.stringify(usage)); // Small delay (10 secs) to be polite to the server CPU Utilities.sleep(10000); } if (usage.count >= 10) { console.log('Hourly budget exhausted. Script will resume on next trigger.'); } return allData; } ``` **❌ Do not fetch your entire dataset on every run** Fetching all pages of a large project on every script execution is the most common cause of rate limit violations. **It is unnecessary in almost all cases and places a significant load on our servers, affecting all Epicollect5 users.** Scripts that repeatedly fetch entire datasets without date filters will receive a `429 Too Many Requests` response. Persistent violations may result in automated API access being suspended for the affected project. ## Authentication For **PRIVATE** projects, access to data is restricted. To access the data, you need to create an Epicollect5 Client App and generate an API Token, which can be added to all requests made via the **Authorization** header, like so: `Authorization: Bearer {api_token}` This can be done from the Project Details page by the **Creator or Manager** of a Project. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://developers.epicollect.net/readme.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.