Bespot Gatekeeper Web SDK
Web SDK for Bespot Gatekeeper, a fraud prevention and location integrity platform for web applications.
Use this SDK to run real-time fraud checks in browser sessions and receive policy results for high-risk actions such as signup, login, checkout, reward redemption, wallet actions, account changes, or location-restricted access.
Gatekeeper helps detect and evaluate bot traffic, AI agents, location spoofing, VPN/proxy use, suspicious browser or device signals, multi-accounting, and abuse patterns such as bonus, promo, or reward fraud.
Prerequisites
Before integrating, sign up at gatekeeper.bespot.com to create your account and obtain your API key and other credentials for SDK runtime configuration.
Documentation
SDK integration guides live in this repository. Official Bespot product documentation is at docs.bespot.com.
| Document | Description |
|---|---|
| Integration guide | Full end-to-end integration reference |
| Authentication | JWT access tokens and OAuth (server-side) |
| Error reference | Error handling rules and error.name catalog |
| SDK versioning | SDK package version vs application version |
| Templates | Copy-paste HTML and config starters |
Official authentication API reference: Bespot Authentication Guide.
Installation
SDK bundles are distributed via npm and GitHub Releases (safe-sdk.esm.min.js, safe-sdk.umd.min.js). Each release includes both ESM and UMD builds — download and host directly; no extraction step required.
npm (recommended)
Requires Node.js on your development machine to run npm install. The SDK itself runs in the browser — Node is not needed at runtime.
npm install @bespot/gatekeeper-web-sdkimport SafeSDK from '@bespot/gatekeeper-web-sdk'CDN / script tag (no build step)
No Node.js required. Download safe-sdk.esm.min.js or safe-sdk.umd.min.js from the Releases page and host the files on your CDN or static origin.
Quick start
- Account — sign in at gatekeeper.bespot.com and collect your credentials
- Install —
npm install @bespot/gatekeeper-web-sdkor download from Releases - Configure — four runtime fields:
baseUrl,apiKey,applicationId,applicationVersion(runtime configuration) - Authenticate — obtain a JWT from your backend (authentication)
- Integrate —
await sdk.initialize(jwt)thenawait sdk.check()(integration sequence)
const sdk = new SafeSDK({
baseUrl: 'bespot-gatekeeper-base-url', // e.g. 'https://gatekeeper.bespotcompany.com'
apiKey: 'your-api-key', // e.g. '13CTrcYiya9NNnRyd3jXA21CULPPDSqM90sdFnGs'
applicationId: 'your-app-id', // e.g. 'mywebapp.mycompany.com'
applicationVersion: 'your-app-version', // e.g. '2.4.1'
})
await sdk.initialize(jwt)
const result = await sdk.check()
if (result instanceof Error) {
console.error('Check failed:', result.name)
} else {
console.log('Check passed:', result)
}Starter pages: templates/integration-esm.html, templates/integration-umd.html.
License
Use of the SDK is governed by LICENSE.
Support
See Support in the integration guide.