Link Validation API

Vivoldi short links include advanced access controls such as expiration, password protection, and click limits.

These controls apply only when users access the short link. Direct visits to the original URL bypass them.

Add the Link Validation JavaScript SDK to your destination page to enforce the same rules across every access path.
This SDK is available on premium plans and above.

Insert the Vivoldi script into the <head>...</head> section as shown in the sample below.

example.html 
<html>
<head>
<title>example page</title>
<script src="https://opencdn.vivoldi.com/js/v2/link.validate.min.js?v=202507301"></script>
<script>
const req = {
    linkId:'xY5h',  // Block access if not accessed via this link ID.
    domain:'https://vvd.bz',
    apiKey:'5oNyoLDuQ513cJ1rlYpJgHc9zu0H10F6'
};
vvdLinkValidate(req);
</script>
</head>

<body>
.
.
.
</body>
</html>

Why Link Validation Matters

Short links can enforce access controls.

  • Expiration limits
  • Password protection
  • Click limits

Once a user reaches the destination and shares the original URL, those controls can be bypassed.

For example, even with a 100-click limit on a campaign link, exposing the original URL removes that restriction. Add the Link Validation SDK to your destination page to enforce the same rules on direct access and close the gap.

How It Works

The SDK validates each request using data from the short link.
Add one line of code to secure event and promotion pages.

Set three values when integrating: linkId (target link ID), domain (link domain), and apiKey (your API key).

If validation fails, the SDK redirects to the short link or blocks access.

Use Cases

Enforce access rules across every entry point.

  • Events & promotions: Auto-block access after the link expires
  • Members-only content: Block direct access to the original URL without authentication
  • First-come campaigns: Stop participation once the click limit is reached—even on the destination page
  • Membership pages: Restrict access after the link expires
  • More: Protect paid content and prevent unauthorized sharing of campaign links
Best suited for marketing campaigns and content protection at scale.

Implementation Notes

Review these before you deploy the SDK.

  • Install the Vivoldi SDK on the destination page
  • Keep your API key secure—never expose it publicly
  • linkId, domain, apiKey must be set correctly or validation will fail
  • This SDK is available on premium plans and above
Correct setup ensures reliable enforcement.