WhatsApp REST API & MCP Server

Send and receive WhatsApp messages from any application, automation tool, or AI agent using our REST API and MCP (Model Context Protocol) server. Now with programmatic account provisioning — spin up new WhatsApp accounts on demand from code or directly from an AI agent.

How It Works

The WhatsApp API is a standalone product — you do NOT need a GoHighLevel (GHL) subscription to use it. You can also use it alongside GHL if you have both plans.

If you have both a GHL subscription and an API plan, you can use the same WhatsApp sessions for both — GHL handles CRM sync while the API gives you programmatic access.

WhatsApp as a Service (New)

You can now create and manage WhatsApp accounts entirely through the API — no dashboard required. This turns the product into a true WhatsApp-as-a-Service backend: build your own SaaS, onboarding flow, or multi-tenant app on top of our infrastructure.

The provisioning flow is three calls:

1. POST /api/v1/locations — create an API account (workspace) to hold sessions
2. POST /api/v1/sessions — create a WhatsApp device inside that account, which starts generating a QR
3. GET /api/v1/sessions/:id/qr — poll until the QR is ready, show it to the end user, and watch the status flip to connected after they scan

curl -X POST https://panel.wasndr.com/api/v1/locations \
  -H "Authorization: Bearer wsndr_your_key_here" \
  -H "Content-Type: application/json" \
  -d '{ "name": "Acme Corp" }'

curl -X POST https://panel.wasndr.com/api/v1/sessions \
  -H "Authorization: Bearer wsndr_your_key_here" \
  -H "Content-Type: application/json" \
  -d '{ "locationUuid": "location-uuid-from-previous-call", "name": "Main Device" }'

curl https://panel.wasndr.com/api/v1/sessions/YOUR_SESSION_ID/qr \
  -H "Authorization: Bearer wsndr_your_key_here"

The QR endpoint returns a base64 image (data:image/png;base64,...) and a status field that moves through starting → qr_ready → connected. Poll every 2–3 seconds while showing the QR to your user, and stop when status === 'connected'.

API-provisioned sessions count against your plan's session limit. Archive an account with DELETE /api/v1/locations/:uuid to free slots; remove a single device with DELETE /api/v1/sessions/:id.

What's available over MCP vs REST

AI agents can create and manage accounts over MCP, but scanning a QR and wiring a physical phone is a human-only step, so session provisioning is REST-only.

Getting Started

1. Activate Your Free Trial

Go to the API page in your dashboard and click Activate Free Trial. You'll get:

• Your API key (starts with wsndr_) — save it immediately, it's shown only once
• 50 free messages per month
• 1 WhatsApp session

2. Connect a WhatsApp Session

Two ways to connect a session:

Option A — Dashboard (fastest for a single number)

1. Go to Sub Accounts in your dashboard
2. Click on a sub-account (or create one)
3. Click Connect on a device and scan the QR code with your WhatsApp app
4. Once connected, use GET /api/v1/sessions to find your session ID

Option B — API (for multi-tenant apps and programmatic onboarding)

Use the three-call provisioning flow above (POST /locations → POST /sessions → GET /sessions/:id/qr). This is what you want if you're building a product where each of your users brings their own WhatsApp number.

3. Send Your First Message

curl -X POST https://panel.wasndr.com/api/v1/messages/send \
  -H "Authorization: Bearer wsndr_your_key_here" \
  -H "Content-Type: application/json" \
  -d '{
    "sessionId": "your-session-id",
    "phone": "14155551234",
    "text": "Hello from the API!"
  }'

4. Connect to Claude or Other AI Agents (MCP)

Add this to your MCP configuration:

{
  "mcpServers": {
    "wasndr-whatsapp": {
      "url": "https://panel.wasndr.com/mcp",
      "headers": {
        "Authorization": "Bearer wsndr_your_key_here"
      }
    }
  }
}

Your AI agent can then use tools like send_whatsapp_message, list_groups, check_whatsapp_number, create_api_account, and more.

Authentication

All requests use Bearer Token authentication:

• Header: Authorization: Bearer wsndr_your_api_key
• Keys start with wsndr_ prefix
• Manage your keys in the API page of your dashboard
• Revoke keys anytime

Scopes on your key control what it can do: messages:send, messages:read, groups:read, groups:write, sessions:read, sessions:write. Provisioning endpoints require sessions:write (included by default on new keys).

API Endpoints

Messages

Message history filtering — GET /api/v1/messages/history accepts these query params in addition to sessionId, limit, and offset:

• remoteJid — filter to a single contact or group JID (e.g. 14155551234@s.whatsapp.net or 120363...@g.us)
• startDate, endDate — ISO date strings, e.g. 2026-04-01T00:00:00Z
• search — case-insensitive substring search over message text (walks conversation, extendedTextMessage, media captions, button/list replies; recurses into ephemeral/view-once wrappers)

Each returned message now includes a flattened text field so you don't have to walk the raw Baileys shape yourself. Search runs against the current page — paginate with offset to search deeper.

curl "https://panel.wasndr.com/api/v1/messages/history?sessionId=SID&remoteJid=14155551234@s.whatsapp.net&search=invoice&limit=50" \
  -H "Authorization: Bearer wsndr_your_key"

Groups

API Accounts (Workspaces)

Sessions

Session status values: starting, qr_ready, reconnecting, connected, disconnected.

Utilities

API Key Management

MCP Server (AI Agent Integration)

The MCP server at https://panel.wasndr.com/mcp exposes WhatsApp capabilities as tools that AI agents can use directly.

Available MCP Tools

Messaging

• send_whatsapp_message — Send a text message
• send_whatsapp_media — Send an image, video, audio, or document
• send_group_message — Send a text message to a group
• send_group_media — Send media to a group
• send_poll — Create a poll
• check_whatsapp_number — Verify whether a phone number is on WhatsApp
• get_message_history — Read recent conversation history (supports remoteJid, startDate, endDate, search)

Groups

• list_groups — List all groups on a session
• get_group_info — Get metadata for one group
• get_group_participants — List a group's members
• export_group_members — Export the full member list
• create_group — Create a new group
• add_group_participants — Add members
• remove_group_participants — Remove members

API Accounts (Provisioning)

• create_api_account — Create a new API account (workspace) for a customer or tenant
• list_api_accounts — List your API accounts
• archive_api_account — Archive an account and free its session slots

Sessions & Account

• list_sessions — List sessions on the account and their connection status
• get_session_status — Check a single session's connection status
• get_usage — Current message usage for the billing period

Session creation, QR scanning, and session deletion are REST-only — an AI agent can create the account, but a human still needs to scan the QR from the REST GET /sessions/:id/qr endpoint to finish connecting a device.

Works With

• Claude Desktop / Claude Code
• Cursor IDE
• Any MCP-compatible AI agent or tool
• Custom applications using the MCP SDK

Plans & Pricing

Message history, group data, and attachment endpoints require the Standard plan or higher. Upgrade anytime from the API page in your dashboard.

Examples

Provision a New WhatsApp Account (Node.js)

End-to-end flow for onboarding a customer's WhatsApp number through your own app:

const API = 'https://panel.wasndr.com/api/v1';
const headers = {
  'Authorization': 'Bearer wsndr_your_key_here',
  'Content-Type': 'application/json',
};

// 1. Create an API account for this customer
const loc = await fetch(`${API}/locations`, {
  method: 'POST',
  headers,
  body: JSON.stringify({ name: 'Acme Corp' }),
}).then(r => r.json());

// 2. Create a session — this starts QR generation
const session = await fetch(`${API}/sessions`, {
  method: 'POST',
  headers,
  body: JSON.stringify({
    locationUuid: loc.data.locationUuid,
    name: 'Main Device',
  }),
}).then(r => r.json());

const sessionId = session.data.sessionId;

// 3. Poll for the QR, show it to the user, wait for scan
while (true) {
  const { data } = await fetch(`${API}/sessions/${sessionId}/qr`, { headers })
    .then(r => r.json());

  if (data.status === 'connected') {
    console.log('Connected!', data.phone);
    break;
  }
  if (data.qr) {
    // Render data.qr (a base64 PNG data URL) in your UI
    renderQrToUser(data.qr);
  }
  await new Promise(r => setTimeout(r, 2500));
}

Send a Text Message (Node.js)

const response = await fetch('https://panel.wasndr.com/api/v1/messages/send', {
  method: 'POST',
  headers: {
    'Authorization': 'Bearer wsndr_your_key_here',
    'Content-Type': 'application/json',
  },
  body: JSON.stringify({
    sessionId: 'your-session-id',
    phone: '14155551234',
    text: 'Hello from Node.js!',
  }),
});

const data = await response.json();
console.log(data);

Send Media

curl -X POST https://panel.wasndr.com/api/v1/messages/send-media \
  -H "Authorization: Bearer wsndr_your_key_here" \
  -H "Content-Type: application/json" \
  -d '{
    "sessionId": "your-session-id",
    "phone": "14155551234",
    "mediaUrl": "https://example.com/image.jpg",
    "caption": "Check this out!",
    "mediaType": "image"
  }'

List Your Sessions

Use this to find your session IDs:

curl https://panel.wasndr.com/api/v1/sessions \
  -H "Authorization: Bearer wsndr_your_key_here"

Returns your connected WhatsApp sessions with their IDs and connection status.

Need Help?

• Email: support@doublemyleads.com
• Dashboard: https://dashboard.doublemyleads.com