GetSignedBeta
Request beta
Guide · Integration

E-signature API vs SDK

A REST API works in any language with no added dependency. An SDK wraps the API in typed, language-native methods. For most e-signature integrations the API is the better choice — here is why.

The short answer

An e-signature integration is small — typically three endpoints: create envelope, send, handle webhook. That is not enough complexity to justify a third-party SDK dependency in a production system. Use the REST API directly; use an SDK only if you want typed autocomplete while prototyping.

REST API vs SDK — comparison

REST API (direct)SDK
DependenciesZero — uses your language's built-in HTTP clientAdds the SDK package and its transitive dependencies
Languages supportedAny language that can make HTTP requestsOnly languages the vendor has built an SDK for
Upgrade frictionNone — API is versioned; you control the integrationSDK updates may break your code; dependency to maintain
DebuggabilityInspect raw HTTP request/response — easy to diagnoseAbstraction layer can obscure what's actually sent
BoilerplateYou write auth, serialization, error parsing yourselfSDK handles auth tokens, retries, typed error classes
Time to first requestSlightly more setup — one auth call + one POSTFaster start: import, configure, call a typed method
Best forAny production system; teams that want minimal dependenciesRapid prototyping or teams unfamiliar with the raw API

Use the REST API if…

  • You are building a production integration — zero added dependencies.
  • Your language lacks an official SDK.
  • You want every request to be inspectable and auditable.
  • You care about minimizing your supply-chain risk surface.
  • You want full control over auth token lifecycle and retry behavior.

Use the SDK if…

  • You are prototyping and want typed autocomplete in your IDE.
  • Your team is less familiar with raw HTTP/multipart patterns.
  • You want built-in retry logic and typed error classes out of the box.
  • Your company already vets and pins third-party dependencies systematically.

Frequently asked questions

What is the difference between an e-signature API and an SDK?

An e-signature REST API is an HTTP interface your application calls directly — POST a PDF to create an envelope, GET to check status, receive webhooks on completion. An SDK (Software Development Kit) is a language-specific library that wraps the API, providing typed methods, token management, and error handling so you write less boilerplate. Both do the same thing; the SDK is a convenience layer on top of the API.

Do I need an SDK to use GetSigned?

No. GetSigned is a plain REST API — any language with an HTTP client can integrate fully without an SDK. The Node.js, Python, PHP, Go, and Ruby guides on this site all use the standard library or a minimal HTTP client with zero e-signature-specific dependencies. An official SDK is available as an optional convenience.

When is it better to use the REST API directly rather than an SDK?

Use the REST API directly when: you want zero additional dependencies in your codebase; you work in a language without an official SDK; you want full visibility into every request your system makes; or you are building a microservice where dependency minimalism matters. Direct API calls are also easier to audit and test — the requests are plain HTTP, inspectable with any proxy or logging tool.

When does using an SDK make sense?

An SDK makes sense when you want typed method signatures and autocomplete in your IDE rather than constructing JSON payloads by hand; when you want built-in retry logic and error class hierarchies; or when you are prototyping quickly and want to reach a working demo faster. For a production integration, the REST API is equally capable and adds no runtime dependency.

Are e-signature SDKs a security risk?

Not inherently, but any third-party dependency is a supply-chain risk surface. Each SDK dependency you add is code you did not write, maintained by a third party, and potentially subject to vulnerabilities. For a small, stable integration (create envelope, send, handle webhook — three endpoints), the argument for pulling in an SDK is weaker than for a large, complex API. If you use an SDK, pin the version and audit updates before upgrading.

Language guides: Node.js · Python · PHP · Go · Ruby

Start with the REST API — free forever

Get free API keys →