xtract.bot

POST /api/image-face-crop3 quota units per call · cache hits free

Detect a face in a photo and return a tight rectangular crop centred on the face. Useful for avatar generation from full-body photos.

Detects a face in the input photo and returns a tight crop centred on it. Configurable padding around the face. Uses a deep-learning face detector (more reliable than classic Haar cascades, especially for non-frontal faces and partially-occluded faces). Useful for generating avatar / profile-picture crops from full-body or group photos.

Inputs

NameTypeDefaultDescription
image*fileSource image bytes.
paddingnumber (0…2)0.4Padding around the face bounding box, as a fraction of face size. 0 = tight; 0.4 = comfortable avatar.
aspectstring"square"Output aspect ratio. "square" (default), "original" (preserve face box), or a numeric ratio like "4:5".
outWidthnumber (0…4096)0Resize the crop to this width (height derived from aspect). 0 = keep crop's native size.
formatenum (jpeg | png)"jpeg"Output encoding.
qualitynumber (1…100)90JPEG quality (ignored for PNG).
scoreThresholdnumber (0…1)0.6confidence threshold for accepting a face.

Response

Modes: binary, stream, json. Cache: yes (24h TTL).

Large outputs stream: responses over the 4 MiB cache limit are piped through as they are produced instead of buffered. They carry x-cache-skip: size and are never cached — identical follow-up calls recompute.

Every response carries x-cache (HIT / MISS / BYPASS), x-cache-signature (stable across identical inputs), and the rate-limit headers listed below.

Quota & limits

Cost per call3 units against the 10,000-unit monthly quota. Cache hits are free — only cache misses decrement.
Burst limit200 requests per rolling minute, shared across all tools.
Max request size25 MiB (base64 inflates file payloads ~33% — the limit applies to the decoded bytes).
Max response size25 MiB
Timeout30s wall clock.
Rate-limit headersX-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Burst-Limit on every response; X-Quota-Warning once 80% of the monthly quota is spent; Retry-After on 429s.

Errors

Errors are JSON with an error string; schema failures add a details object (Zod's flattened field errors).

StatusWhenBody
400Input fails the tool's schema (wrong type, missing required field, malformed base64) or the file bytes can't be parsed as the expected format.{ "error": "invalid inputs", "details": { "fieldErrors": { … } } }
401Missing or invalid X-Api-Key / X-Account-Id headers (or no session when called from the browser).{ "error": "unauthorized" }
404Unknown tool id, or calling /api/* on the website hostname instead of api.xtract.bot.{ "error": "not found" }
413Request body over the tool's max request size, or an image header declaring more megapixels than the tool's pixel budget.{ "error": "…exceeds maxRequestBytes…" }
415Content-Type isn't application/json on the json-body transport.{ "error": "unsupported content-type; expected application/json" }
429Monthly quota or the 200/min burst limit exhausted. Check Retry-After and the X-RateLimit-* headers.{ "error": "monthly quota exceeded", "monthRemaining": 0, … }
5xxConversion engine failure. Safe to retry; if it persists, the input is hitting a bug — please report it.{ "error": "…" }

Code samples

Built from the default example.

# Download or substitute the example input:
#   curl -O https://xtract.bot/examples/face-fixtures/face-small.png
IMAGE=$(base64 -w0 < face-small.png)

curl -X POST https://api.xtract.bot/api/image-face-crop \
  -H "Content-Type: application/json" \
  -H "Accept: application/octet-stream" \
  -H "X-Account-Id: $XTRACT_ACCOUNT_ID" \
  -H "X-Api-Key: $XTRACT_API_KEY" \
  -d '{
  "image": "'"$IMAGE"'"
}'