diff --git a/htdocs/application/config/stikked.php.dist b/htdocs/application/config/stikked.php.dist
index 347ef3a..c6b3ebb 100644
--- a/htdocs/application/config/stikked.php.dist
+++ b/htdocs/application/config/stikked.php.dist
@@ -178,6 +178,19 @@ $config['per_page'] = 15;
 **/
 $config['apikey'] = '';
 
+/**
+ * Soft API
+ *
+ * When set to true, allow interaction:
+ *   without apikey: badword-check applies
+ *   with apikey: badwords are ignored
+ *
+ * this is useful to maintain a restrictive blocklist
+ * for spammers and bypass it using the apikey.
+ *
+**/
+$config['soft_api'] = false;
+
 /**
  * Anti spam
  *
diff --git a/htdocs/application/controllers/Api.php b/htdocs/application/controllers/Api.php
index 990725f..69475d8 100644
--- a/htdocs/application/controllers/Api.php
+++ b/htdocs/application/controllers/Api.php
@@ -39,7 +39,10 @@ class Api extends Main
 	
 	function create() 
 	{
-		
+
+		// if config soft_api is set, allow interaction:
+		// without api_key: use blockwords
+		// with api_key: pass blockwords
 		if (config_item('apikey') != $this->input->get('apikey')) 
 		{
 			die("Invalid API key\n");