Authentication
Headers
X-API-Key
Include the "X-API-Key" header in your API requests, and ensure it contains your API key.
X-API-Sign
Authenticated requests must be signed using the "X-API-Sign" header. The signature is generated with your private key, encoded payload, and the request method, following the HMAC-SHA512 algorithm:
Generating the signature
Signature Calculation Example:
For a POST request, you might calculate the signature as follows:
Request Method: POST
POST data: SHA256 hash of the JSON payload. Example of payload: "{"name":"John"}"
Concatenate the Request Method and SHA256 hash. Example: "POST" + "{"name":"John"}"
HMAC-SHA512: Apply HMAC-SHA512 using the concatenated string and the base64-decoded API Key secret
Code examples
Last updated