Request Signature

A Request Signature is used to verify the identity of the Application Key and is generated as a HMAC of the URL Resource Path (Including alphabetically sorted query parameters) using the Shared Secret.

  • Request Signature. Generated using SHA-256 to HASH the String-to-Sign using the Shared Secret as the HMAC Key.
  • String-to-Sign. HTTP Verb + " " + Resource URL (include Query String in alphabetical order) + " " + Application Key.
  • Request Signature. SHA-256(String-to-Sign, SharedSecret).