Guides
Start typing to search…

Create Signature

Signature on an API endpoint is an authentication method used to verify the identity and integrity of requests sent to the API. Signature is usually created using cryptographic algorithms, such as HMAC (Hash-based Message Authentication Code) or RSA, which generate a unique hash value based on a combination of several elements.

In Qoin Service, the signature format is created using RSA containing the data:

  • Body Payload
  • TicketId (result generated from the Request In endpoint)

Here is how to create a Signature for the Provider :

  1. Compose the string to sign:
payloadBytes = dari encode json payload  
TicketId = auto generate dari Request In
  1. Create Signature With RSA_SHA512.
Signature = RSA_SHA512 (payloadBytes + TicketId)
  1. Put the signature string into HTTP Header request.

Example :

  • Payload data :
{  
    "Address": "Gambir", --------------------  
    "City": "Jakarta Pusat",                | -> _payloadBytes_  
    "Fullname": "Sample Data POST",         |  
    "Province": "DKI Jakarta",  -------------  
    "TicketId": "3138392d31-4762d125-748d-4cfb-bfba-caee65371557" -> _TicketId_  
}

  • RSA_SHA512 (payloadBytes + TicketId)
  • Result :
"jOQdLCe740Iei9SJhpTEDjNU2VMt5yweXvyh4HYFkE7nHKa2LkFcDVfuUyeM9uaQtnQWj9Rp45cE4VirPRCQRWeLzqggbfeNtAICctjpKT7HkQjiUSyqFHzOsSC7YGMcNwZ4h2uvwlKnX6NUGsAOYqrMWdDuoprgsi/zM6kkwe1pZIEIffgYzv2ZwSZJRgOe84v2fAduQFKn0xudUhsiEv5Q2JX/wvN/SM/x2rKVdwKUaR6rFEmVDDkt+C/SXbYBBy/ua/J/gu1V5CzKZoqO/svz4DXJFcC7C/l6VUDfoA9Z4xyokJl/dkXWUDBIvProCMTlzfgqDcDpvta3mPucXA=="

Updated about 1 month ago