Authenticate Request

Every request is authenticated via verifying signature, payload and apiKey.

Note: Add apiKey, signature and payload in every request header.

Sample header to add API key, Signature and Payload

const headers = {
      'apikey': apiKey,
      'payload': payload,
      'signature': signature,
    };

Generate Payload and Signature

const CryptoJS = require('crypto-js');

async function generatePayloadAndSignature(secret, body) {
  const timestamp = Date.now().toString();
  const obj = {
    body,
    timestamp
  };
  const payload = CryptoJS.enc.Base64.stringify(CryptoJS.enc.Utf8.parse(JSON.stringify(obj)));
  const signature = CryptoJS.enc.Hex.stringify(CryptoJS.HmacSHA512(payload, secret));
  return { payload, signature };
}

Postman Pre request Script

const apiKey = "" 
const secret = "" 
let body;
if(pm.request.body.urlencoded){
    body = pm.request.body.urlencoded.reduce((data, param) => {
    data[param.key] = param.value;
    return data;
    }, {});   
}
else if(pm.request.body.formdata){
    body = pm.request.body.formdata.reduce((data, param) => {
    data[param.key] = param.value;
    return data;
    }, {});
}
else{
    body = {}
}
const timestamp = Date.now().toString()
const obj = {
    body,
    timestamp
}

let payload = CryptoJS.enc.Base64.stringify(CryptoJS.enc.Utf8.parse(JSON.stringify(obj)));
let signature = CryptoJS.enc.Hex.stringify(CryptoJS.HmacSHA512(payload, secret));

pm.request.headers.add({ 
    key: "apiKey", 
    value: apiKey 
}); 

pm.request.headers.add({ 
    key: "payload", 
    value: payload 
}); 
 
pm.request.headers.add({ 
    key: "signature", 
    value: signature 
});

AUTHENTICATION ERROR CODE

Error Codes

Error Message

429

Too many requests!

500

Internal server error.

401

Invalid Signature

401

Missing necessary header data

401

Invalid api key

401

Missing timestamp in payload

401

Missing body in payload

401

Timestamp expired

401

Ahead of time

401

Body and Payload mismatch

NextSandbox Environment