With POST requests, you can give a request id alongside your request. If you post a request two times with the same request id, the second time it will the return the response of the first request instead of recreating the resource.
It is useful when the connection broke and you did not receive the response, but your request has been proceed.
The header is named X-RequestId
The request ID is mandatory to retrieve a card afterwards. We strongly advise you to implement it, otherwise we will not be held responsible for any lost cards.
Request Signature
To ensure your are the caller of our APIs, we need you to sign your request.
1. Build the token
TOKEN=HTTP_VERB+URL+STRING_PAYLOAD+TIMESTAMP
Variables
Value
HTTP_VERB
GET | POST
URL
{DOMAIN}/path
STRING_PAYLOAD
Is optional if your request is a GET. This is your JSON payload, sorted by keys, and with lowercase characters.
TIMESTAMP
UTC timestamp in seconds
Don't forget to sort the keys in your payload in alphabetical order !
When openssl is processing your key, the hexkey tells it that your key must be converted in hexadecimal. In your code there wont be such option so you must convert your key before giving it to the hash function. Here are two examples: