Authentification Keys

Auth is using two service titles:

X-Rewind-Api

X-Rewind-Signature

X-Rewind-Api is sent in open state, same as it was received from our end.

X-Rewind-Signature is used for sending the signature that is generated based on the message body.

All calls to the server must be signed with HMAC SHA256 and populated as service field. Every request must be populated with appropriate service fields.

Keys below as example:

Api key: AaaAaaAaaAaaAaa
Secret key: BbbBbbBbbBbb

The body of the message:

{"eventId":"769f0af6-adae-41c1-b512-9dfbe3a7c27c","resourceId":"MyTheBestGame","userId":"977cea0f-c42d-4029-97c3-652496998014","amount":751.99}

Before calculation signature remove all spaces between the fields

Correct signature of the message:

78c0fdf21c74aba0dc11d0c614da44f68fad0bf30c7d7df5c0f97f0316626129

This example may be used for testing of your signature algorithm:

PreviousWelcome NextSet user address

Last updated 3 years ago