Authentication and Digital Signature
Upon onboarding a Financial Institution (FI) onto the XD Payments platform, an IT admin user is created and granted appropriate permissions, who will then receive the login credentials in email. Using the credentials, the IT admin user can login to XD Payments portal URL received in the email and generate API user credentials along with the necessary key pair for Digital Signature.
Authentication
- The API requests should include an authorization header based on the API user credentials. note
Please refer the 'Headers' section for respective API definitions
Digital Signature
The API requests should include keyID, algorithm and signature header with the signature by FIs core using the private key.
notePlease refer to the 'Headers' section for respective API definitions
Here,
keyIDshould be deviceID (shared at the time of API user creation), and algorithm should be alwaysecdsa-sha256