API Overview

Getting Started with REST Developer Guide
- Recent Revisions to This Document

Overview of REST

Set Up Your National Australia Bank Account

Set Up an HTTP Signature Message
- Sign Up for a Sandbox Account
- Shared Secret Key Pair
  - Create a Shared Secret Key Pair
  - Test the Shared Secret Key Pair
  - Test Endpoints
- Construct Messages Using HTTP Signature Security
  - Elements of an HTTP Message
  - Generate a Hash of the Message Body
  - Generate the Signature Hash
  - Update Header Fields
- Going Live
  - Create a Merchant ID
  - Activate your Merchant ID
  - Production Endpoints

On This Page

Construct Messages Using HTTP Signature Security

HTTP signatures use a digital signature to enable the receiver to validate the sender's authenticity and ensure that the message was not tampered with during transit. For more information about HTTP signatures, see the IETF Draft that is maintained by the IETF HTTP Working Group (https://httpwg.org).

Follow these steps to implement HTTP signatures:

Create the shared secret key pair. See Create a Shared Secret Key Pair.

Generate a hash of the message body. See Generate a Hash of the Message Body.

Generate a signature hash. See Generate the Signature Hash.

Populate the

signature

header field. See Update Header Fields.

Back to top