On This Page
Construct Messages Using HTTP Signature Security
HTTP signatures use a digital signature to enable the receiver to validate the sender's
authenticity and ensure that the message was not tampered with during transit. For more
information about HTTP signatures, see the IETF Draft that is maintained by the IETF
HTTP Working Group (https://httpwg.org).
Follow these steps to implement HTTP signatures:
- Create the shared secret key pair. See Create a Shared Secret Key Pair.
- Generate a hash of the message body. See Generate a Hash of the Message Body.
- Generate a signature hash. See Generate the Signature Hash.
- Populate thesignatureheader field. See Update Header Fields.