OPay API Signature

Signature authentication ensures the highest level of security for your payment creation requests. Not only does it provide a secure authentication mechanism, but also it ensures the integrity of your request payload, that is the content of your request payload has not been altered since it was transmitted from your side. OPay signatures are calculated using HMAC-SH512 applied to payload and signed with your secret key.

Your public key should be used for authorization header of the following API calls:

API Signature Calculator

The authorization header of API requests that require signature authentication should contain your HMAC-SHA512 signature of your payload signed using your private key.

Your request header must contain Authorization, MerchantId and RequestTimestamp key-value pair, when you call Opay v2 API

                   
                       Authorization   : {signature}
                       MerchantId      : 256612345678901
                       RequestTimestamp: 1633246096

The following section helps you generate a signature from the HMAC computation of the private key and request payload.

Merchant ID

OPay merchant id

Request Timestamp

UNIX second timestamp

Private Key

OPay Private Key

Request Body http request body

Generate

The content to be signed RequestBody={RequestBody}&RequestTimestamp={RequestTimestamp}

Generated Signature

HMAC-SHA512({The content above})

Request Http Headers

OPay API Signature

API Signature Calculator

Generate

See Also

Callback Notifications

End-to-End Testing

User Profile 12 messages

Recent Notifications

System Messages

Notifications

Customer Care

Reports

Memebers