Authentication

All endpoints require header X-Token - HMAC-SHA256 signature of the request body.

How to sign request

Get the raw request body (before parsing the JSON)

Calculate the HMAC-SHA256 signature of the body using your secret_key

Send it as X-Token header