Skip to main content
Skip table of contents

3. Authorization

Access to API requires an authorization header specific to the transport, which includes flowSecretKey, siteAccessKey and siteUrl.

Timestamp is sent to prevent replay attacks, and request expires according to API server configuration (300 seconds).

Header Name: TransportMgrAuthHeader

Format: <siteUrl>|<siteAccessKey>|<flowSecretKey>|<UTC Time>

Header string should be encrypted with symmetric AES 128-bit encryption and encoded as Base64 string.

Contact thru support to receive an encryption key.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close