Introduction
The document provides partners with technical connection information to the card purchase portal
Integrated information
Connection information
- PARTNER CODE: Partner code provided by AppotaPay.
- API KEY: Used to connect to API.
- SECRET KEY: Used to create and authenticate digital signatures.
Information Partner send to AppotaPay
- RSA_PUBLIC_KEY
Connection environment
| Environment | Domain |
|---|---|
| Production | https://gateway.appotapay.com |
| Dev | https://gateway.dev.appotapay.com |
Authentication method
- AppotaPay's APIs are authenticated based on JWT (Json Web Token) code included in the Header of each query (How to generate JWT code see Appendix)
- Parameters passed to the AppotaPay API are authenticated based on the signature code attached when calling the API (How to generate the signature code see the Appendix)
- The partner side needs to send the connection IP to the APIs to be whitelisted
- Return token is encrypted by RSA algorithm with Public key