Encryption

Callback Encryption

Merchant can Authenticate the response sent to them regarding the status of the transaction on the callback url. It can be configured in Application settings. Along with the callback request body a hash message will be included. The hash message is included in the request headers under the key 'signature'. User can hash the the callback request with the private key shared using HmacSHA256 algorithm, with output text format in Base64 and can match with it hash message sent if Callback authentication is enabled.

SHA256 with RSA signature is an efficient asymmetric encryption method used in many secure APIs. This algorithm first calculates a unique hash of the input data using SHA256 algorithm. The hash is then encrypted with a private key using the RSA algorithm.