Authentication
Identification is performed by means of an HTTP header.
The used method is HTTP Basic Authentication.
In each HTTP request, the header must contain information allowing the merchant to authenticate via the SEPA Web Service.
Description of HTTP headers:
| Header | Description | Create a mandate | View mandate details | Download a mandate | Update a mandate |
|---|---|---|---|---|---|
| Accept | Determines the format of the content that will be returned by the server. REST architecture that allows to perform data exchange in JSON format | 'Accept:application/ json' | 'Accept:application/ json' | 'Accept:application/octet-stream' Note: In response to the http request, a binary response (pdf) is expected | 'Accept:application/ json' |
| Authorization | Contains the user authentication token. It is composed of:
This information is encoded in Base64. Note: The Site_id and Certificate values are available in your Back Office.
| Example of an authentication token encoded in Base64: "Basic MTIzNDU2Nzg6OTk 5OTk5OTk5OTk5O Tk5OQ== | Example of an authentication token encoded in Base64: "Basic MTIzNDU2Nzg6OTk 5OTk5OTk5OTk5O Tk5OQ== | Example of an authentication token encoded in Base64: "Basic MTIzNDU2Nzg6OTk 5OTk5OTk5OTk5O Tk5OQ== | Example of an authentication token encoded in Base64: "Basic MTIzNDU2Nzg6OTk 5OTk5OTk5OTk5O Tk5OQ== |
| Content-type | Determines the format of the content sent to the server. | 'content-type:application/json' | 'content-type:application/json' | 'content-type:application/json' | 'content-type:application/json' |
Here are the steps for building a header:
- Use the Basic Authentication method.
- Specify the used method in the Authorization header: Basic followed by the Base64 representation of the Site_id and Certificate values separated by the “:” character.
- Encode the obtained result in Base64.
- Add the result to the chain in “Basic”.Note:Make sure to use a space character after Basic.