This topic contains 4 replies, has 2 voices, and was last updated by  Duo_Liang 1 week, 3 days ago.

  • Author
    Posts
  • Participant
    divakar-loganathan
    Member
    Member since: 10.07.2018
    Number of posts: 16

    Hello,
    I’m working on integrating the Callback feature with the current application.
    I’m using a Callback key in addition to the Callback URL, I have a doubt regarding the POST sent by the Esignlive after the occurrences of the events that are registered for.

    Is the callback key, I mentioned sent as the Authorization header in the POST ?
    Or if is it sent as any other header ? if so could you please explain what header it comes in as?

    Thank you very much in advance.

    Best Regards,
    Logan

    Keymaster
    Duo_Liang
    Guru
    Member since: 14.06.2018
    Number of posts: 828
    Approved answer

    Score

    0

    Hey Logan,

    Your first assumption was correct that the callback key you registered is passed through the Authorization header as “Basic {callbackKey}” to make sure you’re receiving notifications that contain the shared secret, so you know you’re not getting spoof calls and can react accordingly.

    You can also refer to our Create a Callback Event Notification Listener guide where you can find more examples in action showcasing the suggested steps to handle the callback calls.

    Duo


    Duo Liang
    OneSpan Junior Technical Evangelist
    • This reply was modified 1 week, 3 days ago by  Duo_Liang.
    Participant
    divakar-loganathan
    Member
    Member since: 10.07.2018
    Number of posts: 16

    Score

    0

    Thanks for you swift response as always, Duo 🙂

    Participant
    divakar-loganathan
    Member
    Member since: 10.07.2018
    Number of posts: 16

    Score

    0

    So, Kindly let me know if my assumption is correct,

    Say for example I use the callback key as “xyzABC123”

    Then in the POST sent from ESL, I will have the
    Authorization: Basic xyzABC123

    Just wanted to confirm, Thanks in advance Duo 🙂

    Best Regards,
    Logan

    Keymaster
    Duo_Liang
    Guru
    Member since: 14.06.2018
    Number of posts: 828

    Score

    0

    Hey Logan,

    Yes, your callback key will be included in request header in plain text. 🙂

    Duo


    Duo Liang
    OneSpan Junior Technical Evangelist

You must be logged in to reply to this topic.