Discussions
401 Unauthorized
Hi
I'm trying to create a payment in sandbox environment using python and aws, I've checked both hash and sign with online tools and also seems ok, but when I call the service it responds with a 401 unauthorized.
This is the postman stack trace:
POST https://staging.authservices.satispay.com/wally-services/protocol/tests/signature
401
233 ms
POST /wally-services/protocol/tests/signature HTTP/1.1
Content-Type: application/json
Date: Wed, 01 Sep 2021 14:19:14
Digest: SHA256=U1ar6gIJcTdkxjghvGXWUzd7MsrQnkoFt4hnHxmSHSI=
Authorization: Signature keyId='edurbegl102ttn3dob45gogeeb0oggiqg5ocaol8hrbjmngetllha68al7us7tq3cq9v26tdt7p1gdl359l68mv9ufr4n9b3e0d0on94ims4rercq9brfqf7m8vnqje08j42hgmi5h7tkkr0g1sqsrnsq2itbarrjo9gdgl2u5vjr3vn7n97mkiahe6kr2bur8ghqdri', algorithm='rsa-sha256', headers='(request-target) host date digest', signature='BPGOrQCHogBxFYTQIDO/Z9+5h+HaZh/v0gjf9njKVUBN56DWQjv9kjnKDC1iW5lgNMR6QjkoUgwFiWUktDsnbwZVwybLRWtCKxoqv3ivaghdQc50ZykpgTjPG16L1WSCp5scXTSVpWgwC8oxyUB4iy+KO3KxWjps/DqKuL/Hflie23yo5TtwHq2HhMLY7G4QQy+sPSggfqd6RQ0iQUns1WGX8+YZcjb1rpqUmNEHC0ArwJZXjiKMguU4VoFvfnPKKiXyQrpEwvw4ESG3nN/qZStXkB45FouRlOw2UxHQ+voDleclQ7duL+f5eS3Y7GNbxaFQgYwcBu5nB40cG3PQ9UXz99tTSrQZE7wcrFtFvtBfxukU31GXoWbNFFVClWMmKM+bJ6pBTqWKVGBGYvP5QjXJvOjNGSgKA65JwI6vUEy0OIMJqeHxTlofx1jWHgfUuW29nwMTl3+bcVR5/wQHFde7D9glPAqc7L8u195iydXslWk2+2cx4PyS1JSLXnuK/3o6qSSn59tEto3loT2rVdJxGrFpb4+R+nkCphplMbYkwkOSVfvQyIGvcYoMpjuQ0+H752eVcTE2WVcJ/xD0ITgx8nU2vC7foYwuEH1KDefwwfBLms+Lal+ok+NP1LbBQfIn0J3kuC3WaOGy0Rh0IiRkKT8uXperphJZtUvaBO8='
Host: staging.authservices.satispay.com
User-Agent: PostmanRuntime/7.28.4
Accept: /
Cache-Control: no-cache
Postman-Token: 612408c1-2940-40e9-ae1b-d255dcb146ad
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Content-Length: 129
{
"flow": "MATCH_CODE",
"amount_unit": 100,
"currency": "EUR",
"external_code": "as",
"callback_url": "asd"
}
HTTP/1.1 401 Unauthorized
Date: Wed, 01 Sep 2021 14:28:56 GMT
Server: Apache
x-satispay-nch-MEDn: 0lVIzKABFz
x-satispay-cid: t53nZdC9
Digest: SHA-512=vgHHCYCyUeMr9ZNgzdip+k8zq4/15ztPcVvQ3nruiInSTd7k/uU5W9omqILMOgwP1ClwQvKAFcnUzStSytiobw==
Content-Type: application/json
Content-Length: 53
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
{"code":34,"message":"Unauthorized","wlt":"t53nZdC9"}
Any suggestion?