Skip to main content
Published: March 29 2009, 6:56:00 PMUpdated: November 28 2020, 5:23:34 PM

Basic Authentication Process

Summary

 To authenticate requests sent from eBay OEF using an HMAC-SHA request signature,  the recipient needs to perform the following tasks:

  1. uses Public Key and digital msg to verify that the digital signature is signed and sent by eBay

  2. calculates the message digest from the request data and the CertID using the same algorithm described to calculate the signature eBay OEF sent in the request

 3. decrypts the encrypted User Auth Information if the generated the message digest  matches the one eBay OEF sent in the request,

   The following are SHA-1 Digest Verification code samples for most used development environments in ebay developer community

NOTE. For Sun JDK Developer, you need to first concatenate the multiple lines public key  into one long line before your verification code can process the public key.

   Development Language    Signature  Verifier  Decrypter
      PHP    SignatureVerification.php   StandardDecrypter.php
      C#    SignautureVerification.cs   StandardDecrypter.cs
      JAVA    SignatureVerification.java   StandardDecrypter.java
     .PERL    SignatureVerification.pm   StandardDecrypter.pm


Additional Information

Documentation:  Authentication and Processing Requests from eBay

How well did this answer your question?
Answers others found helpful