Create a Shared Secret Key Pair

Key pairs are used with HTTP Signature message security.

Create a Shared Secret Key Pair

Follow these steps to create a shared secret key pair.
  1. Log in to the
    Business Center
    :
  2. On the left navigation panel, navigate to
    Payment Configuration > Key Management
    .
  3. Click
    + Generate key
    .
  4. Under REST APIs, select
    REST – Shared Secret
    and then click
    Generate key
    .
    The REST API Shared Secret Key page appears.
  5. Click
    Download key
    .
    The .pem file is downloaded to your desktop.
When you generate one or more keys, you can view the keys on the Key Management page.

Test the Shared Secret Key Pair

After creating your key certificate, you must test and verify that your key can successfully process API requests. These tasks explain how to test and validate your key certificate using the developer center and the
Business Center
.
  2. On the left navigation panel, click .
  3. Under Authentication and Sandbox Credentials, set the Authentication Type drop-down menu to HTTP Signature.
  4. Enter your organization ID in the Organization ID field.
  5. Enter your key, also known as your private key, in the Key field.
  6. Enter your secret key, also known as your public key, in the Shared Secret Key field.
  7. Click
    Update Credentials
    .

    Figure:

    Authenticate Key and Shared Secret Key
  8. On the developer center's left navigation panel, navigate to
    Payments >
    POST
    Process a Payment
    .
  9. Under Request: Live Console click
    Send
    .
    A message displays confirming that your request was successful with the status code 201.
  10. Log in to the
    Business Center
    :
  11. On the left navigation panel, navigate to
    Transaction Management > Transactions
    .
  12. Under Search Results, verify that the request ID from the test authorization response is listed in the Request ID column.
    If the test authorization was successful, a success message is present in the corresponding Applications column.

Test Endpoints

When testing an API outside of the Developer Center's API Reference sandbox, send your test API request messages to the test server:
https://apitest.cybersource.com
For example, to test an authorization request, you can send the request to this endpoint:
https://apitest.cybersource.com
/pts/v2/payments