Recent Revisions to This Document

About This Guide

VISA Platform Connect: Specifications and Conditions for Resellers/Partners

Introduction to REST
- Secure Communication Requirements
- REST Set-Up Workflow

Signing Up for a Sandbox Account

Obtaining a PKCS12 Certificate
- Creating a PKCS12 File
- Testing the Shared Secret Key Pair
- Extracting the Private Key from the PKCS12 Certificate

Obtaining a Shared Secret Key Pair
- Creating a Shared Secret Key Pair
- Testing the Shared Secret Key Pair

Constructing Messages Using JSON Web Tokens
- Elements of a JSON Web Token Message
- Generating a Hash of the Message Body
- Generating a Hash of the Claim Set
- Generating a Hash of the Token Header
- Generating a Token Signature
- Generating a JSON Web Token

Constructing Messages Using HTTP Signature Security
- Elements of an HTTP Message
- Generating a Hash of the Message Body
- Generating the Signature Hash
- Updating Header Fields

Enabling Message-Level Encryption
- Message-Level Encryption Using JSON Web Tokens
- Message-Level Encryption Using HTTP Signature Authentication

Going Live
- Creating a Merchant ID
- Activating your Merchant ID

On This Page

REST API

Extracting the Private Key from the PKCS12 Certificate

When you have your PKCS12 certificate, extract the private key from the certificate. Use this key to sign your header at a later time.

Prerequisite

You must have a tool such as OpenSSL installed on your system.

Extracting the Private Key

Follow these steps to extract the private key using OpenSSL:

Open the command-line tool and navigate to the directory that contains the PKCS12 certificate.

Enter this command:

openssl pkcs12 -in [certificate name] -nodes -nocerts -out [private key name]

Enter the passcode for the certificate. The passcode is the organization ID for the account.

The new certificate will be added to the directory using the private key name you supplied in Step 2.