Digital signature hashing algorithm 

Partner need to use digital signature to connect to gloTransfer API. Digital signature schemes can be used for Partner authentication and non-repudiation. Partner who wants to send an API request will need to generate a digital signature and sends along the digital signature with other parameters to the relevant API method. 

The digital signature will be hashed using MD5 message digest hashing algorithm. Partner will received a Security Key from Tranglo and the Security Key will be concatenated together with other parameter’s value to become a single line string message to form the digital signature. 

Hashing Instruction and Notes 

  1. Partner will be given a security key that will be used to do MD5 hashing to form the digital signature. Please keep the security key safe and do not expose it. 
  2. Each API method will be using different formula to concatenate the parameter’s value and the Security Key together to form as a single line string. The formula for each of the API method is described on section below. 
  3. Once the concatenated string is formed, it will be hashed using MD5 algorithm to generate the digital signature. 
  4. The generated digital signature will be inputted to the parameter “Credentials.Signature” for every API method for API authentication. 

Hashing Formula 

Table below shows how to concatenate the specific parameter’s value and together with the given Security Key to form the single line string. When concatenate each of the parameter’s value together, you do not need to add additional space, comma (,), line break and etc. in between the parameters’ value. 

API Method Formula 
Country_Enquiry DealerTransactionID + Credentials.UID + Security Key 
Operator_Enquiry DealerTransactionID + Country + Credentials.UID + Security Key 
FixedDenom_Enquiry DealerTransactionID + OperatorCode + Credentials.UID + Security Key 
FlexiDenom_Enquiry DealerTransactionID + OperatorCode + Credentials.UID + Security Key 
Product_Price_Enquiry DealerTransactionID + OperatorCode + ProductDenomination + 
Credentials.UID + Security Key
Product_Enquiry DealerTransactionID + MSISDN + Credentials.UID + Security Key 
Request_Reload DealerTransactionID + SourceNo + DestNo + OperatorCode + Denomination + 
Credentials.UID + Security Key
Request_ReloadSync DealerTransactionID + SourceNo + DestNo + OperatorCode + Denomination + 
Credentials.UID + Security Key
Transaction_Enquiry DealerTransactionID + TrangloTransactionID + Credentials.UID + Security Key 
Transaction_Enquiry_Details DealerTransactionID + TrangloTransactionID + Credentials.UID + Security Key 
EWallet_Enquiry DealerTransactionID + Credentials.UID + Security Key 

Sample Digital Signature for Reference 

Partner can refer to below sample generated Digital Signature as reference and result comparison. 

API Method Formula Generate Digital Signature 
Country_Enquiry DealerTransactionID + Credentials.UID + Security Key

Where:
DealerTransactionID = 12345678
Credentials.UID = partner_api
Security Key = 4L_3sf!GMhKM

Concatenated String = 12345678
partner_api4L_3sf!GMhKM 
9abb7e0b82d0ff93b1326e
f179ee47f8 
Operator_Enquiry DealerTransactionID + Country + Credentials.UID + Security Key

Where:
DealerTransactionID = 987654321
Country = Philippines
Credentials.UID = partner_api
Security Key = 4L_3sf!GMhKM

Concatenated String =
987654321Philippinespartner_
api4L_3sf!GMhKM 
38e3ddd121cc501d763607b8
ceea9396