Ctrlk
Sign up for free

Authentication

Use the login method for the authentication process in the 2Checkout system.

Parameters

Parameter
Type / Description

merchantCode

Required (string) Your merchant identification code.

date

Required (string) GMT ISO Date format (e.g. 2010-01-01 12:13:14)

hash

Required (string) Calculated HMAC_SHA256 signature based on merchantCode and date, using your secret key.

Request parameters

To create the HMAC_SHA256 source string use your merchant code and the date of the request, prefixing them with the length in bytes of each respective value, along with your account’s secret key (for UTF-8 characters the length in bytes might be longer than the string length).

For example:

Parameter
Type / Description

merchantCode

Your merchant account code. 8AVANGATE

date

2010-05-13 12:12:12 192010-05-13 12:12:12

HMAC source string

8AVANGATE192010-05-13 12:12:12

Secret key

SECRET_KEY

Calculated HMAC_SHA256 signature based on MerchantCode and Date, using your secret key:

bf763db7d333e9c3038698cf59ada3e6

Request sample

<?php

$host   = "https://api.2checkout.com";

$merchantCode = "YOURCODE123";
//your account's merchant code available in the 'System settings' area of the cPanel:
//https://secure.2checkout.com/cpanel/account_settings.php

$key          = "SECRET_KEY";
//your account's secret key available in the 'System settings' area of the cPanel:
//https://secure.2checkout.com/cpanel/account_settings.php

$now          = gmdate('Y-m-d H:i:s'); //GMT date format)
$algo = "sha256";
$string = strlen($merchantCode) . $merchantCode . strlen($now) . $now;
$hash = hash_hmac($algo, $string, $key);

try {
    $client = new SoapClient($host . "/soap/6.0/?wsdl", array(
        'location' => $host . "/soap/6.0/",
        "stream_context" => stream_context_create(array(
            'ssl' => array(
                'verify_peer' => false,
                'verify_peer_name' => false
            )
        ))
    ));
    $sessionID = $client->login($merchantCode, $now, $hash, $algo);
    echo("Auth token: {$sessionID}" . PHP_EOL);
}
catch (SoapFault $e) {
    echo "Authentication: " . $e->getMessage() . PHP_EOL;
    exit;
}

Response parameters

Parameter
Type / Description

sessionID

String Session identifier, the output of the Login method. Include sessionID into all your requests. 2Checkout throws an exception if the values are incorrect. The sessionID expires in 10 minutes.

PreviousSOAP 6.0NextWorkflow

Last updated

Was this helpful?