1. API
Cresium
  • Cresium - V3 Partners
    • API
      • Auth Information for V3 API Partners
      • V3 - Health
        • Health check
      • V3 - Transaction
        • Get Transaction data
        • Search transactions
        • Make a transfer
        • Confirm a transaction
        • Reverse a deposit transaction
        • Get transaction receipt
      • V3 - BankAddress
        • Get Address
      • V3 - CompanyFeature
        • Get Company Features
        • Update Feature Enabled State
      • V3 - Rate
        • Get TNA rate
      • V3 - DepositAddress
        • Update Deposit Address
        • Create Deposit Address
      • V3 - Invoice
        • Create Invoices
        • Read Invoices
      • V3 - Partner
        • Search partner transactions
      • V3 - User Address
        • Create or get User Address
      • V3 - Auth
        • V3 - Balance
          • Get all wallets for Company
        • Generate change password ID for partner user
      • V3 - CompanyTax
        • Upsert Company Tax
      • V3 - Signature Request
        • Create Signature Request
        • Update Signature Request
      • V3 - Payment
        • Create Payments
        • Read Payments
      • Webhooks
        • Auth Information for Webhooks
        • Transactions Events Examples - DEPOSIT
  1. API

Auth Information for V3 API Partners

Partner Authentication#

All requests to this API require Partner-level authentication.

Required Headers#

x-api-key
Partner API Key (used to identify the Partner).
x-company-id
The ID of the company being operated on.
Must belong to a company associated with the authenticated Partner.
x-timestamp
Request timestamp in Unix epoch milliseconds.
Prevents replay attacks. Requests older than 5 minutes will be rejected.
x-signature
HMAC-SHA256 signature of the request, signed with the Partner’s secret and Base64-encoded.

Signature Construction#

Concatenate the following values, separated by |:
{timestamp}|{HTTP_METHOD}|{PATH}|{BODY}
timestamp: The value from x-timestamp.
HTTP_METHOD: Uppercase HTTP method (e.g., GET, POST).
PATH: Request path including params and query params (e.g., /v1/invoices).
BODY: JSON-encoded request body (or empty string).
Example string to sign:
1726744512000|POST|/v1/invoices/1?status=paid{"amount":100,"currency":"USD"}
Example Node.js code:
The resulting signature must match the value sent in x-signature.
Modified at 2025-09-23 15:18:39
Next
Health check
Built with