Cresium
  1. API
Cresium
  • Cresium - V3 Partners
    • API
      • Auth Information for V3 API Partners
      • V3 - Health
        • Health check
      • V3 - Transaction
        • Get Transaction data
        • Search transactions
        • Make a transfer
        • Confirm a transaction
        • Reverse a deposit transaction
      • V3 - BankAddress
        • Get Address
      • V3 - CompanyFeature
        • Get Company Features
        • Update Feature Enabled State
      • V3 - Rate
        • Get TNA rate
      • V3 - DepositAddress
        • Update Deposit Address
        • Create Deposit Address
      • V3 - Partner
        • Search partner transactions
      • V3 - Auth
        • Generate change password ID for partner user
      • V3 - CompanyTax
        • Upsert Company Tax
      • V3 - Balance
        • Get all wallets for Company
    • Webhooks
      • Auth Information for Webhooks
      • Configuring Webhooks
      • Transactions Events - DEPOSIT
    • Schemas
      • Transaction
  1. API

Auth Information for V3 API Partners

Partner Authentication#

All requests to this API require Partner-level authentication.

Required Headers#

x-api-key
Partner API Key (used to identify the Partner).
x-company-id
The ID of the company being operated on.
Must belong to a company associated with the authenticated Partner.
x-timestamp
Request timestamp in Unix epoch milliseconds.
Prevents replay attacks. Requests older than 5 minutes will be rejected.
x-signature
HMAC-SHA256 signature of the request, signed with the Partner’s secret and Base64-encoded.

Signature Construction#

Concatenate the following values, separated by |:
{timestamp}|{HTTP_METHOD}|{PATH}|{BODY}
timestamp: The value from x-timestamp.
HTTP_METHOD: Uppercase HTTP method (e.g., GET, POST).
PATH: Request path including params and query params (e.g., /v1/invoices).
BODY: JSON-encoded request body (or empty string).
Example string to sign:
1726744512000|POST|/v1/invoices/1?status=paid{"amount":100,"currency":"USD"}
Example Node.js code:
The resulting signature must match the value sent in x-signature.
Modified at 2025-09-23 15:18:39
Next
Health check
Built with