Security & Authentication

To ensure the security and integrity of every transaction, the Spark API requires a two-part authentication process. All requests must identify the sender and include a digital signature to verify that the request body has not been altered.

Authentication Options

Choose the integration path that matches your project status:

Authentication

The current standard for all new integrations. This version uses a simplified header-based signature.

Legacy Authentication

Intended only for maintaining existing integrations. This version requires generating an HMAC signature based on the JSON body content.