|« PreviousNext »|
|Did this page help you? Yes | No | Tell us about it...|
Amazon FPS applications enable payments between buyers and sellers. Web service requests are sent over the Internet using SSL (HTTPS).
HTTPS does not establish the identity of the requester. To establish the identity of the requester, Amazon FPS uses a signature.
A signature is an encrypted value that you generate and include as a parameter value in every request using the
signature parameter as in the following example.
The previous method for signing (signature version 1) was deprecated on November 3rd, 2009, and as of 10 February, 2011 it is no longer supported. Whenever you sign a request with your access keys, you must now use signature version 2.
Signing is required for all Amazon FPS API requests, and optional but recommended for Co-Branded service requests. If you do not sign a Co-Branded service request, you must manually determine whether the request has been tampered. For detailed information about generating a signature, see Working with Signatures.