Authentication

Authentication to the API is performed via the Authorization header with an API key. Each request requires an API key to authenticate the user and a signature to verify the request’s integrity, ensuring safe and authorized access to our API. To provide access to the API, all requests must contain the following headers:

Header	Description
`Authorization`	API key obtained on the Copper Platform
`X-Signature`	Signature of your request
`X-Timestamp`	Timestamp of your request in UNIX Timestamp format (in milliseconds)

Generating a signature

Concatenate the following strings:

Value of the X-Timestamp header
HTTP request method uppercase
Path of the requested endpoint including the platform prefix and all additional parameters (e.g., /platform/orders?limit=1000)
All fields of the request body (use an empty string if the request does not include a body)

"$timestamp${req.method.value.toUpperCase}${req.uri}${body.data.utf8}"

For example: 1730482675607POST/platform/orders{"orderType":"withdraw","amount":"1.0"}

Sign the concatenated string with your API Secret using the HMAC SHA256 method

Encode the generated signature in hexadecimal format

Getting Started Rate limits

On this page

Generating a signature

API Documentation

blockchain

clearloop

network

address-book

currencies

deposit-targets

orders

files

organizations

organization-activities

portfolios

reports

stake

wallets

Generating a signature

API Documentation

blockchain

clearloop

network

address-book

currencies

deposit-targets

orders

files

organizations

organization-activities

portfolios

reports

stake

wallets

​Generating a signature

Generating a signature