Calling Key Pair Authentication API

API Gateway

Release Notes and Announcements

Release Notes

Announcements

[Important] API Gateway Product Sales Discontinuation Announcement

[March 1, 2024] Security Management Notice for the Use of Default Domain Name in API Gateway

[August 15, 2022] Billing of Public Network Outbound Traffic from API Gateway to Backend Services

Product Introduction

Regions and Availability Zones

Purchase Guide (Discontinued)

Billing Overview

Instance Specifications

Shared Instance Billing

Dedicated Instance Billing

Billing Rule

Refund

Resource Pack Billing

Billing Rule

Refund

Payment Overdue

Getting Started

Step 1. Get the Access Permission

Step 2. Create a Service

Step 3. Create an API with Mock as the Backend Type

Step 4. Publish the Service

Step 5. Create a Plugin and Bind It to the API

Step 6. Debug the API

Operation Guide

Instance Management

Instance Parameter Configuration

Service Management

Binding Service to VPC

Migrating Service from Shared Instance to Dedicated Instance

Creating API

API Creation Overview

Creating APIs Connecting to the Public URL/IP Backend

Creating APIs Connecting to the VPC Resource Backend

Creating APIs Connecting to the SCF Backend

Creating API for Interconnecting Backend with COS

Creating APIs Connecting to the Mock Backend

Creating APIs Connecting to the TSF Backend

Importing APIs

API Management

Debugging General APIs

Debugging Microservice APIs

Compressing Responses

Base64 Encoding

Calling API

Calling Key Pair Authentication API

Authentication-Free API

Release and Access

Overview

Service Release and Deactivation

Service Access

Environment Version Switch

Custom Domain Name and Certificate

Configuring Custom Domain Name

Usage Plan

Overview

Working with a Usage Plan

Traffic Control

Backend Upstream

VPC Upstream

Verification and Security

Overview

Application-Enabled Authentication Method

Authentication-Free Mode

OAuth2.0

CAM Policy

Log Statistics

View Log Analysis

Exporting Service Logs

Viewing Operation Logs

Shipping to CLS

Access Monitoring

Viewing Monitoring Charts

Viewing API Statistics

Monitoring Metrics

API Doc Generator

Application Management

Permission Management

Precautions

Private IP Ranges and Public VIPs of API Gateway Regions

Plugin Usage

Overview

IP Access Control

Basic Traffic Throttling

Parameter Traffic Throttling

Practical Tutorial

Making Serverless Service Available quickly through API Gateway

Integrating WAF to API Gateway for Security Protection

Accessing Resources in IDC via API Gateway Dedicated Instance

Quick Access to TEM Application via API Gateway

Integrating ECDN to API Gateway for Acceleration

API Gateway Providing the Access Capability for TKE

Migrating from Region A to Region B

Development Guide

Serverless Framework

Overview

Installing Serverless Framework

Creating and Deploying API Gateway Service

Importing APIs

Defining APIs

Sample for Importing APIs

Generating Application Authentication Signature

Quick Service Deletion Tool

Uploading Files

Serverless Multi-File Upload Processing

Structures Passed by API Gateway to Backend

API Documentation

Making API Requests

Application APIs

DescribeApiAppBindApisStatus

DescribeApiAppsStatus

DescribeApiBindApiAppsStatus

DescribeApiForApiApp

DescribeServiceForApiApp

ModifyApiApp

UnbindApiApp

UpdateApiAppKey

Other APIs

DescribeInstancesNetworkConfig

CreateUpstream

DeleteUpstream

DescribeUpstreamBindApis

DescribeUpstreams

ModifyUpstream

DescribeExclusiveInstanceRegions

Plugin APIs

CreatePlugin

DeletePlugin

DescribeAllPluginApis

Usage Plan APIs

DemoteServiceUsagePlan

DescribeUsagePlan

DescribeUsagePlanEnvironments

DescribeUsagePlanSecretIds

DescribeUsagePlansStatus

IP Policy APIs

DescribeIPStrategyApisStatus

DescribeIPStrategysStatus

ModifyIPStrategy

UnBindIPStrategy

Custom Domain Name APIs

BindSubDomain

DeleteServiceSubDomainMapping

DescribeServiceSubDomainMappings

DescribeServiceSubDomains

API Document APIs

OpenAPI APIs

Key APIs

DescribeApiKeysStatus

Log APIs

Service APIs

DescribeServiceEnvironmentList

DescribeServiceEnvironmentReleaseHistory

DescribeServiceReleaseVersion

DescribeServiceUsagePlan

DescribeServicesStatus

Throttling Policy APIs

DescribeApiEnvironmentStrategy

DescribeServiceEnvironmentStrategy

ModifyApiEnvironmentStrategy

ModifyServiceEnvironmentStrategy

Documentation and SDK APIs

GenerateApiDocument

Data Types

Error Codes

Legacy Features

Key Pair Authentication

Key Management

Key Pair Authentication

Java (Key Pair Authentication)

Go (Key Pair Authentication)

Python (Key Pair Authentication)

JavaScript (Key Pair Authentication)

PHP (Key Pair Authentication)

C++ (Key Pair Authentication)

Erlang (Key Pair Authentication)

Signature generation instructions

FAQs

Service Level Agreement

Glossary

DocumentationAPI GatewayOperation GuideCalling APICalling Key Pair Authentication API

Calling Key Pair Authentication API

Download PDF

Last updated: 2023-12-22 09:49:43

Calling Key Pair Authentication API

Last updated: 2023-12-22 09:49:43

Download PDF

Overview
This document describes how to call the key pair authentication API.
Prerequisites
Creating key pair authentication API
1. In the API Gateway console, create an API and select the authentication type as "key pair authentication" (for more information, see API Creation Overview).
2. Release the service where the API resides to an environment. See Service Release and Deactivation.
3. Create a key pair on the key management page in the console.
4. Create a usage plan on the usage plan page in the console and bind it to the created key pair (for more information, see Sample Usage Plan).
5. Bind the usage plan to the API or the service where the API resides.
Confirming information
Before calling the API, you must have the SecretId and SecretKey of the API to be called and understand the API request path, method, and parameters.
Preparing tools
You can initiate requests from sources including browsers, browser plugins, Postman, and clients. Postman is recommended for simple validation.
Sample Call
Address
﻿
http://service-xxxxxxxx-1234567890.ap-guangzhou.apigateway.myqcloud.com/release
// Enter the URL of the API service you want to call
URL concatenation rule: service path + environment parameter + API path
Methods
POST
Request body
QueryParam_a=value1&QueryParam_b=value2
Request headers
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
Accept-Language: zh-cn
Connection: Keep-Alive
Host: service-xxxxxxxx-1234567890.ap-guangzhou.apigateway.myqcloud.com/release
User-Agent: Mozila/4.0(compatible;MSIE5.01;Window NT5.0)
Accept-Encoding: gzip,deflate
Content-Type: application/x-www-form-urlencoded;charset=utf-8
// Request body type, which should be set according to the actual request body content.
X-Client-Proto: http
X-Client-Proto-Ver: HTTP/1.1
X-Real-IP: 163.xxx.xx.244
X-Forwarded-For: 106.xxx.xx.102, 163.xxx.xx.244
Date: Sun, 21 Sep 2017 06:18:21 GMT
Authorization: hmac id="AKIDCgXXXXXXXX48pN", algorithm="hmac-sha1", headers="Date Host", signature="630123456789da9c"
// Signature. For specific signature algorithms, see the key calculation method in authentication and security
The eventually delivered HTTP request contains at least two headers: Date or X-Date and Authorization. More optional headers can be added in the request. If Date is used, the server will not check the time; if X-Date is used, the server will check the time.
The value of Date header is the construction time of the HTTP request in GMT format, such as Fri, 09 Oct 2015 00:00:00 GMT.
The value of X-Date header is the construction time of the HTTP request in GMT format, such as Mon, 19 Mar 2018 12:08:40 GMT. It cannot deviate from the current time for more than 15 minutes.
For the value of Authorization header, see Key Pair Authentication. For sample signatures generated in different programming languages, see API Gateway.
Response Processing
Response code
Response Code
Description
200 ≤ code < 300
Success
300 ≤ code < 400
Redirect, which requires subsequent operations to complete the request
400 ≤ code < 500
Client error
code > 500
Server error
Response headers
Content-Type: text/html; charset=UTF-8
Content-Length: 122
Date: Sun, 21 Sep 2017 06:46:04 GMT
Server: squid/3.5.20
Connection: close
Set-Cookie:1P_JAR=2017-09-18-06; expires=Mon, 25-Sep-2017 06:46:04 GMT; path=/; domain=.qq.com
X-Secret-ID:AKIDXXXXXXXX48pN
// `secret_id` in key pair
X-UsagePlan-ID:XXXXXXXX
// ID of the usage plan bound to the key pair
X-RateLimit-Limit:500
// Throttling configuration in the usage plan
X-RateLimit-Used:100/125
// Throttling usage in the usage plan
﻿
﻿

Was this page helpful?

You can also Contact Sales or Submit a Ticket for help.

Yes

Response Code	Description
200 ≤ code < 300	Success
300 ≤ code < 400	Redirect, which requires subsequent operations to complete the request
400 ≤ code < 500	Client error
code > 500	Server error

tencent cloud

New User Offers

Next-Generation CDN：EdgeOne

Elasticsearch Service Special Offers

Free Tier

Tencent Cloud Startup Program

Special Offers

Lighthouse Special Offers

Cloud Object Storage Special Offers

Featured Products

New Products

Education

Tencent Cloud Online Education Solutions

Gaming

Gaming Solution

Game Media Solutions

E-commerce

E-commerce retail solutions

Audio & Video

Audio/Video Solution

LVB Recording Solution

Interactive Classroom Solution

Interactive Live Streaming Solution

Audio Chat Social Networking Solution

Financial Services

Financial Services Solution

Compute

Cloud Virtual Machine

Auto Scaling

Batch Compute

CVM Dedicated Host

Database

TencentDB for MySQL

TencentDB for Redis®

TencentDB for CTSDB

TDSQL for MySQL

Data Transfer Service

TencentDB for MongoDB

TencentDB for PostgreSQL

TencentDB for SQL Server

TencentDB for TcaplusDB

Video Service

Cloud Streaming Services

Video on Demand

Media Processing Service

Cloud Application Rendering

Cloud Contact Center

Game Multimedia Engine

Chat

Real-time Communication

Tencent Effect SDK

AI and Machine Learning

Image Creation Large Model

Face Fusion

eKYC

Optical Character Recognition

Video Creation Large Model

Industry Applications

Tencent HealthCare Omics Platform

Container and Middleware

TDMQ for CKafka

Serverless Cloud Function

Tencent Kubernetes Engine

Tencent Kubernetes Engine for Serverless

Networking

Cloud Load Balancer

Virtual Private Cloud

Direct Connect

Cloud Connect Network

NAT Gateway

VPN Connection

Bandwidth Package

Anycast Internet Acceleration

Elastic Network Interface

Flow Logs

Global Application Acceleration Platform

Security

Captcha

Cloud Workload Protection Platform

Data Security Governance Center