HMAC Signature Generator

Generate HMAC-SHA256 signatures for testing your MallPlus Open API integrations.

Configuration

How HMAC signing works

  • Base string is constructed as: timestamp:clientId:path
  • The base string is signed with your client secret using HMAC-SHA256
  • Include the signature, timestamp, and client ID as request headers
  • Timestamps must be within 120 seconds of the server time