The Hawk Marketplace APIs use mutual authentication by means of a signed certificate provided by Blackhawk Network. The certificate contains embedded values that support authentication, authorization, and billing.
Your applications are authenticated through the use of embedded values in the client certificate. The overall client Request Context comprises the full set of HTTP headers and embedded certificate values. These properties are used for purposes of authentication and authorization across multiple requests.
Hawk Marketplace supports TLSv1.2. Calls made using older versions of TLS are not supported and will fail.
Obtaining Your Certificate for Authentication
During the integration process your implementation project manager will work with you to obtain your client certificate. Production certificates are generated and sent after successful testing in our preproduction environment. Production access will not be granted without completion of our integration certification process.
The certificate values are mapped to a system user within Blackhawk Network. That system user is associated with a set of client products specific to your organization.
Updated 8 months ago