JavaScript is disabled. Some features may not work. You can also read the static version: View text version

Generating the Signature

Generating the RSA Key Pair

Merchant must securely generate 2048 bit RSA Public Private Key pair on their servers inside a crypto vault. Merchant must share the Public Key (KeyFormat-PEM) with Juspay during onboarding
Private key must be securely kept in a crypto vault on the merchant servers. Private key should never flow to the client.

Note: To simplify integration on sandbox, we have already shared a set of auto-generated keys which need to be configured. Please make sure a new set of keys is generated for production prior to go-live

The below command would generate a private key file private-key.pem

The below command would generate a public key file public-key.pem for the private key file generated via above command

Signing the Payload

Scroll inside to view more

Algorithm	Format
RSA-SHA256	HEX; base 64 encoded

JSON payload needs to be signed after converting it to String using the Private key stored on the merchant server. The signature shall be in Base 64 encoded format.

Note: Private key must be securely kept in a crypto vault on the merchant servers. Private key should never flow to the client.

Sample Code Snippet

Have questions?
Need help? Contact support
LLM? Read llms.txt