Help Center/ KooDrive/ API Reference/ Appendixes/ App-based Authentication Generation Rule/ Step 4: Add the Signature to the Request Header

Updated on 2025-10-16 GMT+08:00

View PDF

Step 4: Add the Signature to the Request Header

Add the signature to the Authorization HTTP header. The Authorization header is used for identity authentication and not included in the SignedHeaders. The format is as follows:

Authorization:<Algorithm> AppId=<appId>,SignedHeaders=<SignedHeaders>,Signature=<Signature>

Description:

Algorithm: signature algorithm. For SHA-256, the algorithm is HMAC-SHA256.
There is a space between Algorithm and AppId. AppId and SignedHeaders are separated by a comma (,).
SignedHeaders indicates the request headers to be signed. Each header is separated by a semicolon (;). SignedHeaders and Signature are separated by a comma (,).
Signature: signature calculated in step 3.

Parent topic: App-based Authentication Generation Rule

Previous topic: Step 3: Calculate the Signature

Next topic: Authentication-related Request Headers

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.