Hello @john.crocker

thank you for the data. As we discussed the sample data you've provided looks correct. The only problem was with value of the signature.

Easiest way to test it is to:
- comment dateToSign variable in Postman pre-request script
- create new variable using the data generated by your code, i.e.
var dateToSign = "(request-target): get /v1/reference/countries\nhost: rms-world-check-one-api-pilot.thomsonreuters.com\ndate: Mon, 26 Sep 2016 15:36:42 GMT";
- send the request using postman
- compare your signature with signature generated by the code

From my experience algorithm to generate signature should looks like:
- encode secret to sequence of bytes
- encode message to sequence of bytes
- create new instance of the HMACSHA256 class using the encoded secret
- compute hash from the encoded message
- convert result to base 64 string

In the internet you can find many examples of the algorithm in the different programming languages.

Hi Everyone - if I crack it in the meantime I will post a code snippet for anyone interested if that's ok?

Hello @john.crocker

would you be able to provide:

- example of string you use in your hmac function (in postman it's called DataToSign) i.e.

(request-target): post /v1/groups
host: rms-world-check-one-api-pilot.thomsonreuters.com
date: Tue, 07 Jun 2016 20:51:35 GMT

- all headers that are in your https requests (Host, Date, Authorization)?

Is there any code samples being written for using the API?

I need to know about how can I make a request to the World-check one API. Can you please provide me the link for the sample code?

Hi Guys,

I have a client looking for the same answer to this last question from @krunal.b.patel

Can you please post some info on how this progressed?

Many thanks

Vanessa

Hi @Vanessa Lucisano,

I posted Java, C#, and node.js in CODE EXAMPLES under DOWNLOADS

https://developers.thomsonreuters.com/customer-and-third-party-screening/world-check-one-api/downloads

Brian