HomeDocumentationCode SamplesAPI ReferenceAnnouncementsModelsRelease NotesFAQGitHubVideos
Developer HubAPI StatusSupport
Documentation
Developer HubAPI StatusSupport

Third-Party Provider FAQ

Frequently asked questions about third-party payment providers and related SP-API requests.

Who needs to sign SP-API requests with a PSD2 signature?

Select to expand the answer. PSD2 signatures are intended for third-party provider (TPP) developers who make requests using their TPP application. An application is considered a TPP application if it contains a TPP role (AISP or PISP).

When TPP applications make calls to any TPP-related APIs in the EU region, a PSD2 signature is required. For calls that are related to Feeds and Reports APIs, you must add the signature when you interact with any TPP-specific Feed or Report type in the EU region.

How do I create a signature?

Select to expand the answer. Follow the IETF guidance on HTTP Message Signatures and refer to Third-Party Provider Signature Guidance.

Which signature components does Amazon require and enforce?

Select to expand the answer. The required signature components are described in Third-Party Provider Signature Guidance.

What signature label do I need to use?

Select to expand the answer. Use `x-amzn-psd2` as your signature label. For more information, refer to Third-Party Provider Signature Guidance.