This document describes how to use the plugin (within the Loginapp's one-shot feature HTTP request authentication (One-Shot flow)) in order to provide STET compliant HTTP signature verification.
The described plugin provides the ability to check HTTP signatures according to the internet draft Signing HTTP Messages as required in STET.
This documentation gives examples and lists the HTTP headers that need to be verified as specified in the STET v1.4.1.3 specification.
The documentation may be used as an example but does not guarantee that the legal PSD2 requirements are met. Please ensure the correct configuration by examining the latest PSD2 specifications.