Making your API connection secure
HTTP VS HTTPS
It is highly recommended to use https:// when making the API calls. This encrypts the connection and makes sure that eaversdropping communication between your server and Messente is impossible.
Whitelisting IP addresses
Make sure that the IP addresses are whitelisted and not to disable the IP address validation by global whitelist 0.0.0.0/0 if possible.
Delivery Report API
There are multiple ways to secure any incoming HTTP requests from Messente:
- Use hard-to-guess URL's
- Provide secret key for each request
- Check if the source IP address matches any Messente server IP address