Security
Security is important for any distributed system. Gateway Chain provides secure ways to interact with your chains.
Request validation
An authorization token is required when interacting with Gateway Chain. You can use console to get token and manage your chains.
Send token along with your request in Authorization header like this.
Verify Incoming Requests
You can verify incoming requests by checking the GatewayChain-Signature header.
Each request coming from Gateway Chain will have a GatewayChain-Signature header. The value of this header is
a HMCA SHA256 signed JWT
token.
You can use the provided SDK to verify the signature, or use the framework to seamlessly verify the signature.