Enkash Developer Portal
Home
Home
Login
  1. Home
  • Back to home
  • Payout APIs
  • Encryption & Decryption Guide
    • Generate Authentication Token
  • Beneficiary
    • Add Beneficiary
    • Search Beneficiary
    • Delete Beneficiary
  • Transfer
    • Initiate Transfer
    • Initiate Batch Transfer
    • Search Payout Transfers
  • Bank Details
    • Retrieve Account Balance
    • Retrieve Bank Account Details
    • Add Funds to EnKash
    • Fetch Statement
  • Webhook
    • Create Webhook Configuration
    • Retrieve Webhook Data
  1. Home

Payout API Encryption & Decryption Guide

For all Payout APIs, it is mandatory to:
Encrypt the request payload before sending it to Enkash.
Decrypt the response payload received from Enkash before using it.
These security measures protect sensitive data by ensuring that all requests and responses are securely transmitted.

Request & Response Format#

Request Payload
{
    "request": "{encrypted_request_string}"
}
Response Payload
{
    "request": "{encrypted_response_string}"
}

Encryption#

To send data securely, you must encrypt the request payload.
Important:
Use AES encryption (128-bit key) in ECBmode withPKCS5padding
Always use your client secret key for encryption
Example Implementations
Java
NodeJs (Javascript)
PHP
.Net
Python
Usage

Decryption#

When you receive an encrypted response from Enkash, use your client secret key to decrypt.
Example Implementations
Java
NodeJs
PHP
.Net
Python
Usage

Best Practices#

Store the secret key securely, never hardcode in codebases.
Always validate the decrypted payload to handle unexpected data.
Use updated libraries for cryptographic operations to maintain security.
Modified at 2025-07-07 18:11:44
Next
Generate Authentication Token
Built with