Enkash Developer Portal
Home
Home
Login
  1. Home
  • Back to home
  • Payout APIs
  • Encryption & Decryption Guide
    • Generate Authentication Token
      POST
  • Beneficiary
    • Add Beneficiary
      POST
    • Search Beneficiary
      POST
    • Delete Beneficiary
      DELETE
  • Transfer
    • Initiate Transfer
      POST
    • Initiate Batch Transfer
      POST
    • Search Payout Transfers
      POST
  • Bank Details
    • Retrieve Account Balance
      GET
    • Retrieve Bank Account Details
      GET
    • Add Funds to EnKash
      POST
    • Fetch Statement
      POST
  • Webhook
    • Create Webhook Configuration
      POST
    • Retrieve Webhook Data
      GET
  1. Home

Payout API Encryption & Decryption Guide

For all Payout APIs, it is mandatory to:
Encrypt the request payload before sending it to Enkash.
Decrypt the response payload received from Enkash before using it.
These security measures protect sensitive data by ensuring that all requests and responses are securely transmitted.

Request & Response Format#

Request Payload
{
    "request": "{encrypted_request_string}"
}
Response Payload
{
    "request": "{encrypted_response_string}"
}

Encryption#

To send data securely, you must encrypt the request payload.
Important:
Use AES encryption (128-bit key) in ECBmode withPKCS5padding
Always use your client secret key for encryption
Example Implementations
Java
NodeJs (Javascript)
PHP
.Net
Python
Usage

Decryption#

When you receive an encrypted response from Enkash, use your client secret key to decrypt.
Example Implementations
Java
NodeJs
PHP
.Net
Python
Usage

Best Practices#

Store the secret key securely, never hardcode in codebases.
Always validate the decrypted payload to handle unexpected data.
Use updated libraries for cryptographic operations to maintain security.
Modified at 2025-07-07 18:11:44
Next
Generate Authentication Token
Built with