The Simple Signature Type
In order to use the simple signature, requests should specify the authentication mode by setting the value of the parameter “apsws.authMode” to “simple”. Each request must also specify the action name and the timestamp (i.e., apsws.time). A URL example would be:
First, construct the text to hash by doing:
The values are appended without a separator.
The signature is then created by generating the Md5 hash of this text and using Hexadecimal characters:
Keep in mind that simple signature is secure only when used over a secure connection. It is highly recommended to use SSL connection when using a simple signature to avoid data interception and replay attacks. If you don’t want to use SSL connection, it is advisable to use the default signature.