Enable headless checkout via the HMAC Bridge

Overview

Expose a single, signed endpoint that powers carts and orders from remote storefronts.

Downloads & Templates

1. 1

   Create an Inbound Connection

   Admin 5 min Back to top

   Go to Bridges → Connections → **New inbound**. Name it (e.g., "Storefront"), set status **Enabled**, and choose scopes for carts & orders.

   Tips

   —

   Validation

   • Connection shows status “Enabled” and lists issued key/secret.

   Success criteria

   • Key & secret are generated and visible in the inspector.
2. 2

   Restrict by IP and replay window

   Admin 3 min Back to top

   Add storefront IPs/CIDR ranges to the allow-list and keep the 60-second replay window default for HMAC.

   Tips

   • Use a reverse proxy with a static egress IP to simplify allow-listing.

   Validation

   —

   Success criteria

   —

3. 3

   Implement the HMAC signer

   Engineering 10 min Back to top

   On your site, generate signatures with timestamp, clientId, method and body. Include headers X-Client-Id, X-Timestamp, X-Signature.

   Tips

   —

   Validation

   • Test call to /bridge/{clientId}/cart.create returns 200 with a cart_id.

   Success criteria

   —

   Signer snippet

   Template

4. 4

   Wire cart actions

   Engineering 7 min Back to top

   Call actions: cart.create, items.add/update/remove, cart.get, and convertToOrder. Persist cart_id in your session.

   Tips

   —

   Validation

   —

   Success criteria

   • Cart can be created, items updated, and totals recomputed.
5. 5

   Place an order

   Engineering 5 min Back to top

   Invoke convertToOrder with customer info, addresses and payment_intent reference (no PAN). Expect order_id on success.

   Tips

   —

   Validation

   • New order appears in Orders list with status pending_payment or paid.

   Success criteria

   —

About this guide