Some of Bambora's security and authentication features are advanced, and suited for integrations requiring a developer. These links open the developer content that outlines these security features.
Go to the Authentication section of Developer Portal for details about these items.
Validate Referring Host – Validate Referring Host means that transactions are only processed if they come through a designated URL or purchase page. If fraudulent transactions are attempted from another location, Bambora makes sure no processing takes place.
Validating Orders Against Inventory – Inventory validation is used to verify that customer-submitted order information matches product inventory data stored in the Bambora member area. If the values do not match, the transaction amount is flagged as Invalidand the transaction is declined. This feature is used with other Bambora products, including the Secure Webspace and Online Inventory (required for the upload feature to maintain the current inventory data).
PREFERRED Hash Validation – Hash validation is used to help protect the integrity of API transaction requests. Bambora supports SHA-1 (and MD5) hash encryption. This is the default security setting for all new accounts.
DEPRECATED Username/password Validation – Unique API username and password can be passed with each transaction request string.