Martin Ellis
02/16/2021, 1:59 PMDeprecation of HMAC-SHA1 for Token-based
Authentication (TBA)
As of 2021.1, it is no longer possible to create new solutions for use with the HMAC-SHA1 signature
method for Token-based Authentication (TBA). You can still use the HMAC-SHA256 signature method to
create new solutions for use with TBA.
As of 2021.2, any solutions using the TBA feature with HMAC-SHA1 as a signature method will stop
working. You must update your TBA integrations to use HMAC-SHA256 before your account is upgraded
to 2021.2. This limitation also applies to any third-party integration.
Before 2021.2, you must update your authorization header to use HMAC-SHA256. To do so, change
the value of the oauth_signature_method parameter to HMAC-SHA256. The value of the oauth_signature
parameter should change accordingly. For more information, see the help topic Example OAuth Header.
Important: If you are using a library for signing, verify whether the library supports HMACSHA256, and if needed, update the library with HMAC-SHA256 support.
Martin Ellis
02/16/2021, 1:59 PMMartin Ellis
02/16/2021, 2:00 PMBakr
02/16/2021, 3:15 PMBakr
02/16/2021, 3:15 PMBakr
02/16/2021, 3:16 PMBakr
02/16/2021, 3:16 PMBakr
02/16/2021, 3:17 PMRookie
02/16/2021, 3:54 PMEric Holzer
02/16/2021, 4:48 PMmescalante
02/16/2021, 6:55 PMted_p
02/16/2021, 7:25 PMRJMNS
02/16/2021, 10:29 PMNeil V
02/17/2021, 6:51 AMMenno Janssen
02/17/2021, 8:59 AMOgabeg
02/17/2021, 3:17 PMMika Hakkinen
02/17/2021, 3:39 PMgabyrdzlobaton
02/17/2021, 3:45 PMSim Greenbaum
02/17/2021, 5:30 PMJordan Craig
02/17/2021, 5:52 PMJoe Blanchett
02/17/2021, 6:15 PMMika Hakkinen
02/17/2021, 6:24 PMericbirdsall
02/17/2021, 6:29 PMSeer
02/17/2021, 6:58 PMOgabeg
02/17/2021, 7:08 PMJordan Craig
02/17/2021, 7:28 PMKevinJ of Kansas
02/17/2021, 7:29 PMClint
02/17/2021, 7:44 PMBobbie Kish
02/17/2021, 9:05 PMmattb
02/17/2021, 11:03 PM