Skip to main content

Documentation Index

Fetch the complete documentation index at: https://developer.bron.org/llms.txt

Use this file to discover all available pages before exploring further.

Most users should not implement signing manually. Use the CLI, TypeScript SDK, Go SDK, or Python SDK — all of them handle JWT signing, key rotation, retries, and the error envelope for you.Read on only if you’re writing a custom client in a language without a Bron SDK, or if you need direct control over the JWT lifecycle.
Authorization: ApiKey {jwt}
API Key authentication allows you to securely access the Bron API using cryptographic signatures. This method uses JSON Web Tokens (JWT) to ensure both authentication and request integrity.
JSON Web Tokens (JWT) is an open standard for securely transmitting information between parties as a JSON object.A JWT consists of three parts separated by dots:
PartContentsEncoding
HeaderMetadata about the key id, signing algorithm and etc.base64-encoded JSON
PayloadClaims (data) you want to transmitbase64-encoded JSON
SignatureSignature of base64url(header) + "." + base64url(payload) using private keybinary → base64url
Example of the JWT:
eyJraWQiOiJCdWp0RjQwZlUyNXBGdlNabEdrQyIsImFsZyI6IkVTMjU2In0.eyJpYXQiOjE3NDkyMTI4NDQsIm1lc3NhZ2UiOiJhcnRlbS13YXMtaGVyZSJ9.NtTsKix0Fj6gXA9sSInfW9PRqO82RlLHyvY_ZKRkpof
BeUHU8gsDnHP7_OjUeoB4nYHhsps1RLWFjzkyaJCkwQ
HeadereyJraWQiOiJCdWp0RjQwZlUyNXBGdlNabEdrQyIsImFsZyI6IkVTMjU2In0
PayloadeyJpYXQiOjE3NDkyMTI4NDQsIm1lc3NhZ2UiOiJhcnRlbS13YXMtaGVyZSJ9
SignatureNtTsKix0Fj6gXA9sSInfW9PRqO82RlLHyvY_ZKRkpofBeUHU8gsDnHP7_OjUeoB4nYHhsps1RLWFjzkyaJCkwQ

Bron JWT Structure

Step-by-Step Implementation

1

Prepare Your Credentials

  • Generate or upload your API Key in the Bron App and obtain your API Key ID
  • Save your private key securely
  • Use your API Key ID (kid) in the JWT header.
2

Create the Message String

Concatenate these values separated by newline (\n) characters:
{iat}\n{HTTP_METHOD}\n{REQUEST_PATH}\n{REQUEST_BODY}
Components:
iatCurrent timestamp in seconds (same value used in JWT payload)
HTTP_METHODHTTP method in uppercase (GET, POST, PUT, DELETE)
REQUEST_PATHFull request path including query parameters
(e.g. /api/v1/users?limit=10)
REQUEST_BODYJSON string exactly as sent (empty string if none)
Example:
1749217170\nPOST\n/workspaces/bron/transactions\n{"transactionType":"swap","params":{"amount":"1"}}
3

Generate SHA256 Hash

Compute SHA256 over the message string. In Node.js:
const crypto = require('crypto');
const message = `${iat}\n${method}\n${path}\n${bodyString}`;
const hash = crypto.createHash('sha256').update(message).digest('hex');
Store that hex string in the JWT payload under "message".
4

Sign the JWT

Create and sign the JWT using your private key

Examples

Request:
GET https://api.bron.org/workspaces/bron
JWT Header:
{
  "kid": "BujtF40fU25pFvSZlGkC",
  "alg": "ES256"
}
Time1749219350
Message1749219350\nGET\n/workspaces/bron\n
SHA256 Hash998371af53740a6cb4f13a7111f8e1b9f12063f8451d2a5b270be8f073b03505
JWT Payload
{
  "iat": 1749219350,
  "message": "998371af53740a6cb4f13a7111f8e1b9f12063f8451d2a5b270be8f073b03505"
}
Signed JWT:
eyJraWQiOiJCdWp0RjQwZlUyNXBGdlNabEdrQyIsImFsZyI6IkVTMjU2In0.eyJpYXQiOjE3NDkyMTkzNTAsIm1lc3NhZ2UiOiIyNWU3ODNiOTc4ZWIwNTllZjRlY2UwMjcxOThlOTc0YTFlZjdmMDA2MDhmNTAzM2UxMDFhMWI5NTZiNmM4YWNkIn0.lDtT1sD4JUsjaIczcpgiT8xAn8hZnnX_dg_ut8t8tsz-JWHGJBnwCMNs3OgFrR_77r3EDZCuoiB7W_FKPbNpsw
Authorization Header:
Authorization: ApiKey eyJraWQiOiJCdWp0RjQwZlUyNXBGdlNabEdrQyIsImFsZyI6IkVTMjU2In0.eyJpYXQiOjE3NDkyMTkzNTAsIm1lc3NhZ2UiOiIyNWU3ODNiOTc4ZWIwNTllZjRlY2UwMjcxOThlOTc0YTFlZjdmMDA2MDhmNTAzM2UxMDFhMWI5NTZiNmM4YWNkIn0.lDtT1sD4JUsjaIczcpgiT8xAn8hZnnX_dg_ut8t8tsz-JWHGJBnwCMNs3OgFrR_77r3EDZCuoiB7W_FKPbNpsw