iHash API Integration Guide — PayKing Corporation

How It Works

iHash generates a cryptographic hash of your user's identity data on the client side. Only the hash is sent to and stored on our server. Original PII never leaves the user's device.

User inputs data

→

SHA-256 on client

→

Hash sent to iHash API

→

Hash stored · PII discarded

Your company never needs to handle, store, or be liable for raw personal data. Regulatory exposure is eliminated at the architecture level.

Step-by-Step Integration

Get Your Merchant Salt

Fetch your unique salt — used to compute the identity hash client-side.

GET https://ishashsign.com/api/v1/auth/merchant-salt
X-API-Key: YOUR_API_KEY

// Response
{
  "success": true,
  "merchantId": "merchant-abc123",
  "merchantSalt": "a3f9d2e1b8c7..."
}

Compute IdentHash on Client Side

Hash the user's identity data in the browser or mobile app — before sending anything to your server.

// JavaScript (browser / Node.js)
async function computeIdentHash(name, idNumber, merchantSalt) {
  const raw = name + idNumber + merchantSalt;
  const buffer = new TextEncoder().encode(raw);
  const hash = await crypto.subtle.digest('SHA-256', buffer);
  return Array.from(new Uint8Array(hash))
    .map(b => b.toString(16).padStart(2, '0'))
    .join('');
}

// Python
import hashlib
def compute_ident_hash(name, id_number, merchant_salt):
    raw = name + id_number + merchant_salt
    return hashlib.sha256(raw.encode()).hexdigest()

The raw name and ID number are never sent over the network. Only the resulting hash is transmitted.

Register or Verify the Identity

Send the hash to iHash API to register a new user or verify an existing one.

// Register
POST https://ishashsign.com/api/v1/auth/signup
X-API-Key: YOUR_API_KEY
Content-Type: application/json

{
  "identHash": "a1b2c3d4e5f6...",
  "email": "user@example.com"
}

// Response
{
  "success": true,
  "userId": "usr_xyz789",
  "identHash": "a1b2c3d4e5f6...",
  "code": "SIGNUP_OK"
}

// Verify (login)
POST https://ishashsign.com/api/v1/auth/login
X-API-Key: YOUR_API_KEY

{
  "identHash": "a1b2c3d4e5f6..."
}

// Response
{
  "success": true,
  "valid": true,
  "userId": "usr_xyz789",
  "code": "LOGIN_OK"
}

API Reference

Endpoint	Method	Description
/auth/merchant-salt	GET	Fetch merchant salt for hashing
/auth/signup	POST	Register new identity hash
/auth/login	POST	Verify existing identity hash
/hash/seal	POST	Seal document or file hash

Use Cases

Industry	Use Case	Benefit
Telco	Subscriber KYC	No national ID stored
Fintech	Wallet onboarding	AML-compliant, zero PII
Insurance	Claim authentication	Tamper-proof identity
Healthcare	Patient verification	GDPR-safe by design
Real Estate	Ownership transfer	IdentHash standard (KR Patent)

Ready to integrate?

Request your API key and go live in under an hour.

Live Demo API Docs

mearida@hanmail.net