QWAC: Mutual TLS


This section applies only to Regulated partners.

Mutual TLS Authentication

All API calls done to our shine connect regulated API require mutual TLS authentication using your QWAC certificate.

During the TLS handshake, you will be presented with Shine's own QWAC certificate.
Our QWAC certificate has been delivered by CertEurope and the root certificate can be found here https://www.certeurope.fr/chaine-de-confiance/.

Here an exemple on how to make a mTLS request

curl --cert client-cert.pem --key client-key.pem https://www.example.com/
const https = require('https');
const fs = require('fs');

// HTTPS request options
const options = {
  hostname: 'connect.api.shine.fr',
  port: 443,
  path: '/',
  method: 'GET',
  // Client certificates for mutual TLS authentication
  key: fs.readFileSync('YOUR_QWAC_KEY.pem'),
  cert: fs.readFileSync('YOUR_QWAC_CERT.pem'),

// Callback function to handle the HTTPS response
function handleResponse(response) {
  // Your implementation

// Make the HTTPS request
const req = https.request(options, handleResponse);