The Digital Certificate Confirmation API has two environments — production and sandbox. Use the sandbox environment to build and test your integration without affecting real confirmation data.
Base URLs
| Environment | Base URL |
|---|
| Production | https://api.waec.org/api/v1/external |
| Sandbox | https://api.sandbox.smartdocument.org/api/v1/external |
API Secret keys
Each environment uses a separate API Secret key. You cannot use a production key in the sandbox, or vice versa. Generate the appropriate key from your Institution profile for each environment.
Switching environments
To switch environments, change the base URL and API Secret key in your requests. No other changes are required.
# Production
curl --request POST \
--url https://api.waec.org/api/v1/external/certificate/confirm \
--header 'X-DigiCert-Secret: YOUR_PRODUCTION_SECRET_KEY' \
--header 'Content-Type: application/json' \
--data '{ "certificates": [] }'
# Sandbox
curl --request POST \
--url https://api.sandbox.smartdocument.org/api/v1/external/certificate/confirm \
--header 'X-DigiCert-Secret: YOUR_SANDBOX_SECRET_KEY' \
--header 'Content-Type: application/json' \
--data '{ "certificates": [] }'
Never use your sandbox key in production or your production key in the sandbox. Requests made with a mismatched key will be rejected with a 401 Unauthorized error.
Sandbox data is isolated from production and may be reset periodically. Do not rely on sandbox confirmation records persisting long-term.
