Authorize connection

Authorization

This request should be executed first after establishing a WebSocket connection and repeated periodically to update the Access token in use.

The request authorizes the established WebSocket connection, within which all further requests for order management will be executed. Each new connection with /cws interface should be authorized separately.

Authorization is not timeless - requests executed within an authorized connection are considered authorized within the validity period of the Access token (30 minutes from creation). When this period expires, you will need to repeat the request with a new token to continue your work.

---

Request

Authorization details

Authorized access to WebSocket API is provided only within the WebSocket connection in which the request was executed. For each new WebSocket connection authorization must be performed separately.

To authorize the connection and all further commands executed within it, run the request with the actual Access token as the value of the token parameter.

Request body

{
  "opcode": "authorize",
  "guid": "c328fcf1-e495-408a-a0ed-e20f95d6b813",
  "token": "eyJhbGciOiJ..."
}

Schema

Request body parameters

opcodestringrequired
Operation code:
• authorize — Authorization of WebSocket connection
• create:market — Creation of market order
• create:limit — Creation of limit order
• create:stop — Creation of stop order
• create:stopLimit — Creation of stop limit order
• update:market — Modification of market order
• update:limit — Modification of limit order
• update:stop — Modification of stop order
• update:stopLimit — Modification of stop limit order
• delete:market — Cancelation of market order
• delete:limit — Cancelation of limit order
• delete:stop — Cancelation of stop order
• delete:stopLimit — Cancelation of stop limit order
guidstringrequired

The unique identifier of the operation. All incoming messages related to this operation will have this guid field value

Example: c328fcf1-e495-408a-a0ed-e20f95d6b813

tokenstringrequired

Access Token

Example: eyJhbGciOiJ...

---

Responses

According to the results of processing the received request, the server will return a message with the corresponding code to the WebSocket connection.

200

Successful request processing report

Body

{
  "requestGuid": "c328fcf1-e495-408a-a0ed-e20f95d6b813",
  "httpCode": 200,
  "message": "The connection has been initialized."
}

Schema

Response body parameters

requestGuidstring

The unique identifier of the operation. All incoming messages related to this operation will have this guid field value

Example: c328fcf1-e495-408a-a0ed-e20f95d6b813

httpCodeint32

Response HTTP code

Example: 200

messagestring

Text description of the returned HTTP code

Example: The connection has been initialized.

400

Failed to process the request. Check the validity of the transmitted message and try again.

Body

{
  "requestGuid": "c328fcf1-e495-408a-a0ed-e20f95d6b813",
  "httpCode": 400,
  "message": "Invalid or unsupported quantity"
}

Schema

Response body parameters

requestGuidstring

The unique identifier of the operation. All incoming messages related to this operation will have this guid field value

Example: c328fcf1-e495-408a-a0ed-e20f95d6b813

httpCodeint32

Response HTTP code

Example: 400

messagestring

Text description of the returned HTTP code

Example: Invalid or unsupported quantity

401

Failed to process request. Access token is invalid, not specified in the message or belongs to other system environment

Body

{
  "requestGuid": "c328fcf1-e495-408a-a0ed-e20f95d6b813",
  "httpCode": 401,
  "message": "Invalid JWT token!"
}

Schema

Response body parameters

requestGuidstring

The unique identifier of the operation. All incoming messages related to this operation will have this guid field value

Example: c328fcf1-e495-408a-a0ed-e20f95d6b813

httpCodeint32

Response HTTP code

Example: 401

messagestring

Text description of the returned HTTP code

Example: Invalid JWT token!