Authenticated Channels


Channels that require authentication should use the domain:

The domain:
Should only be used for public channels.

Rate Limit

The rate limit for wss:// is set at 5 connections per 15 seconds.

Account Information

This channel allows you to keep up to date with the status of your account. You can receive updates on your positions, your balances, your orders and your trades. Once your session is authenticated it remains so until the connection is disconnected/terminated/restarted.

Account info always uses chanId 0.

To learn more, look to the Account Info channel page.

Authenticating your Connection

Request parameters

Below are the parameters that are used to authenticate a connection. The dms and filter parameters are optional.

authSigstringThe generated signature
authNoncestringAn ever increasing numeric string but should not exceed the MAX_SAFE_INTEGER constant value of 9007199254740991.
dmsintDead-Man-Switch flag (optional). Values: 4
filterarrayAllows you to filter which information you are interested in (default = everything). See Channel Filters for more details.


  • dms: 4 -> when socket is closed, cancel all account orders

Below is the example code to authenticate your connection. The optional parameters 'dms' and 'filter'are not used, but can be appended to the payload if desired.

const crypto = require('crypto-js') // Standard JavaScript cryptography library
const WebSocket = require('ws') // Websocket library for Node

const apiKey = '' // Users API credentials are defined here
const apiSecret = ''

const authNonce = * 1000 // Generate an ever increasing, single use value. (a timestamp satisfies this criteria)
const authPayload = 'AUTH' + authNonce // Compile the authentication payload, this is simply the string 'AUTH' prepended to the nonce value
const authSig = crypto.HmacSHA384(authPayload, apiSecret).toString(crypto.enc.Hex) // The authentication payload is hashed using the private key, the resulting hash is output as a hexadecimal string

const payload = {
  apiKey, //API key
  authSig, //Authentication Sig
  event: 'auth', // The connection event, will always equal 'auth'

const wss = new WebSocket('wss://') // Create new Websocket

wss.on('open', () => wss.send(JSON.stringify(payload)))

wss.on('message', (msg) => {     // The 'message' event is called whenever the ws recieves ANY message
  let response = JSON.parse(msg)
package main
import (
func main() {
    ws, err := websocket.Dial("wss://", "", "http://localhost/")
    if err != nil {
    nonce := fmt.Sprintf("%v", time.Now().Unix())
    payload := "AUTH" + nonce
    sig := hmac.New(sha512.New384, []byte("API_SECRET"))
    payload_sign := hex.EncodeToString(sig.Sum(nil))
    connectMsg, _ := json.Marshal(map[string]interface{}{
        "event":       "auth",
        "apiKey":      "API_KEY",
        "authSig":     payload_sign,
        "authPayload": payload,
        "authNonce":   nonce,
    // Send auth message
    _, err = ws.Write(connectMsg)
    if err != nil {
    // Read all incoming messages
    var msg string
    for {
        if err = websocket.Message.Receive(ws, &msg); err != nil {
        } else {
// request
    event: "auth",
    apiKey: api_key,
    authSig: signature,
    authPayload: payload,
    authNonce: +authNonce,
    calc: 1

// response
{ event: 'auth',
  status: 'OK',
  chanId: 0,
  userId: 269312,
  caps: '{"orders": {"read": "1", "write": "0"}, "account": {"read": "1", "write": "0"}, "funding": {"read": "1", "write": "1"}, "history": {"read": "1", "write": "0"}, "wallets": {"read": "1", "write": "1"}, "withdraw": {"read": "0", "write": "1"}, "positions": {"read": "1", "write": "1"}}' }

// response-failure


WS Inputs

Please note that the above example payload only authenticates your WS connection to the server. If you wish you interact with the API further you'll have to include some sort of listener to perform some action on a particular Websocket "event".

An example can be found here

Channel Filters

During authentication, you can provide an array to indicate which information/messages you are interested to receive (default = everything).


Wallet Labels

The following labels are used for the different wallets:

'exchange', 'trading', 'deposit'

These correspond to the Exchange Wallet, Margin Wallet, and Funding Wallet respectively.

const payload = {
  event: 'auth', 
  // ... 
  filter: [
    'trading', // orders, positions, trades 
    'trading-tBTCUSD', // tBTCUSD orders, positions, trades
    'funding', // offers, credits, loans, funding trades
    'funding-fBTC', // fBTC offers, credits, loans, funding trades
    'wallet',  // wallet
    'wallet-exchange-BTC', // Exchange BTC wallet changes 
    'algo',    // algorithmic orders
    'balance', // balance (tradable balance, ...)
    'notify'   // notifications

List of Account Info Events

List of WS Inputs