Certain requests are performed on behalf of third-parties, which requires that you identify you and the third-party. One way of identifying you both is using a specific certificate on the headers of the request: the third-party certificate or thirdPartyCert.
To generate this certificate, you must first create the certificate that identifies yourself and then create the certificate that also identifies the third-party. To identify yourself first, you will need the userToken parameter. To identify the third-party, you will need the relationKey parameter. If you have difficulties using the relationKey, you may use the sharedProviderId instead.
The schema of requests is the following:
