Denied Party Screening

Glopal automatically validates all provided buyer delivery addresses against international carrier rules, and checks if the buyer is listed on any relevant official sanction list. Glopal checks below official sources daily for updates: are:

EU Financial Sanctions Files (FSF)
UK Consolidated List of Financial Sanctions Targets issued by the Office of Financial Sanctions Implementation (OFSI)
US Trade Consolidated Screening List (CSL) issued by the International Trade Administration (ITA), consolidating multiple export screening lists of the US Departments of Commerce, State, and Treasury

The screening is carried out during the order processing. Alternatively, Glopal provides a separate API service to allow the integration of denied party screening in a customised process:

Validates (and creates) address against carrier specifications

post

Header parameters

x-loginstringRequired

Client username (set by Glopal)

Example: usernamePattern: ^[a-z0-9\-]{3,255}$

x-aliasstringOptional

Optional system username to enable separation of authentication credentials by integrated client system. (set by Glopal)

Example: alias-usernamePattern: ^[a-z0-9\-]{3,50}$

x-signaturestringRequired

The authentication signature is created by using the concatenation of the login, the ‘@’ sign and the timestamp, transformed into a HMAC_256 signature using your secret access key.

Example: 40b976b35a08bb951439ea7bbfa0a7bd73dab7c813399a31d9d1a157bc08929bPattern: ^[0-9a-f]{64}$

x-timestampnumber · floatRequired

The authentication timestamp must be a decimal numeric representing the current POSIX time, extended to microsecond accuracy. If the requesting system does not provide high-resolution time, it is advised to use a 6-digit random number. It is important to have the requesting system synchronised with a reliable time source (f.i. a stratum 2 NTP server) to avoid request rejection.

Example: 1680010295.775523Pattern: ^[12]\d{9}\.\d{6}$

x-versionnumber · floatOptionalDefault: 0.68Pattern: (^0\.\d{2}$|^[1-9]\d*\.\d{2}$)

Body

addressall ofRequired

Responses

200

Responseall of

400

Bad Request

401

Unauthorized

403

Forbidden

404

Not found

405

Method not allowed

500

Internal server error

503

Service unavailable

post

const timestamp = String(Date.now() / 1000).padEnd(17, '0');
const username = "username";
const signature = CryptoJS.HmacSHA256(
  `${username}@${timestamp}`, "sharedsecret"
  ).toString(CryptoJS.digest)

const response = await fetch('https://ws.xport.glopalservice.com/address/check', {
  method: 'POST',
  headers: {
    "Content-Type": "application/json",
    "x-login": username,
    "x-timestamp": timestamp,
    "x-signature": signature
  },
  body: JSON.stringify({
    "address": {
      "name": "Test Testington",
      "user_reference": "testref",
      "address1": "Test street 1",
      "postcode": "90210",
      "state": "CA",
      "city": "Beverly Hills",
      "country": "US"
    }
  }),
});
const data = await response.json();

{"error":0}

PreviousProhibited Goods NextOrder Creation

Last updated 7 months ago