Update NFT Information

NFT API

update NFT metadata

put https://api.dappportal.io/api/b2b-v1/nfts/{chain}/{contract_address}/{token_id}/metadata To ensure the security of your secret key, this API should be called from a secure server environment rather than directly than from webpage(FrontEnd).

Parameters

Name

Description

chain *required string (path)

chain name : "kairos", "kaia"

contract_address *required string (path)

contract address of NFT

token_id *required string (path)

token id of NFT

X-Auth-Signature *required string (header)

HMAC (clientId + method + path + timestamp + salt) key={secret} You can find the code example below.

X-Auth-ClientId *required string (header)

client id obtained from support team

X-Auth-Timestamp *required string (header)

Timestamp used in the X-Auth-Signature (request time) This parameter is included to protect against replay attacks.

X-Auth-Salt *required string (header)

Salt used in the X-Auth-Signature (a unique random value provided by the client for each request) (Length: 36 characters, UUID v4 format)

HMAC Signature Generation Example (Node.js)

Example code to generate X-Auth-Signature header for secure API calls.

const crypto = require('crypto');
/**
 * Generates an HMAC signature for API authentication.
 * @param {string} secret - Shared secret key used for HMAC.
 * @param {string} clientId - Public client identifier.
 * @param {string} method - HTTP method (e.g., GET, POST).
 * @param {string} path - Request path (e.g., /api/v1/resource).
 * @param {string} timestamp - UNIX timestamp (in seconds).
 * @param {string} salt - Random value (e.g., UUID or random bytes).
 * @returns {string} - Base64-encoded HMAC signature.
 */
function generateHmacSignature(secret, clientId, method, path, timestamp, salt) {
  const message = `${clientId}|${method.toUpperCase()}|${path}|${timestamp}|${salt}`;
  const hmac = crypto.createHmac('sha256', secret);
  hmac.update(message);
  return hmac.digest('base64');
}
 
const secret = 'your-secret-key';
const clientId = 'client-abc-123';
const method = 'POST';
const path = '/api/v1/order';
const timestamp = Math.floor(Date.now() / 1000).toString();
const salt = crypto.randomUUID(); 
const signature = generateHmacSignature(secret, clientId, method, path, timestamp, salt);
 
// debug code
console.log('X-Client-Id:', clientId);
console.log('X-Timestamp:', timestamp);
console.log('X-Salt:', salt);
console.log('X-Auth-Signature:', signature);

Request Body

Example Value

Schema

{
  "name": "title1",
  "image": "https://data.dappportal.io/nft/N6788dcf821089d16387aac02/e9856c3c-7a74-4545-b75b-2df5b49fd41f/image/1.png",
  "cached_image": "https://obs.line-scdn.net:443/0h5TZGDWSkantnPnuVeJwVLD1rZAoLT3NuHgh4Axp7YBdUXHYsHiRMeh9sQg4BXltRECdTXBxsViABb0tsHSd9dkNfUkoWW0gsEjN6fhxtfxZKZUskEApubQRFaBFCcl0",
  "description": "description1",
  "attributes": [
    {
      "trait_type": "Color",
      "value": "Green"
    },
    {
      "trait_type": "Level",
      "value": "5 level"
    },
    {
      "trait_type": "Birthday",
      "value": "2024.12.5"
    }
  ]
}

{
  name: string,
  description: string,
  image: string,
  attributes: [Atribute {
              trait_type: string,
              value: string
              }]
}

Responses

HTTP Status Code

description

200

null

400

{
    "code": "UNAUTHENTICATED"
}

400

{
    "code": "INVALID_PARAMS"
}

400

{
    "code": "NOT_MODIFIABLE_COLLECTION"
}

429

{
    "code": "TOO_MANY_REQUESTS"
}

500

{
    "code": "LOCK_ACQUISITION_FAILED"
}

500

{
    "code": "UNKNOWN_ERROR"
}

Code Example (python)

import datetime
import hmac
import uuid
import base64
import json
 
import requests
 
secret_key = "your-secret-key"
client_id = "your-client-id"
method = "PUT"
chain = "kairos" //test chain
contract_address = "contract-address"
token_id = "1"
path = f"/api/b2b-v1/nfts/{chain}/{contract_address}/{token_id}/metadata"
timestamp = str(int(datetime.datetime.now().timestamp()))
salt = str(uuid.uuid4())
plain_text = f"{client_id}|{method.upper()}|{path}|{timestamp}|{salt}"
print(f"plain_text: {plain_text}")
 
# Generate HMAC SHA256 Signature
hmac_obj = hmac.new(secret_key.encode('utf-8'), plain_text.encode('utf-8'), digestmod='sha256')
signature = base64.b64encode(hmac_obj.digest()).decode('utf-8')
 
host="https://api-dapp-portal.line-apps-beta.com"
url = f"{host}{path}"
headers = {
    "Content-Type": "application/json",
    "X-Auth-Client-Id": client_id,
    "X-Auth-Signature": f"{signature}",
    "X-Auth-Timestamp": timestamp,
    "X-Auth-Salt": f"{salt}",
}
body = {
    "name": "Hello",
    "uploadImageUrl": "https://line-objects-dev.com/dapp-portal-item/nft/N687e0c575d1ae92019138c5f/5734cbaa-5d49-4702-abaa-a3074808373f/image/9.jpg",
    "attributes": [
        {
            "trait_type": "color",
            "value": "red"
        },
        {
            "trait_type": "level",
            "value": "11 level"
        }
    ],
}
 
print("=====[request]=====")
print(f"request_url: {url}")
print(f"request_header: {headers}")
print(f"request_body: {body}")
response = requests.put(url, headers=headers, data=json.dumps(body))
print(f"HTTP Status: {response.status_code}")
print(f"Response Body: {response.text}")

Request Timeout

Read Timeout: Must be at least 10 seconds

The server may take several seconds to respond depending on load and metadata processing time.
Please ensure your HTTP client is configured to wait at least 10 seconds for a response.

PreviousHow to mint NFT NextReward

Last updated 4 months ago