Dear eCloud Team,
I hope you’re well.
Could you please clarify the following points?
Why is the OTP we received from the Simulation Portal invalid when we use it in api end point of simulation?
Do we need to generate a new OTP each time we want to connect to the Simulation Portal, or can we reuse a previously generated OTP?
Are there any specific conditions or configuration settings we should be aware of when applying for an OTP on the Simulation Portal (such as a minimum wait time, expiration, or usage limits)?
Additionally:
When we send the request ID on here:
https://gw-fatoora.zatca.gov.sa/e-invoicing/developer-portal/production/csids
We get back a binarySecurityToken and a secret in the response.
Could you please clarify which of these is considered the CSID?
Lastly:
We successfully generated the XML invoice according to ZATCA’s standards.
➥ Could you please explain in detail how the signing process works after this point —
How we should use our private key and certificate to sign the invoice and submit it to ZATCA?
Your guidance on these points would be greatly appreciated, as we want to make sure we follow ZATCA’s procedures accurately.
Looking forward to your kind response.
Best wishes,