Additional security has been added by removing the private token from the actual request. To use the new authentication scheme, supply the following parameters:
signature = sha1(order_params(params) + private_key)))
Thanks for the proposal! Sorry about no feedback earlier.
It would be great to support OAuth like security, so I look forward to next update.
Ping us to reopen PR, or we will reopen if you commit again, cheers!