I am completely with you on that. For now I used an existing open source server side API (https://github.com/petermrg/node-btce) to communicate with the market that requires me to provide the account's secret and key. As I wrote in my text above, I'll try to implement the client side request signing as soon as possible