Check a Dentally Webhook Signature
| # request_signature - the signature from the X-Dentally-Signature header | |
| # request_body - the JSON body of the webhook request | |
| # secret - the secret for the webhook | |
| require "openssl" | |
| digest = OpenSSL::Digest.new("sha256") | |
| calculated_signature = OpenSSL::HMAC.hexdigest(digest, secret, request_body) | |
| if calculated_signature == request_signature | |
| # Signature matches, everything is good | |
| else | |
| # Ignore the webhook as the signature is invalid | |
| end |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment